Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

29,187 advisories

Loading
The Exclusive Divi – Divi Preloader, Modules for Divi & Extra Theme plugin for WordPress is... Moderate Unreviewed
CVE-2024-9386 was published Nov 16, 2024
The BulkPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use... Moderate Unreviewed
CVE-2024-9615 was published Nov 16, 2024
The SVG Case Study plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File... Moderate Unreviewed
CVE-2024-9850 was published Nov 16, 2024
The PeproDev WooCommerce Receipt Uploader plugin for WordPress is vulnerable to Reflected Cross... Moderate Unreviewed
CVE-2024-8873 was published Nov 16, 2024
The Bounce Handler MailPoet 3 plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed
CVE-2024-9938 was published Nov 16, 2024
The PJW Mime Config plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG... Moderate Unreviewed
CVE-2024-10017 was published Nov 16, 2024
The Steel plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's btn... Moderate Unreviewed
CVE-2024-10147 was published Nov 16, 2024
The ConvertCalculator for WordPress plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-10015 was published Nov 16, 2024
The SimpleForm Contact Form Submissions plugin for WordPress is vulnerable to Reflected Cross... Moderate Unreviewed
CVE-2024-10884 was published Nov 16, 2024
The SimpleForm – Contact form made simple plugin for WordPress is vulnerable to Reflected Cross... Moderate Unreviewed
CVE-2024-10883 was published Nov 16, 2024
The Gallery Manager plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to... Moderate Unreviewed
CVE-2024-10875 was published Nov 16, 2024
The SVGPlus plugin for WordPress is vulnerable to Stored Cross-Site Scripting via REST API SVG... Moderate Unreviewed
CVE-2024-11092 was published Nov 16, 2024
A vulnerability, which was classified as problematic, has been found in code-projects Farmacia 1... Moderate Unreviewed
CVE-2024-11259 was published Nov 15, 2024
Cross Site Scripting vulnerability in Chamilo LMS v.1.11.26 allows an attacker to execute... Moderate Unreviewed
CVE-2024-51142 was published Nov 15, 2024
The web interface in RSA NetWitness 11.7.2.0 allows Cross-Site Scripting (XSS) via the Where... Moderate Unreviewed
CVE-2024-23169 was published Nov 15, 2024
LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/device/services.inc.php High
CVE-2024-52526 was published for librenms/librenms (Composer) Nov 15, 2024
RaphaelCSS
Cross Site Scripting vulnerability in M2000 Smart4Web before v.5.020241004 allows a remote... Moderate Unreviewed
CVE-2024-50800 was published Nov 15, 2024
A vulnerability in the web-based management interface of Cisco ECE could allow an... Moderate Unreviewed
CVE-2022-20632 was published Nov 15, 2024
A vulnerability has been found in SourceCodester Online Eyewear Shop 1.0 and classified as... Moderate Unreviewed
CVE-2024-11247 was published Nov 15, 2024
A vulnerability in the web management interface of Cisco BroadWorks Hosted Thin Receptionist... Moderate Unreviewed
CVE-2022-20948 was published Nov 15, 2024
A vulnerability, which was classified as problematic, was found in code-projects Farmacia 1.0.... Moderate Unreviewed
CVE-2024-11246 was published Nov 15, 2024
A vulnerability in the web-based management interface of Cisco Prime Collaboration Deployment... Moderate Unreviewed
CVE-2023-20060 was published Nov 15, 2024
A vulnerability in the web-based management interface of Cisco PI and Cisco EPNM could... Moderate Unreviewed
CVE-2022-20657 was published Nov 15, 2024
A vulnerability in the web-based management interface of Cisco Secure Network Analytics,... Moderate Unreviewed
CVE-2022-20663 was published Nov 15, 2024
A vulnerability in the web-based management interface of Cisco Prime Access Registrar... Moderate Unreviewed
CVE-2022-20626 was published Nov 15, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database