GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
13 advisories
Filter by severity
Arbitrary JavaScript execution due to using outdated libraries
Low
GHSA-4m3g-6r7g-jv4f
was published
for
gradio_pdf
(pip)
Jun 5, 2024
Fides JavaScript Injection Vulnerability in Privacy Center URL
Low
CVE-2023-46126
was published
for
ethyca-fides
(pip)
Oct 24, 2023
Zope management interface vulnerable to stored cross site scripting via the title property
Low
CVE-2023-44389
was published
for
Zope
(pip)
Oct 4, 2023
plone.restapi vulnerable to Stored Cross Site Scripting with SVG image in user portrait
Low
GHSA-hc5c-r8m5-2gfh
was published
for
plone.restapi
(pip)
Sep 21, 2023
plone.namedfile vulnerable to Stored Cross Site Scripting with SVG images
Low
CVE-2023-41048
was published
for
plone.namedfile
(pip)
Sep 21, 2023
Zope vulnerable to Stored Cross Site Scripting with SVG images
Low
CVE-2023-42458
was published
for
Zope
(pip)
Sep 21, 2023
Cabot Cross Site Scripting (XSS) vulnerability via Endpoint column
Low
CVE-2020-7734
was published
for
cabot
(pip)
May 24, 2022
Plone Cross-site scripting Vulnerability
Low
CVE-2012-5502
was published
for
plone
(pip)
May 17, 2022
OpenStack Horizon Cross-site scripting (XSS) vulnerability
Low
CVE-2014-3474
was published
for
horizon
(pip)
May 13, 2022
OpenStack Dashboard (Horizon) Cross-site scripting (XSS) vulnerability in the Host Aggregates interface
Low
CVE-2014-3594
was published
for
horizon
(pip)
May 13, 2022
Low severity vulnerability that affects Plone
Low
CVE-2011-1949
was published
for
Plone
(pip)
Jul 23, 2018
ProTip!
Advisories are also available from the
GraphQL API