Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

197 advisories

Loading
A vulnerability in the web-based management interface of Cisco Small Business SPA500 Series IP... Moderate Unreviewed
CVE-2023-20181 was published Aug 4, 2023
Reflected XSS in business intelligence in Checkmk <2.2.0p8, <2.1.0p32, <2.0.0p38, <=1.6.0p30. Moderate Unreviewed
CVE-2023-23548 was published Aug 1, 2023
A cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS software on Panorama... Moderate Unreviewed
CVE-2023-0007 was published Jul 6, 2023
There is an HTML injection vulnerability in Esri Portal for ArcGIS versions 11.0 and below that... Moderate Unreviewed
CVE-2023-25833 was published Jul 6, 2023
The setMediaSource function on the amzn.thin.pl service does not sanitize the "source" parameter... Moderate Unreviewed
CVE-2023-1384 was published Jul 6, 2023
There is a reflected HTML injection vulnerability in Esri Portal for ArcGIS versions 10.9.1 and... Moderate Unreviewed
CVE-2022-38210 was published Jul 6, 2023
Cross-site scripting (xss) vulnerabilities exist in the requestHandlers.js detail_device... Moderate Unreviewed
CVE-2023-24497 was published Jul 6, 2023
Cross-site scripting (xss) vulnerabilities exist in the requestHandlers.js detail_device... Moderate Unreviewed
CVE-2023-24496 was published Jul 6, 2023
The WP HTML Mail plugin for WordPress is vulnerable to HTML injection in versions up to, and... Moderate Unreviewed
CVE-2019-25144 was published Jun 7, 2023
A vulnerability was found in SourceCodester Lost and Found Information System 1.0. It has been... Low Unreviewed
CVE-2023-3017 was published May 31, 2023
Reflective Cross-Site-Scripting in Webconf in Tribe29 Checkmk Appliance before 1.6.4. Moderate Unreviewed
CVE-2023-22309 was published Apr 20, 2023
An improper neutralization of script-related HTML tags in a web page vulnerability [CWE-80] in... Moderate Unreviewed
CVE-2022-35850 was published Apr 11, 2023
The SAP Application Interface (Message Dashboard) - versions AIF 703, AIFX 702, S4CORE 100, 101,... Moderate Unreviewed
CVE-2023-29110 was published Apr 11, 2023
The SAP Application Interface (Message Monitoring) - versions 600, 700, allows an authorized... Moderate Unreviewed
CVE-2023-29112 was published Apr 11, 2023
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in... Moderate Unreviewed
CVE-2023-1013 was published Mar 30, 2023
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in... Moderate Unreviewed
CVE-2021-44197 was published Mar 7, 2023
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in... Moderate Unreviewed
CVE-2021-44196 was published Mar 7, 2023
A stored cross-site scripting vulnerability exists in the HdConfigActions.aspx altertextlanguages... Moderate Unreviewed
CVE-2022-28703 was published Dec 15, 2022
A vulnerability has been identified in SCALANCE X204RNA (HSR) (All versions < V3.2.7), SCALANCE... Moderate Unreviewed
CVE-2022-46350 was published Dec 13, 2022
A vulnerability, which was classified as problematic, was found in Webmin. Affected is an unknown... Moderate Unreviewed
CVE-2022-3844 was published Nov 3, 2022
A vulnerability has been identified in SCALANCE M-800 / S615 (All versions), SCALANCE SC-600... Moderate Unreviewed
CVE-2022-36325 was published Aug 11, 2022
A vulnerability was found in Itech Movie Portal Script 7.36. It has been rated as problematic.... Moderate Unreviewed
CVE-2017-20140 was published Jul 23, 2022
A vulnerability was found in TrueConf Server 4.3.7. It has been classified as problematic.... Moderate Unreviewed
CVE-2017-20116 was published Jun 30, 2022
A vulnerability was found in TrueConf Server 4.3.7. It has been declared as problematic. Affected... Moderate Unreviewed
CVE-2017-20117 was published Jun 30, 2022
A vulnerability was found in TrueConf Server 4.3.7. It has been rated as problematic. Affected by... Moderate Unreviewed
CVE-2017-20118 was published Jun 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database