GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,459
Composer 4,164
Erlang 30
GitHub Actions 19
Go 1,973
Maven 5,149
npm 3,695
NuGet 654
pip 3,312
Pub 11
RubyGems 881
Rust 831
Swift 35

Unreviewed advisories

All unreviewed 232,360

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

28,775 advisories

Filter by severity

Sort by

Least recently updated

Cross Site Scripting vulnerability in online diagnostic lab management system using php v.1.0... Moderate Unreviewed

CVE-2024-51430 was published Oct 31, 2024

The Gift Cards (Gift Vouchers and Packages) (WooCommerce Supported) plugin for WordPress is... Moderate Unreviewed

CVE-2024-9165 was published Oct 31, 2024

The WP Simple Anchors Links plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed

CVE-2024-9446 was published Oct 31, 2024

The Easy SVG Upload plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG... Moderate Unreviewed

CVE-2024-9708 was published Oct 31, 2024

Hashicorp Consul Cross-site Scripting vulnerability Moderate

CVE-2024-10086 was published for github.com/hashicorp/consul (Go) Oct 31, 2024

Cross Site Scripting vulnerability in Shenzhen Interconnection Harbor Network Technology Co., Ltd... Moderate Unreviewed

CVE-2024-51419 was published Oct 30, 2024

Cross Site Scripting vulnerability in PHPGurukul Doctor Appointment Management System v.1.0... Moderate Unreviewed

CVE-2024-48807 was published Oct 30, 2024

Proactive Risk Manager version 9.1.1.0 is affected by multiple Cross-Site Scripting (XSS)... Moderate Unreviewed

CVE-2024-48569 was published Oct 30, 2024

A Reflected Cross-Site Scripting (XSS) vulnerability exists in the Sage 1000 v 7.0.0. This... Moderate Unreviewed

CVE-2024-48648 was published Oct 30, 2024

EnGenius ESR580 A8J-EMR5000 devices allow a remote attacker to conduct stored XSS attacks that... Moderate Unreviewed

CVE-2024-31972 was published Oct 30, 2024

EnGenius ESR580 devices through 1.1.30 allow a remote attacker to conduct stored XSS attacks via... Moderate Unreviewed

CVE-2024-31975 was published Oct 30, 2024

Hitron CODA-4582 2AHKM-CODA4589 7.2.4.5.1b8 devices allow a remote attacker within Wi-Fi... Moderate Unreviewed

CVE-2024-31973 was published Oct 30, 2024

A medium severity vulnerability has been identified within Privileged Identity which can allow an... Moderate Unreviewed

CVE-2024-9110 was published Oct 30, 2024

The Black Widgets For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-9388 was published Oct 30, 2024

The WPAdverts – Classifieds Plugin plugin for WordPress is vulnerable to Stored Cross-Site... High Unreviewed

CVE-2024-10108 was published Oct 30, 2024

The WP Team – WordPress Team Member Plugin plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed

CVE-2024-10223 was published Oct 30, 2024

The Pricing Tables WordPress Plugin – Easy Pricing Tables plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-8871 was published Oct 30, 2024

The T(-) Countdown plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-9884 was published Oct 30, 2024

The Widget or Sidebar Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed

CVE-2024-9885 was published Oct 30, 2024

The WP Baidu Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin... Moderate Unreviewed

CVE-2024-9886 was published Oct 30, 2024

The Ultimate TinyMCE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed

CVE-2024-8627 was published Oct 30, 2024

The Subscribe to Comments plugin for WordPress is vulnerable to Reflected Cross-Site Scripting... Moderate Unreviewed

CVE-2024-8792 was published Oct 30, 2024

A vulnerability was found in Klokan MapTiler tileserver-gl 2.3.1 and classified as problematic.... Moderate Unreviewed

CVE-2024-10503 was published Oct 30, 2024

In Jitsi Meet before 2.0.9779, the functionality to share an image using giphy was implemented in... High Unreviewed

CVE-2024-44080 was published Oct 30, 2024

Cross Site Scripting vulnerability in TeslaLogger Admin Panel before v.1.59.6 allows a remote... Moderate Unreviewed

CVE-2024-48461 was published Oct 29, 2024

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

28,775 advisories