Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,112
Maven
5,000+
npm
3,767
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

31,689 advisories

Loading
Cross Site Scripting (XSS) vulnerability in Archer Platform before v.6.13 and fixed in v.6.12.0.6... Moderate Unreviewed
CVE-2023-37223 was published Jul 14, 2023
webmention.js Cross-site Scripting vulnerability High
CVE-2023-3672 was published for webmention.js (npm) Jul 14, 2023
The "Buy Me a Coffee – Button and Widget Plugin" plugin for WordPress is vulnerable to Cross-Site... Moderate Unreviewed
CVE-2023-2082 was published Jul 14, 2023
Alaris Systems Manager does not perform input validation during the Device Import Function. Moderate Unreviewed
CVE-2023-30564 was published Jul 13, 2023
A malicious file could be uploaded into a System Manager User Import Function resulting in a... High Unreviewed
CVE-2023-30563 was published Jul 13, 2023
A cross-site scripting (XSS) vulnerability in Maid Hiring Management System v1.0 allows attackers... Moderate Unreviewed
CVE-2023-37746 was published Jul 13, 2023
Multiple cross-site scripting (XSS) vulnerabilities in Geeklog v2.2.2 allow attackers to execute... Moderate Unreviewed
CVE-2023-37786 was published Jul 13, 2023
Multiple cross-site scripting (XSS) vulnerabilities in Geeklog v2.2.2 allow attackers to execute... Moderate Unreviewed
CVE-2023-37787 was published Jul 13, 2023
A cross-site scripting (XSS) vulnerability in Teacher Subject Allocation System v1.0 allows... Moderate Unreviewed
CVE-2023-37743 was published Jul 13, 2023
A cross-site scripting (XSS) vulnerability in Maid Hiring Management System v1.0 allows attackers... Moderate Unreviewed
CVE-2023-37745 was published Jul 13, 2023
Maid Hiring Management System v1.0 was discovered to contain a cross-site scripting (XSS)... Moderate Unreviewed
CVE-2023-37744 was published Jul 13, 2023
ImpressCMS Cross-site Scripting vulnerability Moderate
CVE-2023-37785 was published for impresscms/impresscms (Composer) Jul 13, 2023
A Reflected Cross-site scripting (XSS) vulnerability in Sourcecodester Task Reminder System 1.0... Moderate Unreviewed
CVE-2023-31705 was published Jul 13, 2023
A vulnerability has been found in SourceCodester AC Repair and Services System 1.0 and classified... Moderate Unreviewed
CVE-2023-3659 was published Jul 13, 2023
A vulnerability was found in Campcodes Retro Cellphone Online Store 1.0 and classified as... Low Unreviewed
CVE-2023-3660 was published Jul 13, 2023
Currently, geomap configuration (Administration -> General -> Geographical maps) allows using... Moderate Unreviewed
CVE-2023-29452 was published Jul 13, 2023
Reflected XSS attacks, also known as non-persistent attacks, occur when a malicious script is... Moderate Unreviewed
CVE-2023-29455 was published Jul 13, 2023
Stored or persistent cross-site scripting (XSS) is a type of XSS where the attacker first sends... Moderate Unreviewed
CVE-2023-29454 was published Jul 13, 2023
URL validation scheme receives input from a user and then parses it to identify its various... Moderate Unreviewed
CVE-2023-29456 was published Jul 13, 2023
Reflected XSS attacks, occur when a malicious script is reflected off a web application to the... Moderate Unreviewed
CVE-2023-29457 was published Jul 13, 2023
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2023-3319 was published Jul 13, 2023
Cross-site scripting vulnerability in WRH-300WH-H v2.12 and earlier, and WTC-300HWH v1.09 and... Moderate Unreviewed
CVE-2023-37560 was published Jul 13, 2023
An issue has been discovered in GitLab CE/EE affecting all versions starting from 7.14 before 15... Moderate Unreviewed
CVE-2023-2200 was published Jul 13, 2023
Online Piggery Management System 1.0 is vulnerable to Cross Site Scripting (XSS). An... Moderate Unreviewed
CVE-2023-37630 was published Jul 12, 2023
A vulnerability has been found in khodakhah NodCMS 3.4.1 and classified as problematic. Affected... Moderate Unreviewed
CVE-2023-3641 was published Jul 12, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database