Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,680
Maven
5,000+
npm
4,308
NuGet
760
pip
4,081
Pub
12
RubyGems
958
Rust
1,061
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,869 advisories

Loading
Dolibarr Cross-Site Scripting (XSS) vulnerability Moderate
CVE-2017-9838 was published for dolibarr/dolibarr (Composer) May 14, 2022
Dolibarr Cross-site scripting (XSS) vulnerability Moderate
CVE-2018-10095 was published for dolibarr/dolibarr (Composer) May 14, 2022
Dolibarr stored Cross-site Scripting vulnerability Moderate
CVE-2019-16685 was published for dolibarr/dolibarr (Composer) May 24, 2022
Dolibarr Cross-site Scripting in a User Note section Moderate
CVE-2019-16686 was published for dolibarr/dolibarr (Composer) May 24, 2022
Dolibarr Cross-site Scripting in a User Profile in a Signature section Moderate
CVE-2019-16687 was published for dolibarr/dolibarr (Composer) May 24, 2022
Dolibarr stored Cross-site Scripting in an Email Template section Moderate
CVE-2019-16688 was published for dolibarr/dolibarr (Composer) May 24, 2022
Dolibarr Cross-site Scripting via outgoing email setup feature Moderate
CVE-2019-17577 was published for dolibarr/dolibarr (Composer) May 24, 2022
Dolibarr Cross-site Scripting via outgoing email setup feature Moderate
CVE-2019-17576 was published for dolibarr/dolibarr (Composer) May 24, 2022
Dolibarr cross-site scripting (XSS) vulnerability Moderate
CVE-2020-7994 was published for dolibarr/dolibarr (Composer) May 24, 2022
Dolibarr stored Cross-site Scripting vulnerability Moderate
CVE-2020-11823 was published for dolibarr/dolibarr (Composer) May 24, 2022
Dolibarr Stored Cross-site Scripting Moderate
CVE-2020-13240 was published for dolibarr/dolibarr (Composer) May 24, 2022
Dolibarr Stored Cross-site Scripting via file upload Moderate
CVE-2020-13239 was published for dolibarr/dolibarr (Composer) May 24, 2022
Dolibarr reflected cross-site scripting (XSS) vulnerability Moderate
CVE-2020-14475 was published for dolibarr/dolibarr (Composer) May 24, 2022
Dolibarr stored Cross-Site Scripting (XSS) vulnerability Moderate
CVE-2020-13828 was published for dolibarr/dolibarr (Composer) May 24, 2022
Dolibarr Cross Site Scripting (XSS) Moderate
CVE-2019-1010016 was published for dolibarr/dolibarr (Composer) May 24, 2022
Fastly Magento2 sensitive information disclosure Moderate
CVE-2017-13761 was published for fastly/magento2 (Composer) May 17, 2022
Pagekit open redirect vulnerability Moderate
CVE-2018-14381 was published for pagekit/pagekit (Composer) May 14, 2022
Pagekit Stored Cross-site Scripting Moderate
CVE-2018-11564 was published for pagekit/pagekit (Composer) May 14, 2022
Pagekit User enumeration Moderate
CVE-2019-16669 was published for pagekit/pagekit (Composer) May 24, 2022
LibreNMS SQL Injection vulnerability Moderate
CVE-2020-15873 was published for librenms/librenms (Composer) May 24, 2022
NukeViet Cross-site Scripting via the editor in the News module Moderate
CVE-2020-22765 was published for nukeviet/nukeviet (Composer) May 24, 2022
NukeViet Cross-Site Request Forgery (CSRF) Moderate
CVE-2020-13157 was published for nukeviet/nukeviet (Composer) May 24, 2022
NukeViet Cross-Site Request Forgery (CSRF) Moderate
CVE-2020-13156 was published for nukeviet/nukeviet (Composer) May 24, 2022
Dolibarr Cross-site Scripting vulnerability Moderate
CVE-2019-17578 was published for dolibarr/dolibarr (Composer) May 24, 2022
Dolibarr Cross Site Scripting (XSS) vulnerability Moderate
CVE-2021-42220 was published for dolibarr/dolibarr (Composer) Dec 16, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database