Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

37,022 advisories

Loading
A vulnerability, which was classified as problematic, has been found in Ingenico Estate Manager... Moderate Unreviewed
CVE-2024-6059 was published Jun 17, 2024
A vulnerability classified as problematic has been found in LabVantage LIMS 2017. This affects an... Moderate Unreviewed
CVE-2024-6058 was published Jun 17, 2024
zhimengzhe iBarn v1.5 was discovered to contain a reflected cross-site scripting (XSS)... Moderate Unreviewed
CVE-2024-37625 was published Jun 17, 2024
zhimengzhe iBarn v1.5 was discovered to contain a reflected cross-site scripting (XSS)... Moderate Unreviewed
CVE-2024-38470 was published Jun 17, 2024
Xinhu RockOA v2.6.3 was discovered to contain a reflected cross-site scripting (XSS)... Moderate Unreviewed
CVE-2024-37622 was published Jun 17, 2024
Xinhu RockOA v2.6.3 was discovered to contain a reflected cross-site scripting (XSS)... Moderate Unreviewed
CVE-2024-37623 was published Jun 17, 2024
Xinhu RockOA v2.6.3 was discovered to contain a reflected cross-site scripting (XSS)... Moderate Unreviewed
CVE-2024-37624 was published Jun 17, 2024
StrongShop v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability... Moderate Unreviewed
CVE-2024-37619 was published Jun 17, 2024
PHPVOD v4.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via... Moderate Unreviewed
CVE-2024-37620 was published Jun 17, 2024
Stored XSS in inventory tree rendering in Checkmk before 2.3.0p7, 2.2.0p28, 2.1.0p45 and 2.0.0 (EOL) Moderate Unreviewed
CVE-2024-5741 was published Jun 17, 2024
The Post Grid Gutenberg Blocks and WordPress Blog Plugin WordPress plugin before 4.1.0 does not... Moderate Unreviewed
CVE-2024-4305 was published Jun 17, 2024
The Popup Builder WordPress plugin before 1.1.33 does not sanitise and escape some of its... Moderate Unreviewed
CVE-2024-3236 was published Jun 17, 2024
Progress Sitefinity before 15.0.0 allows XSS by authenticated users via the content form in the... Moderate Unreviewed
CVE-2023-27636 was published Jun 16, 2024
ExpressionEngine before 7.4.11 allows XSS. Moderate Unreviewed
CVE-2024-38454 was published Jun 16, 2024
Vantiva - MediaAccess DGA2232 v19.4 - CWE-79: Improper Neutralization of Input During Web Page... Moderate Unreviewed
CVE-2024-36397 was published Jun 16, 2024
A vulnerability was found in ZKTeco ZKBio CVSecurity V5000 4.1.0. It has been rated as... Moderate Unreviewed
CVE-2024-6006 was published Jun 15, 2024
A vulnerability was found in ZKTeco ZKBio CVSecurity V5000 4.1.0. It has been declared as... Moderate Unreviewed
CVE-2024-6005 was published Jun 15, 2024
The Shariff Wrapper plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-2695 was published Jun 15, 2024
The ElementsKit Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-5263 was published Jun 15, 2024
The Jeg Elementor Kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-4479 was published Jun 15, 2024
The Newspaper theme for WordPress is vulnerable to Stored Cross-Site Scripting via attachment... Moderate Unreviewed
CVE-2024-3815 was published Jun 15, 2024
The tagDiv Composer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-3814 was published Jun 15, 2024
A cross-site scripting (XSS) vulnerability in Aegon Life v1.0 allows attackers to execute... Moderate Unreviewed
CVE-2024-36599 was published Jun 14, 2024
In MintHCM 4.0.3, a registered user can execute arbitrary JavaScript code and achieve a reflected... Moderate Unreviewed
CVE-2024-36656 was published Jun 14, 2024
The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is... Moderate Unreviewed
CVE-2024-4863 was published Jun 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database