Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

486 advisories

Loading
Stored XSS vulnerability in Jenkins Maven Metadata Plugin for Jenkins CI server plugin High
CVE-2022-36905 was published for eu.markov.jenkins.plugin.mvnmeta:maven-metadata-plugin (Maven) Jul 28, 2022
NotMyFault
Jenkins Lucene-Search Plugin vulnerable to reflected (XSS) cross-site scripting High
CVE-2022-36922 was published for org.jenkins-ci.plugins:lucene-search (Maven) Jul 28, 2022
Improper handling of email input High
CVE-2022-31127 was published for next-auth (npm) Jul 6, 2022
Sandiipmaity
Cross-site Scripting in Jenkins GitLab Plugin High
CVE-2022-34777 was published for org.jenkins-ci.plugins:gitlab-plugin (Maven) Jul 1, 2022
NotMyFault
Jenkins Matrix Reloaded Plugin vulnerable to Stored XSS High
CVE-2022-34788 was published for net.praqma:matrix-reloaded (Maven) Jul 1, 2022
NotMyFault
Cross site scripting in Jenkins build-metrics Plugin High
CVE-2022-34784 was published for org.jenkins-ci.plugins:build-metrics (Maven) Jul 1, 2022
NotMyFault
Jenkins Project Inheritance Plugin vulnerable to cross site scripting High
CVE-2022-34787 was published for hudson.plugins:project-inheritance (Maven) Jul 1, 2022
NotMyFault
Cross-site Scripting in Jenkins eXtreme Feedback Panel Plugin High
CVE-2022-34790 was published for org.jenkins-ci.plugins:xfpanel (Maven) Jul 1, 2022
NotMyFault
Cross-site Scripting in Jenkins TestNG Results Plugin High
CVE-2022-34778 was published for org.jenkins-ci.plugins:testng-plugin (Maven) Jul 1, 2022
NotMyFault
Cross-site Scripting in Jenkins Deployment Dashboard Plugin High
CVE-2022-34795 was published for org.jenkins-ci.plugins:ec2-deployment-dashboard (Maven) Jul 1, 2022
NotMyFault
Cross-site Scripting in Jenkins Rich Text Publisher Plugin High
CVE-2022-34786 was published for org.jenkins-ci.plugins:rich-text-publisher-plugin (Maven) Jul 1, 2022
NotMyFault
Cross-site Scripting in Jenkins Validating Email Parameter Plugin High
CVE-2022-34791 was published for io.jenkins.plugins:validating-email-parameter (Maven) Jul 1, 2022
NotMyFault
Cross-site Scripting in Jenkins Plot Plugin High
CVE-2022-34783 was published for org.jenkins-ci.plugins:plot (Maven) Jul 1, 2022
NotMyFault
Cross-site Scripting in Jenkins Stash Branch Parameter Plugin High
CVE-2022-34198 was published for org.jenkins-ci.plugins:StashBranchParameter (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting vulnerability in Jenkins High
CVE-2022-34170 was published for org.jenkins-ci.main:jenkins-core (Maven) Jun 24, 2022
NotMyFault sunSUNQ
Reflected Cross-site Scripting in Jenkins Nested View Plugin High
CVE-2022-34182 was published for org.jenkins-ci.plugins:nested-view (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting in Jenkins Date Parameter Plugin High
CVE-2022-34185 was published for me.leejay.jenkins:date-parameter (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting in Jenkins Package Version Plugin High
CVE-2022-34193 was published for org.lilicurroad.jenkins:packageversion (Maven) Jun 24, 2022
Cross-site Scripting in Jenkins Filesystem List Parameter Plugin High
CVE-2022-34187 was published for aendter.jenkins.plugins:filesystem-list-parameter-plugin (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting in Jenkins ontrack Jenkins Plugin High
CVE-2022-34192 was published for org.jenkins-ci.plugins:ontrack (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting in Jenkins Dynamic Extended Choice Parameter Plugin High
CVE-2022-34186 was published for com.moded.extendedchoiceparameter:dynamic_extended_choice_parameter (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting in Jenkins CRX Content Package Deployer Plugin High
CVE-2022-34184 was published for org.jenkins-ci.plugins:crx-content-package-deployer (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting vulnerability in Jenkins High
CVE-2022-34171 was published for org.jenkins-ci.main:jenkins-core (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting vulnerability in Jenkins High
CVE-2022-34172 was published for org.jenkins-ci.main:jenkins-core (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting in Jenkins Image Tag Parameter Plugin High
CVE-2022-34189 was published for org.jenkins-ci.plugins:image-tag-parameter (Maven) Jun 24, 2022
NotMyFault
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database