GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
508 advisories
Filter by severity
Cross-site Scripting in JFinal
Moderate
CVE-2024-22497
was published
for
com.jfinal:jfinal
(Maven)
Jan 23, 2024
Cross-site Scripting in beetl-bbs
Moderate
CVE-2024-22490
was published
for
com.ibeetl:beetl
(Maven)
Jan 23, 2024
Cross-site Scripting in JFinal
Moderate
CVE-2024-22496
was published
for
com.jfinal:jfinal
(Maven)
Jan 23, 2024
JavaScript execution via malicious molfiles (XSS)
Moderate
CVE-2024-0758
was published
for
de.ipb-halle:molecularfaces
(Maven)
Jan 19, 2024
Stored Cross Site Scripting in beetl-bbs
Moderate
CVE-2024-22491
was published
for
com.ibeetl:beetl
(Maven)
Jan 16, 2024
Cross-site Scripting in JFinal
Moderate
CVE-2024-22493
was published
for
com.jfinal:jfinal
(Maven)
Jan 12, 2024
Cross-site Scripting in JFinal
Moderate
CVE-2024-22492
was published
for
com.jfinal:jfinal
(Maven)
Jan 12, 2024
Qualys Jenkins Plugin for Policy Compliance Cross-site Scripting vulnerability
Moderate
CVE-2023-6148
was published
for
com.qualys.plugins:qualys-pc
(Maven)
Jan 9, 2024
OpenCRX Cross-site Scripting vulnerability
Moderate
CVE-2023-27150
was published
for
org.opencrx:opencrx-core
(Maven)
Dec 26, 2023
WSO2 Registry Stored Cross Site Scripting (XSS) vulnerability
Moderate
CVE-2023-6911
was published
for
org.wso2.carbon.registry:carbon-registry
(Maven)
Dec 22, 2023
Xnx3 Wangmarket Cross-Site Scripting vulnerability
Moderate
CVE-2023-6886
was published
for
com.xnx3.wangmarket:wangmarket
(Maven)
Dec 17, 2023
Cross-site Scripting in JFinalcms
Moderate
CVE-2023-50101
was published
for
com.jfinal:jfinal
(Maven)
Dec 14, 2023
Cross-site Scripting in JFinalcms
Moderate
CVE-2023-50137
was published
for
com.jfinal:jfinal
(Maven)
Dec 14, 2023
Cross-site Scripting in JFinalcms
Moderate
CVE-2023-50102
was published
for
com.jfinal:jfinal
(Maven)
Dec 14, 2023
Cross-site Scripting in JFinalcms
Moderate
CVE-2023-50100
was published
for
com.jfinal:jfinal
(Maven)
Dec 14, 2023
Cross-site Scripting in silverpeas
Moderate
CVE-2023-47324
was published
for
org.silverpeas.core:silverpeas-core-api
(Maven)
Dec 13, 2023
Cross-site Scripting in JFinalCMS
Moderate
CVE-2023-49487
was published
for
com.jfinal:jfinal
(Maven)
Dec 8, 2023
Cross-site Scripting in JFinalCMS
Moderate
CVE-2023-49486
was published
for
com.jfinal:jfinal
(Maven)
Dec 8, 2023
Cross-site Scripting in JFinalCMS
Moderate
CVE-2023-49485
was published
for
com.jfinal:jfinal
(Maven)
Dec 8, 2023
Cross-site Scripting in OpenCRX
Moderate
CVE-2023-40816
was published
for
org.opencrx:opencrx-core-models
(Maven)
Nov 18, 2023
Cross-site Scripting in OpenCRX
Moderate
CVE-2023-40815
was published
for
org.opencrx:opencrx-core-models
(Maven)
Nov 18, 2023
Cross-site Scripting in OpenCRX
Moderate
CVE-2023-40813
was published
for
org.opencrx:opencrx-core-models
(Maven)
Nov 18, 2023
Cross-site Scripting in OpenCRX
Moderate
CVE-2023-40817
was published
for
org.opencrx:opencrx-core-models
(Maven)
Nov 18, 2023
Cross-site Scripting in OpenCRX
Moderate
CVE-2023-40814
was published
for
org.opencrx:opencrx-core-models
(Maven)
Nov 18, 2023
Cross-site Scripting in OpenCRX
Moderate
CVE-2023-40812
was published
for
org.opencrx:opencrx-core-models
(Maven)
Nov 18, 2023
ProTip!
Advisories are also available from the
GraphQL API