Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,494
Maven
5,000+
npm
4,129
NuGet
735
pip
3,944
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

32,153 advisories

Loading
An attacker with access to the Westermo Lynx web application that has the vulnerable software... Moderate Unreviewed
CVE-2023-40143 was published Feb 7, 2024
An attacker with access to the web application with vulnerable software could... Moderate Unreviewed
CVE-2023-45227 was published Feb 7, 2024
An attacker with access to the web application that has the vulnerable software could... Moderate Unreviewed
CVE-2023-45222 was published Feb 7, 2024
A stored XSS vulnerability exists where an authenticated, remote attacker with administrator... Moderate Unreviewed
CVE-2024-0955 was published Feb 7, 2024
An attacker with access to the vulnerable software could introduce arbitrary JavaScript... Moderate Unreviewed
CVE-2023-42765 was published Feb 7, 2024
A vulnerability was found in Jspxcms 10.2.0. It has been classified as problematic. Affected is... Moderate Unreviewed
CVE-2024-1257 was published Feb 6, 2024
A vulnerability was found in Jspxcms 10.2.0 and classified as problematic. This issue affects... Moderate Unreviewed
CVE-2024-1256 was published Feb 6, 2024
Aria Operations for Networks contains a cross site scripting vulnerability. A malicious actor... Moderate Unreviewed
CVE-2024-22238 was published Feb 6, 2024
Aria Operations for Networks contains a cross site scripting vulnerability. A malicious actor... Moderate Unreviewed
CVE-2024-22241 was published Feb 6, 2024
In JetBrains TeamCity before 2023.11.2 stored XSS via agent distribution was possible Moderate Unreviewed
CVE-2024-24937 was published Feb 6, 2024
The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce... Moderate Unreviewed
CVE-2024-0586 was published Feb 6, 2024
The FileBird plugin for WordPress is vulnerable to Stored Cross-Site Scripting via imported... Moderate Unreviewed
CVE-2024-0691 was published Feb 6, 2024
The Content Views – Post Grid, Slider, Accordion (Gutenberg Blocks and Shortcode) plugin for... Moderate Unreviewed
CVE-2024-0612 was published Feb 6, 2024
The Elementor Addon Elements plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-0834 was published Feb 6, 2024
The SiteOrigin Widgets Bundle plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-0961 was published Feb 6, 2024
The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce... Moderate Unreviewed
CVE-2024-0954 was published Feb 6, 2024
The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile &... Moderate Unreviewed
CVE-2024-1046 was published Feb 6, 2024
The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce... Moderate Unreviewed
CVE-2024-0585 was published Feb 6, 2024
The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting... Moderate Unreviewed
CVE-2024-0597 was published Feb 6, 2024
The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-0823 was published Feb 6, 2024
The Order Delivery Date for WP e-Commerce plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-0678 was published Feb 6, 2024
The WP RSS Aggregator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-0630 was published Feb 6, 2024
The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-0448 was published Feb 6, 2024
The Easy Digital Downloads – Sell Digital Files (eCommerce Store & Payments Made Easy) plugin for... Moderate Unreviewed
CVE-2024-0659 was published Feb 6, 2024
The WP 404 Auto Redirect to Similar Post plugin for WordPress is vulnerable to Reflected Cross... Moderate Unreviewed
CVE-2024-0509 was published Feb 6, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database