Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

2,923 advisories

Loading
Cross-Site Scripting in ngx-md High
GHSA-xr53-m937-jr9c was published for ngx-md (npm) Sep 3, 2020
HTML Injection in marky-markdown High
GHSA-mg69-6j3m-jvgw was published for marky-markdown (npm) Sep 3, 2020
ag-grid Cross-Site Scripting vulnerability High
GHSA-7p6w-x2gr-rrf8 was published for ag-grid (npm) Sep 2, 2020
Cross-Site Scripting in fomantic-ui High
GHSA-788m-pj96-7w2c was published for fomantic-ui (npm) Sep 2, 2020
Cross-Site Scripting in jquery-mobile High
GHSA-fj93-7wm4-8x2g was published for jquery-mobile (npm) Sep 2, 2020
Cross-Site Scripting in wangeditor High
GHSA-g7mw-5cq6-fv82 was published for wangeditor (npm) Sep 2, 2020
Cross-Site Scripting in bootstrap-vue High
GHSA-c7pp-x73h-4m2v was published for bootstrap-vue (npm) Sep 2, 2020
tdunlap607
Cross-Site Scripting in semantic-ui-search High
GHSA-p9vv-3945-x93h was published for semantic-ui-search (npm) Sep 2, 2020
Cross-Site Scripting in mermaid High
GHSA-w32g-5hqp-gg6q was published for mermaid (npm) Sep 2, 2020
Cross-Site Scripting in jingo High
GHSA-mpjf-8cmf-p789 was published for jingo (npm) Sep 1, 2020
Cross-Site Scripting in md-data-table High
GHSA-hgr5-82rc-p936 was published for md-data-table (npm) Sep 1, 2020
Cross-Site Scripting in buefy High
GHSA-xwqw-rf2q-xmhf was published for buefy (npm) Sep 1, 2020
Cross-Site Scripting in react-marked-markdown High
GHSA-m7qm-r2r5-f77q was published for react-marked-markdown (npm) Sep 1, 2020
Cross-Site Scripting in mrk.js High
GHSA-hpr5-wp7c-hh5q was published for mrk.js (npm) Sep 1, 2020
Cross-Site Scripting (XSS) in pivottable High
CVE-2016-1000241 was published for pivottable (npm) Sep 1, 2020
fuelux vulnerable to Cross-Site Scripting in Pillbox feature High
CVE-2016-1000235 was published for fuelux (npm) Sep 1, 2020
Cross-Site Scripting in swagger-ui High
CVE-2016-1000233 was published for swagger-ui (npm) Sep 1, 2020
tdunlap607
Cross-Site Scripting in jqtree High
CVE-2016-1000234 was published for jqtree (npm) Sep 1, 2020
Cross-Site Scripting in emojione High
CVE-2016-1000231 was published for emojione (npm) Sep 1, 2020
tdunlap607
XSS in client rendered block templates in rendr High
CVE-2016-1000230 was published for rendr (npm) Sep 1, 2020
DOM-based XSS in gmail-js High
CVE-2016-1000228 was published for gmail-js (npm) Sep 1, 2020
Cross-Site Scripting in bootstrap-tagsinput High
CVE-2016-1000227 was published for bootstrap-tagsinput (npm) Sep 1, 2020
DataTable Vulnerable to Cross-Site Scripting High
CVE-2015-6584 was published for datatables (Composer) Aug 31, 2020
Cross-Site Scripting in highcharts High
GHSA-gr4j-r575-g665 was published for highcharts (npm) Aug 25, 2020
Windforce17
Cross-Site Scripting in @progress/kendo-angular-editor High
GHSA-j7wp-vjj6-cp5m was published for @progress/kendo-angular-editor (npm) Aug 11, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database