Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

137,201 advisories

Loading
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0966 was published for showdoc/showdoc (Composer) Mar 16, 2022
Adobe Premiere Pro 15.4.1 (and earlier) is affected by a Null pointer dereference vulnerability... Moderate Unreviewed
CVE-2021-42263 was published Mar 17, 2022
Cross-site Scripting in Pimcore Moderate
CVE-2022-0894 was published for pimcore/pimcore (Composer) Mar 16, 2022
IBM Engineering Workflow Management 7.0, 7.0.1, and 7.0.2 and IBM Rational Team Concert 6.0.6 and... Moderate Unreviewed
CVE-2020-4989 was published Mar 16, 2022
CuppaCMS v1.0 was discovered to contain an arbitrary file read via the copy function. Moderate Unreviewed
CVE-2022-25497 was published Mar 16, 2022
The DefaultRepositoryAdminService class in Fisheye and Crucible before version 4.8.9 allowed... Moderate Unreviewed
CVE-2021-43954 was published Mar 15, 2022
Unrestricted XML files leading to cross-site scripting in Microweber Moderate
CVE-2022-0963 was published for microweber/microweber (Composer) Mar 16, 2022
Stored Cross-site Scripting in Microweber Moderate
CVE-2022-0954 was published for microweber/microweber (Composer) Mar 16, 2022
Stored XSS in SmarterTools SmarterTrack This issue affects: SmarterTools SmarterTrack 100.0.8019... Moderate Unreviewed
CVE-2022-24386 was published Mar 15, 2022
Divide-by-zero in Clickhouse's Gorilla compression codec when parsing a malicious query. The... Moderate Unreviewed
CVE-2021-42391 was published Mar 16, 2022
Divide-by-zero in Clickhouse's DeltaDouble compression codec when parsing a malicious query. The... Moderate Unreviewed
CVE-2021-42390 was published Mar 16, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0937 was published for showdoc/showdoc (Composer) Mar 15, 2022
Cross-site Scripting in sanitize-url Moderate
CVE-2021-23648 was published for @braintree/sanitize-url (npm) Mar 17, 2022
A stored cross-site scripting (XSS) vulnerability in /ptms/?page=user of Online Project Time... Moderate Unreviewed
CVE-2022-26295 was published Mar 17, 2022
Stored Cross-site Scripting in ShowDoc Moderate
CVE-2022-0945 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0950 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0942 was published for showdoc/showdoc (Composer) Mar 16, 2022
File Upload Restriction Bypass leading to Cross-site Scripting in ShowDoc Moderate
CVE-2022-0951 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0957 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0956 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0965 was published for showdoc/showdoc (Composer) Mar 16, 2022
HMS v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via... Moderate Unreviewed
CVE-2022-25493 was published Mar 16, 2022
XML External Entities Vulnerability in CVRF-CSAF-Converter Moderate
CVE-2022-27193 was published for cvrf2csaf (pip) Mar 16, 2022
Cross-site Scripting in Zenario CMS Moderate
CVE-2021-41952 was published for tribalsystems/zenario (Composer) Mar 15, 2022
Adobe Premiere Elements 20210809.daily.2242976 (and earlier) is affected by a Null pointer... Moderate Unreviewed
CVE-2021-40789 was published Mar 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database