Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,890 advisories

Loading
Cross-Site Scripting in google-closure-library Moderate
GHSA-r9q4-w3fm-wrm2 was published for google-closure-library (npm) Sep 2, 2020
Cross-Site Scripting in wangeditor High
GHSA-g7mw-5cq6-fv82 was published for wangeditor (npm) Sep 2, 2020
Cross-Site Scripting in buttle Moderate
GHSA-pqpp-2363-649v was published for buttle (npm) Sep 2, 2020
Cross-Site Scripting in express-cart Low
GHSA-9pr3-7449-977r was published for express-cart (npm) Sep 2, 2020
Cross-Site Scripting in bootstrap-vue High
GHSA-c7pp-x73h-4m2v was published for bootstrap-vue (npm) Sep 2, 2020
tdunlap607
Cross-Site Scripting in semantic-ui-search High
GHSA-p9vv-3945-x93h was published for semantic-ui-search (npm) Sep 2, 2020
Cross-Site Scripting in mermaid High
GHSA-w32g-5hqp-gg6q was published for mermaid (npm) Sep 2, 2020
Cross-Site Scripting in jingo High
GHSA-mpjf-8cmf-p789 was published for jingo (npm) Sep 1, 2020
Cross-Site Scripting in md-data-table High
GHSA-hgr5-82rc-p936 was published for md-data-table (npm) Sep 1, 2020
Cross-Site Scripting in buefy High
GHSA-xwqw-rf2q-xmhf was published for buefy (npm) Sep 1, 2020
Cross-Site Scripting in react-marked-markdown High
GHSA-m7qm-r2r5-f77q was published for react-marked-markdown (npm) Sep 1, 2020
Cross-Site Scripting in mrk.js High
GHSA-hpr5-wp7c-hh5q was published for mrk.js (npm) Sep 1, 2020
Reflected Cross-Site Scripting in redis-commander Low
GHSA-8c8c-4vfj-rrpc was published for redis-commander (npm) Sep 1, 2020
sseide
Cross-Site Scripting in yui Moderate
CVE-2013-4939 was published for yui (npm) Sep 1, 2020
Cross-Site Scripting in jquery Moderate
CVE-2012-6708 was published for jQuery (RubyGems) Sep 1, 2020
klaudialax
XSS via Angular Expression in ag-grid Moderate
CVE-2017-16009 was published for ag-grid (npm) Sep 1, 2020
Cross-Site Scripting in gitbook Moderate
CVE-2017-16019 was published for gitbook (npm) Sep 1, 2020
Cross-Site Scripting (XSS) in pivottable High
CVE-2016-1000241 was published for pivottable (npm) Sep 1, 2020
Cross-Site Scripting in c3 Moderate
CVE-2016-1000240 was published for c3 (npm) Sep 1, 2020
tdunlap607
Cross-Site Scripting in swagger-ui Critical
GHSA-g336-c7wv-8hp3 was published for swagger-ui (npm) Sep 1, 2020
tdunlap607
fuelux vulnerable to Cross-Site Scripting in Pillbox feature High
CVE-2016-1000235 was published for fuelux (npm) Sep 1, 2020
Cross-Site Scripting in swagger-ui High
CVE-2016-1000233 was published for swagger-ui (npm) Sep 1, 2020
tdunlap607
Cross-Site Scripting in jqtree High
CVE-2016-1000234 was published for jqtree (npm) Sep 1, 2020
Cross-Site Scripting in emojione High
CVE-2016-1000231 was published for emojione (npm) Sep 1, 2020
tdunlap607
XSS in client rendered block templates in rendr High
CVE-2016-1000230 was published for rendr (npm) Sep 1, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database