Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

29,187 advisories

Loading
A vulnerability in the web-based management interface of Cisco ECE could allow an... Moderate Unreviewed
CVE-2022-20631 was published Nov 15, 2024
LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/print-customoid.php High
CVE-2024-51497 was published for librenms/librenms (Composer) Nov 15, 2024
RaphaelCSS
LibreNMS has a Reflected XSS ('Cross-site Scripting') in librenms/includes/html/pages/wireless.inc.php High
CVE-2024-51496 was published for librenms/librenms (Composer) Nov 15, 2024
RaphaelCSS
LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/dev-overview-data.inc.php High
CVE-2024-51495 was published for librenms/librenms (Composer) Nov 15, 2024
RaphaelCSS
LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/app/Http/Controllers/Table/EditPortsController.php High
CVE-2024-51494 was published for librenms/librenms (Composer) Nov 15, 2024
RaphaelCSS
LibreNMS has a Persistent XSS from Insecure Input Sanitization Affects Multiple Endpoints High
CVE-2024-50355 was published for librenms/librenms (Composer) Nov 15, 2024
minhnq1618
LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/device/overview/services.inc.php High
CVE-2024-50352 was published for librenms/librenms (Composer) Nov 15, 2024
RaphaelCSS
LibreNMS has a Reflected XSS ('Cross-site Scripting') in librenms/includes/functions.php High
CVE-2024-50351 was published for librenms/librenms (Composer) Nov 15, 2024
RaphaelCSS
A vulnerability classified as problematic has been found in code-projects Online Shop Store 1.0.... Moderate Unreviewed
CVE-2024-11243 was published Nov 15, 2024
IBM Concert Software 1.0.0 through 1.0.1 is vulnerable to cross-site scripting. This... Moderate Unreviewed
CVE-2024-41785 was published Nov 15, 2024
A vulnerability was found in IBPhoenix ibWebAdmin up to 1.0.2 and classified as problematic. This... Moderate Unreviewed
CVE-2024-11240 was published Nov 15, 2024
LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/app/Http/Controllers/Table/EditPortsController.php High
CVE-2024-50350 was published for librenms/librenms (Composer) Nov 15, 2024
RaphaelCSS
LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/device/capture.inc.php High
CVE-2024-49764 was published for librenms/librenms (Composer) Nov 15, 2024
RaphaelCSS
Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/edituser.inc.php High
CVE-2024-49759 was published for librenms/librenms (Composer) Nov 15, 2024
RaphaelCSS
LibreNMS has a stored XSS in ExamplePlugin with Device's Notes Moderate
CVE-2024-49758 was published for librenms/librenms (Composer) Nov 15, 2024
minhnq1618
LibreNMS has a stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/api-access.inc.php High
CVE-2024-49754 was published for librenms/librenms (Composer) Nov 15, 2024
RaphaelCSS
Stored XSS using two files in usememos/memos Critical
CVE-2023-0109 was published for github.com/usememos/memos (Go) Nov 15, 2024
A stored cross-site scripting (XSS) vulnerability exists in openemr/openemr version 7.0.1. An... High Unreviewed
CVE-2024-0875 was published Nov 15, 2024
An XSS issue was discovered in MDaemon Email Server before version 24.5.1c. An attacker can... Moderate Unreviewed
CVE-2024-11182 was published Nov 15, 2024
A stored cross-site scripting (XSS) vulnerability exists in craigk5n/webcalendar version 1.3.0.... High Unreviewed
CVE-2024-1097 was published Nov 15, 2024
A stored cross-site scripting (XSS) vulnerability was discovered in chatwoot/chatwoot, affecting... High Unreviewed
CVE-2021-3741 was published Nov 15, 2024
Cross site scripting in sylius/sylius Moderate
CVE-2021-3841 was published for sylius/sylius (Composer) Nov 15, 2024
Cross-site Scripting (XSS) - DOM in janeczku/calibre-web Moderate
CVE-2021-3988 was published for calibreweb (pip) Nov 15, 2024
A Cross-Site Scripting (XSS) vulnerability in phpipam/phpipam versions prior to 1.4.7 allows... Low Unreviewed
CVE-2022-1226 was published Nov 15, 2024
The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce... Moderate Unreviewed
CVE-2024-8961 was published Nov 15, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database