Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

37,022 advisories

Loading
Improper neutralization of input during web page generation vulnerability in 2ClickPortal... Unknown Unreviewed
CVE-2024-5961 was published Jun 14, 2024
The WP Go Maps (formerly WP Google Maps) plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-5994 was published Jun 14, 2024
The SVGator WordPress plugin through 1.2.6 does not sanitize SVG file contents, which enables... Moderate Unreviewed
CVE-2024-4271 was published Jun 14, 2024
The Pray For Me WordPress plugin through 1.0.4 does not sanitise and escape some parameters,... Moderate Unreviewed
CVE-2024-3966 was published Jun 14, 2024
The SVGMagic WordPress plugin through 1.1 does not sanitize SVG file contents, which enables... Moderate Unreviewed
CVE-2024-4270 was published Jun 14, 2024
The Social Pixel WordPress plugin through 2.1 does not sanitise and escape some of its settings,... Moderate Unreviewed
CVE-2024-4005 was published Jun 14, 2024
The WordPress Jitsi Shortcode WordPress plugin through 0.1 does not sanitise and escape some of... Moderate Unreviewed
CVE-2024-3977 was published Jun 14, 2024
The Alemha watermarker WordPress plugin through 1.3.1 does not sanitise and escape some of its... Moderate Unreviewed
CVE-2024-3754 was published Jun 14, 2024
The Best WordPress Gallery Plugin – FooGallery plugin for WordPress is vulnerable to Stored Cross... Moderate Unreviewed
CVE-2024-2122 was published Jun 14, 2024
The LuckyWP Table of Contents WordPress plugin through 2.1.4 does not sanitise and escape some of... Moderate Unreviewed
CVE-2024-2218 was published Jun 14, 2024
The WordPress Jitsi Shortcode WordPress plugin through 0.1 does not validate and escape some of... Moderate Unreviewed
CVE-2024-3978 was published Jun 14, 2024
The Amen WordPress plugin through 3.3.1 does not sanitise and escape some of its settings, which... Moderate Unreviewed
CVE-2024-3992 was published Jun 14, 2024
The parameter used in the certain page of ASUS Download Master is not properly filtered for user... Moderate Unreviewed
CVE-2024-31159 was published Jun 14, 2024
The parameter used in the certain page of ASUS Download Master is not properly filtered for user... Moderate Unreviewed
CVE-2024-31160 was published Jun 14, 2024
Toshiba printers provide a web interface that will load the JavaScript file. The file contains... Moderate Unreviewed
CVE-2024-27162 was published Jun 14, 2024
Cross-site scripting (XSS) vulnerability in GUnet OpenEclass E-learning Platform version 3.15 and... Moderate Unreviewed
CVE-2024-33253 was published Jun 14, 2024
A Reflected Cross-Site Scripting (XSS) vulnerability in the blog function of Modern Campus - Omni... Moderate Unreviewed
CVE-2023-35859 was published Jun 13, 2024
A stored cross-site scripting (XSS) vulnerability in Church CRM v5.8.0 allows attackers to... Moderate Unreviewed
CVE-2024-36647 was published Jun 13, 2024
An Cross site scripting vulnerability in the EDR XConsole before this release allowed an attacker... Moderate Unreviewed
CVE-2024-4176 was published Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by a reflected Cross-Site... Moderate Unreviewed
CVE-2024-36216 was published Jun 13, 2024
Magento Open Source Cross-Site Scripting (XSS) vulnerability Moderate
CVE-2024-34105 was published for magento/community-edition (Composer) Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site... Moderate Unreviewed
CVE-2024-36221 was published Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site... Moderate Unreviewed
CVE-2024-36213 was published Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site... Moderate Unreviewed
CVE-2024-36219 was published Jun 13, 2024
Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site... Moderate Unreviewed
CVE-2024-36214 was published Jun 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database