Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,890 advisories

Loading
Cross-site Scripting in Admidio Moderate
CVE-2023-47380 was published for admidio/admidio (Composer) Nov 22, 2023
Cross-site Scripting in OpenCRX Moderate
CVE-2023-40814 was published for org.opencrx:opencrx-core-models (Maven) Nov 18, 2023
Cross-site Scripting in OpenCRX Moderate
CVE-2023-40817 was published for org.opencrx:opencrx-core-models (Maven) Nov 18, 2023
Cross-site Scripting in OpenCRX Moderate
CVE-2023-40816 was published for org.opencrx:opencrx-core-models (Maven) Nov 18, 2023
Cross-site Scripting in OpenCRX Moderate
CVE-2023-40815 was published for org.opencrx:opencrx-core-models (Maven) Nov 18, 2023
Cross-site Scripting in OpenCRX Moderate
CVE-2023-40813 was published for org.opencrx:opencrx-core-models (Maven) Nov 18, 2023
MarkLee131
Cross-site Scripting in OpenCRX Moderate
CVE-2023-40810 was published for org.opencrx:opencrx-core-models (Maven) Nov 18, 2023
Cross-site Scripting in OpenCRX Moderate
CVE-2023-40812 was published for org.opencrx:opencrx-core-models (Maven) Nov 18, 2023
Cross-site Scripting in OpenCRX Moderate
CVE-2023-40809 was published for org.opencrx:opencrx-core-models (Maven) Nov 18, 2023
LibreNMS Cross-site Scripting at Device groups Deletion feature Moderate
CVE-2023-48295 was published for librenms/librenms (Composer) Nov 17, 2023
rook1337
Liferay Portal XSS with `p_l_back_url_title` on edit content page Critical
CVE-2023-47797 was published for com.liferay.portal:release.portal.bom (Maven) Nov 17, 2023
Concrete CMS Cross-site Scripting vulnerability Low
CVE-2023-48649 was published for concrete5/concrete5 (Composer) Nov 17, 2023
OpenNMS Cross-site Scripting vulnerability Moderate
CVE-2023-40314 was published for org.opennms:opennms-webapp (Maven) Nov 17, 2023
Duplicate Advisory: CKEditor Cross-site Scripting vulnerability Moderate
GHSA-hxjc-9j8v-v9pr was published for ckeditor4 (npm) Nov 16, 2023 withdrawn
TinyMCE vulnerable to mutation Cross-site Scripting via special characters in unescaped text nodes Moderate
CVE-2023-48219 was published for TinyMCE (Composer) Nov 15, 2023
masatokinugawa
xxl-job-admin vulnerable to Cross Site Scripting Moderate
CVE-2023-48088 was published for com.xuxueli:xxl-job-admin (Maven) Nov 15, 2023
Bypassing Cross-Site Scripting Protection in TYPO3 HTML Sanitizer Moderate
CVE-2023-47125 was published for typo3/html-sanitizer (Composer) Nov 14, 2023
Yaniv-git nielsdos
ohader
Cross-site Scripting in cesium Moderate
CVE-2023-48094 was published for cesium (npm) Nov 14, 2023 withdrawn
juburr
Bootbox.js Cross Site Scripting vulnerability Moderate
CVE-2023-46998 was published for bootbox (npm) Nov 14, 2023
Symfony potential Cross-site Scripting in WebhookController Moderate
CVE-2023-46735 was published for symfony/symfony (Composer) Nov 12, 2023
maxime-aknin nicolas-grekas
Symfony potential Cross-site Scripting vulnerabilities in CodeExtension filters Moderate
CVE-2023-46734 was published for symfony/symfony (Composer) Nov 12, 2023
Rudloff nicolas-grekas
Moodle Cross-site Scripting vulnerability Moderate
CVE-2023-5547 was published for moodle/moodle (Composer) Nov 9, 2023
Moodle Cross-site Scripting vulnerability Moderate
CVE-2023-5544 was published for moodle/moodle (Composer) Nov 9, 2023
Moodle Cross-site Scripting vulnerability Moderate
CVE-2023-5541 was published for moodle/moodle (Composer) Nov 9, 2023
Moodle Cross-site Scripting vulnerability Moderate
CVE-2023-5546 was published for moodle/moodle (Composer) Nov 9, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database