GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,212 advisories
Filter by severity
Cross-site scripting (XSS) vulnerability in the Messaging module 6.x-2.x before 6.x-2.4 and 6.x-4...
Low
Unreviewed
CVE-2011-1066
was published
May 17, 2022
WebKit in Apple Safari before 5.0.4, when the Web Inspector is used, does not properly handle the...
Low
Unreviewed
CVE-2011-0169
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in DaDaBIK before 4.3 beta2, when the insert or edit...
Low
Unreviewed
CVE-2010-4355
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Radius Manager 3.8.0 allow remote...
Low
Unreviewed
CVE-2010-4275
was published
May 17, 2022
Reflected Cross Site Scripting in GitHub repository openemr/openemr prior to 6.0.0.4.
Low
Unreviewed
CVE-2022-1180
was published
Mar 31, 2022
Cross-site scripting (XSS) vulnerability in the Performance logging module in the Devel module 5...
Low
Unreviewed
CVE-2010-3022
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in modules/headlines/magpierss/scripts/magpie_debug.php...
Low
Unreviewed
CVE-2010-2852
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in OpenStack Dashboard (Horizon) 2015.1.0...
Low
Unreviewed
CVE-2015-3988
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in phpCAS before 1.1.2, when proxy mode is enabled,...
Low
Unreviewed
CVE-2010-2796
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the Hierarchical Select module 5.x before 5.x-3.2 and...
Low
Unreviewed
CVE-2010-2724
was published
May 17, 2022
Codologic Codoforum through 4.8.4 allows a DOM-based XSS. While creating a new topic as a normal...
Low
Unreviewed
CVE-2020-7050
was published
May 24, 2022
Cross-site scripting (XSS) vulnerability in Sijio Community Software allows remote authenticated...
Low
Unreviewed
CVE-2010-2697
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Sijio Community Software allow remote...
Low
Unreviewed
CVE-2010-2698
was published
May 17, 2022
A persistent cross-site scripting (XSS) vulnerability in Octopus Server 3.4.0 through 2019.10.5...
Low
Unreviewed
CVE-2019-19085
was published
May 24, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Storm module 5.x and 6.x before 6.x-1...
Low
Unreviewed
CVE-2010-2123
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Rotor Banner module 5.x before 5.x-1.8...
Low
Unreviewed
CVE-2010-2125
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Heartbeat module 6.x before 6.x-4.9...
Low
Unreviewed
CVE-2010-2048
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the CCK TableField module 6.x before 6.x-1.2 for...
Low
Unreviewed
CVE-2010-1998
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the FileField module 5.x before 5.x-2.5 and 6.x...
Low
Unreviewed
CVE-2010-1958
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the Workflow module 5.x-2.x before 5.x-2.6 and 6.x-1...
Low
Unreviewed
CVE-2010-1539
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in index.php in TomatoCMS before 2.0.5 allow...
Low
Unreviewed
CVE-2010-1996
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the Taxonomy Breadcrumb module 6.x before 6.x-1.1 for...
Low
Unreviewed
CVE-2010-1976
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Open Ticket Request System (OTRS) 2.3.x...
Low
Unreviewed
CVE-2010-2080
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Drupal Content Construction Kit (CCK) 5.x...
Low
Unreviewed
CVE-2008-6972
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the Taxonomy Breadcrumb module 5.x before 5.x-1.5 and...
Low
Unreviewed
CVE-2010-1984
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API