Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,368 advisories

Loading
Multiple cross-site scripting (XSS) vulnerabilities in XRMS CRM 1.99.2 allow remote attackers to... Low Unreviewed
CVE-2008-3398 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in setup.php in phpMyAdmin before 2.11.8 allows user... Low Unreviewed
CVE-2008-3457 was published May 2, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Pluck 4.5.2, when register_globals is... Low Unreviewed
CVE-2008-3574 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in inc-core-admin-editor-previouscolorsjs.php in the... Low Unreviewed
CVE-2008-3715 was published May 2, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Mambo 4.6.2 and 4.6.5, when... Low Unreviewed
CVE-2008-3712 was published May 2, 2022
The private filesystem in Drupal 5.x before 5.10 and 6.x before 6.4 trusts the MIME type sent by... Low Unreviewed
CVE-2008-3741 was published May 2, 2022
Multiple cross-site scripting (XSS) vulnerabilities in admin/index.php in ACG-PTP 1.0.6 allow... Low Unreviewed
CVE-2008-3782 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in account.php in Lussumo Vanilla 1.1.5-rc1, 1.1.4, and... Low Unreviewed
CVE-2008-3874 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Bookmarks plugin in Brim 2.0 allows remote... Low Unreviewed
CVE-2008-4083 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in admin.php in OpenSolution Quick.Cms.Lite 2.1 allows... Low Unreviewed
CVE-2008-4139 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Talk module 5.x before 5.x-1.3 and 6.x before 6.x... Low Unreviewed
CVE-2008-4152 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the command-line client in MySQL 5.0.26 through 5.0... Low Unreviewed
CVE-2008-4456 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in Brilliant Gallery 5.x before 5.x-4.2, a module for... Low Unreviewed
CVE-2008-4530 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in Cisco Unity 4.x before 4.2(1)ES162, 5.x before 5.0(1... Low Unreviewed
CVE-2008-4542 was published May 2, 2022
Cross-domain vulnerability in js/src/jsobj.cpp in Mozilla Firefox 3.x before 3.0.6 allows remote... Low Unreviewed
CVE-2009-0354 was published May 2, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Samizdat before 0.6.2 allow remote... Low Unreviewed
CVE-2009-0359 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in sysconf.cgi in Motorola Wimax modem CPEi300 allows... Low Unreviewed
CVE-2009-0393 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the anonymous comments feature in lib-comment.php in... Low Unreviewed
CVE-2009-0455 was published May 2, 2022
Bugzilla 2.x before 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows... Low Unreviewed
CVE-2009-0481 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in index.php in the Link module 5.x-2.5 for Drupal 5.10... Low Unreviewed
CVE-2009-0603 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in pagesUTF8/auftrag_allgemeinauftrag.jsp in Plunet... Low Unreviewed
CVE-2009-0699 was published May 2, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the web-based installer (config/index.php)... Low Unreviewed
CVE-2009-0737 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the edit account page in the Web Server in Cisco... Low Unreviewed
CVE-2009-0743 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in Status.pm in Apache::Status and Apache2::Status in... Low Unreviewed
CVE-2009-0796 was published May 2, 2022
Cross-site scripting (XSS) vulnerability in the Protected Node module 5.x before 5.x-1.4 and 6.x... Low Unreviewed
CVE-2009-0817 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database