Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

26,098 advisories

Loading
A Reflected cross-site scripting (XSS) vulnerability in browse.php of Code-projects Jonnys Liquor... Moderate Unreviewed
CVE-2024-50969 was published Nov 13, 2024
decidim-meetings Cross-site scripting vulnerability in the online or hybrid meeting embeds Moderate
CVE-2024-45594 was published for decidim-meetings (RubyGems) Nov 13, 2024
whotwagner
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed
CVE-2024-9477 was published Nov 13, 2024
A Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-49505 was published Nov 13, 2024
The AFI – The Easiest Integration Plugin plugin for WordPress is vulnerable to Reflected Cross... Moderate Unreviewed
CVE-2024-10877 was published Nov 13, 2024
The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-9059 was published Nov 13, 2024
The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-9668 was published Nov 13, 2024
The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-9682 was published Nov 13, 2024
Cross-site scripting vulnerability exists in VK All in One Expansion Unit versions prior to 9.100... Moderate Unreviewed
CVE-2024-52268 was published Nov 13, 2024
The AJAX Login and Registration modal popup + inline form plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-8874 was published Nov 13, 2024
The Social Proof (Testimonial) Slider plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-8985 was published Nov 13, 2024
The Aqua SVG Sprite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG... Moderate Unreviewed
CVE-2024-9426 was published Nov 13, 2024
The Constant Contact Forms by MailMunch plugin for WordPress is vulnerable to Reflected Cross... Moderate Unreviewed
CVE-2024-9614 was published Nov 13, 2024
The Product Delivery Date for WooCommerce – Lite plugin for WordPress is vulnerable to Reflected... Moderate Unreviewed
CVE-2024-10882 was published Nov 13, 2024
The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed
CVE-2024-10684 was published Nov 13, 2024
The NiceJob plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several of the... Moderate Unreviewed
CVE-2024-10887 was published Nov 13, 2024
The Razorpay Payment Button Elementor Plugin plugin for WordPress is vulnerable to Reflected... Moderate Unreviewed
CVE-2024-10850 was published Nov 13, 2024
The Razorpay Payment Button Plugin plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed
CVE-2024-10851 was published Nov 13, 2024
The 胖鼠采集(Fat Rat Collect) 微信知乎简书腾讯新闻列表分页采集, 还有自动采集、自动发布、自动标签、等多项功能。开源插件 plugin for WordPress is... Moderate Unreviewed
CVE-2024-10577 was published Nov 13, 2024
The Design for Contact Form 7 Style WordPress Plugin – CF7 WOW Styler plugin for WordPress is... Moderate Unreviewed
CVE-2024-10686 was published Nov 13, 2024
Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G... Moderate Unreviewed
CVE-2024-28728 was published Nov 13, 2024
Sercomm Model Etisalat Model S3- AC2100 is affected by Cross Site Scripting (XSS) via the... Moderate Unreviewed
CVE-2021-27703 was published Nov 13, 2024
Inappropriate implementation in Extensions in Google Chrome prior to 131.0.6778.69 allowed a... Moderate Unreviewed
CVE-2024-11110 was published Nov 12, 2024
Inappropriate implementation in FileSystem in Google Chrome prior to 131.0.6778.69 allowed a... Moderate Unreviewed
CVE-2024-11117 was published Nov 12, 2024
Inappropriate implementation in Autofill in Google Chrome prior to 131.0.6778.69 allowed a remote... Moderate Unreviewed
CVE-2024-11111 was published Nov 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database