Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

639 advisories

Loading
XSS vulnerability in Jenkins Audit Trail Plugin Moderate
CVE-2020-2140 was published for org.jenkins-ci.plugins:audit-trail (Maven) May 24, 2022
NotMyFault
Cross-site Scripting in Apache Struts Moderate
CVE-2015-2992 was published for org.apache.struts:struts2-core (Maven) May 24, 2022
Stored XSS vulnerability in Jenkins brakeman Plugin Moderate
CVE-2020-2122 was published for org.jenkins-ci.plugins:brakeman (Maven) May 24, 2022
NotMyFault
Jenkins Git Parameter Plugin vulnerable to stored cross-site scripting (XSS) Moderate
CVE-2020-2113 was published for org.jenkins-ci.tools:git-parameter (Maven) May 24, 2022
NotMyFault
Subversion Plugin stored XSS vulnerability Moderate
CVE-2020-2111 was published for org.jenkins-ci.plugins:subversion (Maven) May 24, 2022
westonsteimel
Jenkins Git Parameter Plugin vulnerable to Stored cross-site scripting (XSS) Moderate
CVE-2020-2112 was published for org.jenkins-ci.tools:git-parameter (Maven) May 24, 2022
NotMyFault
Stored XSS vulnerability in Code Coverage API Plugin Moderate
CVE-2020-2106 was published for io.jenkins.plugins:code-coverage-api (Maven) May 24, 2022
NotMyFault
Liferay Portal Vulnerable to Persistent Cross-Site Scripting (XSS) in MyAccountPortlet Moderate
CVE-2020-7934 was published for com.liferay.portal:release.portal.bom (Maven) May 24, 2022
Reflected XSS vulnerability in Jenkins gitlab-hook Plugin Moderate
CVE-2020-2096 was published for org.jenkins-ci.ruby-plugins:gitlab-hook (Maven) May 24, 2022
NotMyFault
Cross site scripting in Jenkins Mission Control Plugin Moderate
CVE-2019-16563 was published for tech.andrey.jenkins:mission-control-view (Maven) May 24, 2022
Jenkins Pipeline Aggregator View Plugin stored XSS vulnerability Moderate
CVE-2019-16564 was published for com.paul8620.jenkins.plugins:pipeline-aggregator-view (Maven) May 24, 2022
Jenkins buildgraph-view Plugin vulnerable to stored Cross-site Scripting Moderate
CVE-2019-16562 was published for org.jenkins-ci.plugins:buildgraph-view (Maven) May 24, 2022
Jenkins build-metrics Plugin reflected cross-site scripting vulnerability Moderate
CVE-2019-10475 was published for org.jenkins-ci.plugins:build-metrics (Maven) May 24, 2022
q5438722
Cross-site Scripting in Eclipse Mojarra Moderate
CVE-2019-17091 was published for org.glassfish:jakarta.faces (Maven) May 24, 2022
Jenkins HTML Publisher Plugin vulnerable to Cross-site Scripting Moderate
CVE-2019-10432 was published for org.jenkins-ci.plugins:htmlpublisher (Maven) May 24, 2022
Jenkins Log Parser Plugin vulnerable to Cross-site Scripting Moderate
CVE-2019-10410 was published for org.jenkins-ci.plugins:log-parser (Maven) May 24, 2022
Cross-site Scripting in Apache JSPWiki Moderate
CVE-2019-12407 was published for org.apache.jspwiki:jspwiki-main (Maven) May 24, 2022
Jenkins Dashboard View Plugin vulnerable to Cross-site Scripting Moderate
CVE-2019-10396 was published for org.jenkins-ci.plugins:dashboard-view (Maven) May 24, 2022
Jenkins Build Environment Plugin vulnerable to Cross-site Scripting Moderate
CVE-2019-10395 was published for org.jenkins-ci.plugins:build-environment (Maven) May 24, 2022
Liferay Portal Vulnerable to Cross-Site Scripting (XSS) via a Journal Article Title Moderate
CVE-2019-16147 was published for com.liferay:com.liferay.journal.taglib (Maven) May 24, 2022
Improper Neutralization of Input During Web Page Generation in Jenkins Moderate
CVE-2019-10383 was published for org.jenkins-ci.main:jenkins-core (Maven) May 24, 2022
Jenkins Build Pipeline Plugin vulnerable to Cross-site Scripting Moderate
CVE-2019-10373 was published for org.jenkins-ci.plugins:build-pipeline-plugin (Maven) May 24, 2022
Jenkins Wall Display Plugin Cross-site Scripting vulnerability Moderate
CVE-2019-10376 was published for org.jenkins-ci.plugins:jenkinswalldisplay (Maven) May 24, 2022
Jenkins PegDown Formatter Plugin has Cross-site Scripting vulnerability Moderate
CVE-2019-10374 was published for org.jenkins-ci.plugins:pegdown-formatter (Maven) May 24, 2022
secjoker
Jenkins Maven Release Plugin vulnerable to Cross-site Scripting Moderate
CVE-2019-10360 was published for org.jenkins-ci.plugins.m2release:m2release (Maven) May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database