GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,381
Composer 4,822
Erlang 36
GitHub Actions 32
Go 2,413
Maven 5,809
npm 4,052
NuGet 723
pip 3,844
Pub 12
RubyGems 933
Rust 1,005
Swift 38

Unreviewed advisories

All unreviewed 264,828

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,353 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Maxthon3 versions prior to 3.3 are vulnerable to cross context scripting (XCS) via the about... High Unreviewed

CVE-2012-10032 was published Aug 5, 2025

The Use-your-Drive | Google Drive plugin for WordPress plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-7050 was published Aug 5, 2025

A cross-site scripting (XSS) vulnerability in Austrian Archaeological Institute (AI) OpenAtlas v8... High Unreviewed

CVE-2025-51534 was published Aug 4, 2025

A cross-site scripting (XSS) vulnerability in Intelbras RX1500 v2.2.9 and RX3000 v1.0.11 allows... High Unreviewed

CVE-2025-26065 was published Aug 4, 2025

The Photos, Files, YouTube, Twitter, Instagram, TikTok, Ecommerce Contest Gallery – Upload, Vote,... High Unreviewed

CVE-2025-7725 was published Aug 1, 2025

A cross-site scripting (XSS) vulnerability in Intelbras RX1500 v2.2.9 and RX3000 v1.0.11 allows... High Unreviewed

CVE-2025-26064 was published Jul 31, 2025

A stored cross-site scripting (XSS) vulnerability exists in DevaslanPHP project-management v1.2.4... High Unreviewed

CVE-2025-52203 was published Jul 31, 2025

GetProjectsIdea Create School Management System 1.0 is vulnerable to Cross Site Scripting (XSS)... High Unreviewed

CVE-2025-52187 was published Jul 30, 2025

LinuxServer.io Heimdall before 2.7.3 allows XSS via the q parameter. High Unreviewed

CVE-2025-54597 was published Jul 27, 2025

Cross Site Scripting vulnerability in grav v.1.7.48, v.1.7.47 and v.1.7.46 allows an attacker to... High Unreviewed

CVE-2025-46198 was published Jul 25, 2025

goform/formTest in EmbedThis GoAhead 2.5 allows HTML injection via the name parameter. High Unreviewed

CVE-2023-53155 was published Jul 25, 2025

A Cross-Site Scripting (XSS) vulnerability exists in the OPAC search feature of Koha Library... High Unreviewed

CVE-2025-52360 was published Jul 25, 2025

A cross-site scripting (xss) vulnerability exists in the LoginWordPress loginForm cancelUri... High Unreviewed

CVE-2025-36548 was published Jul 24, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 15.10 before 18.0.5, 18... High Unreviewed

CVE-2025-4700 was published Jul 23, 2025

An issue has been discovered in GitLab CE/EE affecting all versions from 15.10 before 18.0.5, 18... High Unreviewed

CVE-2025-4439 was published Jul 23, 2025

A stored XSS vulnerability in CComment component 5.0.0-6.1.14 for Joomla was discovered. High Unreviewed

CVE-2025-54297 was published Jul 23, 2025

A stored XSS vulnerability in ProFiles component 1.0-1.5.0 for Joomla was discovered. High Unreviewed

CVE-2025-54296 was published Jul 23, 2025

DuraComm SPM-500 DP-10iN-100-MU is vulnerable to a cross-site scripting attack. This could... High Unreviewed

CVE-2025-41425 was published Jul 23, 2025

agorum Software GmbH Agorum core open v11.9.2 & v11.10.1 was discovered to contain a reflected... High Unreviewed

CVE-2025-52169 was published Jul 18, 2025

A stored XSS vulnerability in the Balbooa Gallery plugin 1.0.0-2.4.0 for Joomla allows privileged... High Unreviewed

CVE-2025-49486 was published Jul 18, 2025

Leviton AcquiSuite and Energy Monitoring Hub are susceptible to a cross-site scripting... High Unreviewed

CVE-2025-6185 was published Jul 18, 2025

A cross-site scripting (XSS) vulnerability was reported in the Lenovo Browser that could allow an... High Unreviewed

CVE-2025-6248 was published Jul 17, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-52787 was published Jul 16, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-47652 was published Jul 16, 2025

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2025-52786 was published Jul 16, 2025

Previous 1 2 3 4 5 … 94 95 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,353 advisories