Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

32,145 advisories

Loading
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient... Moderate Unreviewed
CVE-2023-51725 was published Jan 17, 2024
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient... Moderate Unreviewed
CVE-2023-51724 was published Jan 17, 2024
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient... Moderate Unreviewed
CVE-2023-51723 was published Jan 17, 2024
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient... Moderate Unreviewed
CVE-2023-51726 was published Jan 17, 2024
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient... Moderate Unreviewed
CVE-2023-51727 was published Jan 17, 2024
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient... Moderate Unreviewed
CVE-2023-51720 was published Jan 17, 2024
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient... Moderate Unreviewed
CVE-2023-51721 was published Jan 17, 2024
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient... Moderate Unreviewed
CVE-2023-51722 was published Jan 17, 2024
This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient... Moderate Unreviewed
CVE-2023-51719 was published Jan 17, 2024
Cross Site Scripting (XSS) vulnerability in GRN Software Group eVEWA3 Community version 31... Moderate Unreviewed
CVE-2023-25295 was published Jan 17, 2024
Cross Site Scripting vulnerability in ABO.CMS v.5.9.3 allows an attacker to execute arbitrary... Moderate Unreviewed
CVE-2023-46952 was published Jan 17, 2024
kodbox v1.49.04 was discovered to contain a cross-site scripting (XSS) vulnerability via the URL... Moderate Unreviewed
CVE-2023-52069 was published Jan 17, 2024
Cross Site Scripting vulnerability in OFCMS v.1.14 allows a remote attacker to obtain sensitive... Moderate Unreviewed
CVE-2023-51807 was published Jan 17, 2024
kodbox v1.43 was discovered to contain a cross-site scripting (XSS) vulnerability via the... Moderate Unreviewed
CVE-2023-52068 was published Jan 17, 2024
Cross-site Scripting in Bagisto Moderate
CVE-2023-36236 was published for bagisto/bagisto (Composer) Jan 17, 2024
Stored Cross Site Scripting in beetl-bbs Moderate
CVE-2024-22491 was published for com.ibeetl:beetl (Maven) Jan 16, 2024
A vulnerability was found in Jspxcms 10.2.0. It has been declared as problematic. Affected by... Moderate Unreviewed
CVE-2024-0599 was published Jan 16, 2024
readthedocs-sphinx-search vulnerable to cross-site scripting when including search results from malicious projects Moderate
GHSA-xgfm-fjx6-62mj was published for readthedocs-sphinx-search (pip) Jan 16, 2024
stsewd
Missing or insecure tags in the HCL BigFix Bare OSD Metal Server WebUI version 311.19 or lower... Moderate Unreviewed
CVE-2023-37523 was published Jan 16, 2024
The EventON WordPress plugin before 4.5.5, EventON WordPress plugin before 2.2.7 do not properly... Moderate Unreviewed
CVE-2024-0233 was published Jan 16, 2024
The Staff / Employee Business Directory for Active Directory WordPress plugin before 1.2.3 does... Moderate Unreviewed
CVE-2023-4757 was published Jan 16, 2024
The EventON WordPress plugin before 4.5.5, EventON WordPress plugin before 2.2.7 does not... Moderate Unreviewed
CVE-2023-6005 was published Jan 16, 2024
The Voting Record WordPress plugin through 2.0 is missing sanitisation as well as escaping, which... Moderate Unreviewed
CVE-2023-7084 was published Jan 16, 2024
The LearnPress WordPress plugin before 4.2.5.5 does not sanitise and escape user input before... Moderate Unreviewed
CVE-2023-5558 was published Jan 16, 2024
The Hubbub Lite (formerly Grow Social) WordPress plugin before 1.32.0 does not sanitise and... Moderate Unreviewed
CVE-2023-7154 was published Jan 16, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database