Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,951
Erlang
39
GitHub Actions
38
Go
2,607
Maven
5,000+
npm
4,251
NuGet
757
pip
4,017
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,331 advisories

Loading
Multiple cross-site scripting (XSS) vulnerabilities in Xigla Absolute Banner Manager XE 2.0 allow... Low Unreviewed
CVE-2008-2761 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Xigla Absolute News Manager XE 3.2 allow... Low Unreviewed
CVE-2008-2758 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in EditeurScripts EsContacts 1.0 allow remote... Low Unreviewed
CVE-2008-2037 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in the Ubercart 5.x before 5.x-1.0 rc3 module for Drupal... Low Unreviewed
CVE-2008-1978 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Cezanne 6.5.1 and 7 allow remote attackers... Low Unreviewed
CVE-2008-1969 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in the profile update feature in Akiva WebBoard 8.0... Low Unreviewed
CVE-2008-1941 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in mindex.do in ManageEngine Firewall Analyzer 4.0.3... Low Unreviewed
CVE-2008-1775 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in function/sideblock.php in Affiliate Market (affmarket... Low Unreviewed
CVE-2008-1176 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in Drupal 6.0 allows remote authenticated users to... Low Unreviewed
CVE-2008-1131 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in Barracuda Spam Firewall (BSF)... Low Unreviewed
CVE-2008-0971 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in pm/language/spanish/preferences.php in PMachine Pro 2... Low Unreviewed
CVE-2008-0334 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in Drupal 4.7.x and 5.x, when certain .htaccess... Low Unreviewed
CVE-2008-0274 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in service/impl/UserLocalServiceImpl.java in Liferay... Low Unreviewed
CVE-2008-0179 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in F5 FirePass 4100 SSL VPN 5.4.1 through 5.5... Low Unreviewed
CVE-2007-6704 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in WebCalendar 1.1.6 allow remote attackers... Low Unreviewed
CVE-2007-6696 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in balancer-manager in mod_proxy_balancer in the Apache... Low Unreviewed
CVE-2007-6421 was published May 1, 2022
IBM Tivoli Netcool Security Manager 1.3.0 before Interim Fix 1, when using Active Directory (AD)... Low Unreviewed
CVE-2007-6363 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in libraries/auth/cookie.auth.lib.php in phpMyAdmin... Low Unreviewed
CVE-2007-6100 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in db_create.php in phpMyAdmin before 2.11.2.1 allows... Low Unreviewed
CVE-2007-5977 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in IBM Tivoli Service Desk 6.2 allows remote... Low Unreviewed
CVE-2007-5949 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in BosDev BosMarket Business Directory System... Low Unreviewed
CVE-2007-5833 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in wp-admin/edit-post-rows.php in WordPress 2.3 allows... Low Unreviewed
CVE-2007-5710 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Token module before 4.7.x-1.5, and 5.x... Low Unreviewed
CVE-2007-5621 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in NSSboard (formerly Simple PHP Forum) 6.1... Low Unreviewed
CVE-2007-5564 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in setroubleshoot 2.0.5 allows local users to inject... Low Unreviewed
CVE-2007-5496 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database