GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,459
Composer 4,164
Erlang 30
GitHub Actions 19
Go 1,973
Maven 5,149
npm 3,695
NuGet 654
pip 3,312
Pub 11
RubyGems 881
Rust 831
Swift 35

Unreviewed advisories

All unreviewed 232,372

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,211 advisories

Filter by severity

Sort by

Least recently updated

Cross-site scripting (XSS) vulnerability in the Messaging module 6.x-2.x before 6.x-2.4 and 6.x-4... Low Unreviewed

CVE-2011-1066 was published May 17, 2022

WebKit in Apple Safari before 5.0.4, when the Web Inspector is used, does not properly handle the... Low Unreviewed

CVE-2011-0169 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in DaDaBIK before 4.3 beta2, when the insert or edit... Low Unreviewed

CVE-2010-4355 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in Radius Manager 3.8.0 allow remote... Low Unreviewed

CVE-2010-4275 was published May 17, 2022

Reflected Cross Site Scripting in GitHub repository openemr/openemr prior to 6.0.0.4. Low Unreviewed

CVE-2022-1180 was published Mar 31, 2022

Cross-site scripting (XSS) vulnerability in the Performance logging module in the Devel module 5... Low Unreviewed

CVE-2010-3022 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in modules/headlines/magpierss/scripts/magpie_debug.php... Low Unreviewed

CVE-2010-2852 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in OpenStack Dashboard (Horizon) 2015.1.0... Low Unreviewed

CVE-2015-3988 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in phpCAS before 1.1.2, when proxy mode is enabled,... Low Unreviewed

CVE-2010-2796 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the Hierarchical Select module 5.x before 5.x-3.2 and... Low Unreviewed

CVE-2010-2724 was published May 17, 2022

Codologic Codoforum through 4.8.4 allows a DOM-based XSS. While creating a new topic as a normal... Low Unreviewed

CVE-2020-7050 was published May 24, 2022

Cross-site scripting (XSS) vulnerability in Sijio Community Software allows remote authenticated... Low Unreviewed

CVE-2010-2697 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in Sijio Community Software allow remote... Low Unreviewed

CVE-2010-2698 was published May 17, 2022

A persistent cross-site scripting (XSS) vulnerability in Octopus Server 3.4.0 through 2019.10.5... Low Unreviewed

CVE-2019-19085 was published May 24, 2022

Multiple cross-site scripting (XSS) vulnerabilities in the Rotor Banner module 5.x before 5.x-1.8... Low Unreviewed

CVE-2010-2125 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in the Storm module 5.x and 6.x before 6.x-1... Low Unreviewed

CVE-2010-2123 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the CCK TableField module 6.x before 6.x-1.2 for... Low Unreviewed

CVE-2010-1998 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in the Heartbeat module 6.x before 6.x-4.9... Low Unreviewed

CVE-2010-2048 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the FileField module 5.x before 5.x-2.5 and 6.x... Low Unreviewed

CVE-2010-1958 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in index.php in TomatoCMS before 2.0.5 allow... Low Unreviewed

CVE-2010-1996 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the Taxonomy Breadcrumb module 6.x before 6.x-1.1 for... Low Unreviewed

CVE-2010-1976 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in Open Ticket Request System (OTRS) 2.3.x... Low Unreviewed

CVE-2010-2080 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the Workflow module 5.x-2.x before 5.x-2.6 and 6.x-1... Low Unreviewed

CVE-2010-1539 was published May 17, 2022

Multiple cross-site scripting (XSS) vulnerabilities in Drupal Content Construction Kit (CCK) 5.x... Low Unreviewed

CVE-2008-6972 was published May 17, 2022

Cross-site scripting (XSS) vulnerability in the Taxonomy Breadcrumb module 5.x before 5.x-1.5 and... Low Unreviewed

CVE-2010-1984 was published May 17, 2022

Previous 1 2 3 4 5 … 48 49 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,211 advisories