GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
1,368 advisories
Filter by severity
Cross-site scripting (XSS) vulnerability in the administrative interface in Drupal Content...
Low
Unreviewed
CVE-2008-6229
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in Drupal 5.x before 5.12 and 6.x before 6.6 allows...
Low
Unreviewed
CVE-2008-6170
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in IBM Workplace Content Management (WCM) 6.0G and 6.1...
Low
Unreviewed
CVE-2008-5228
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in Movable Type 4 through 4.21 allows remote attackers...
Low
Unreviewed
CVE-2008-4634
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the Ajax Checklist module 5.x before 5.x-1.1 for...
Low
Unreviewed
CVE-2008-5999
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the Simplenews module 5.x before 5.x-1.5 and 6.x...
Low
Unreviewed
CVE-2008-5996
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in modules.php in NavBoard 16 (2.6.0) allows remote...
Low
Unreviewed
CVE-2008-5944
was published
May 17, 2022
Microsoft SharePoint uses URLs with the same hostname and port number for a web site's primary...
Low
Unreviewed
CVE-2008-5026
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in templates/mytribiqsite/tribal-GPL-1066/includes...
Low
Unreviewed
CVE-2008-4893
was published
May 17, 2022
Cross site scripting in Concrete CMS
Low
CVE-2022-30120
was published
for
concrete5/core
(Composer)
Jun 25, 2022
Cross-site scripting (XSS) vulnerability in the Cakifo theme 1.x before 1.6.2 for WordPress...
Low
Unreviewed
CVE-2014-3903
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum WebTop 6.7SP1 before P31, 6...
Low
Unreviewed
CVE-2015-0551
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in Namazu before 2.0.21, when Internet Explorer 6 or 7...
Low
Unreviewed
CVE-2011-4345
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in Notes in Apple OS X before 10.11 allows local users...
Low
Unreviewed
CVE-2015-5875
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the administrative user interface in EMC M...
Low
Unreviewed
CVE-2015-0513
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the selection list in the filters in the...
Low
Unreviewed
CVE-2014-8986
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSight Management Center (MC) 5.3...
Low
Unreviewed
CVE-2015-6353
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the Node Access Product module for Drupal allows...
Low
Unreviewed
CVE-2015-3386
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the Node basket module for Drupal allows remote...
Low
Unreviewed
CVE-2015-3381
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the nodeauthor module for Drupal allows remote...
Low
Unreviewed
CVE-2015-3365
was published
May 17, 2022
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows...
Low
Unreviewed
CVE-2020-10453
was published
May 24, 2022
Cross-site scripting (XSS) vulnerability in contact.php in Coppermine Photo Gallery before 1.5.36...
Low
Unreviewed
CVE-2015-3921
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in libraries/error_report.lib.php in the error-reporting...
Low
Unreviewed
CVE-2014-8960
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in eXtplorer 2.1.3, when used as a component...
Low
Unreviewed
CVE-2013-5951
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0...
Low
Unreviewed
CVE-2013-4995
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API