Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,017
Maven
5,000+
npm
3,722
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
857
Swift
36
Unreviewed advisories
All unreviewed
5,000+

29,689 advisories

Loading
A vulnerability was found in SourceCodester Simple Payroll System 1.0. It has been declared as... Moderate Unreviewed
CVE-2023-1113 was published Mar 1, 2023
A vulnerability in the web-based management interface of Cisco Nexus Dashboard could allow an... Moderate Unreviewed
CVE-2023-20053 was published Mar 1, 2023
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)... Moderate Unreviewed
CVE-2023-20085 was published Mar 1, 2023
A vulnerability in the ArubaOS web management interface could allow an authenticated remote... Moderate Unreviewed
CVE-2023-22778 was published Mar 1, 2023
SOLDR (System of Orchestration, Lifecycle control, Detection and Response) 1.1.0 allows stored... Moderate Unreviewed
CVE-2023-26608 was published Mar 1, 2023
Cross-site Scripting (XSS) - Stored in GitHub repository flatpressblog/flatpress prior to 1.3. Moderate Unreviewed
CVE-2023-1103 was published Mar 1, 2023
Cross-site Scripting (XSS) - Stored in GitHub repository flatpressblog/flatpress prior to 1.3. Moderate Unreviewed
CVE-2023-1104 was published Mar 1, 2023
Active IQ Unified Manager for VMware vSphere, Linux, and Microsoft Windows versions prior to 9... Moderate Unreviewed
CVE-2022-23239 was published Mar 1, 2023
An XSS vulnerability exists within Quest KACE Systems Management Appliance (SMA) through 12.1... Moderate Unreviewed
CVE-2022-38220 was published Mar 1, 2023
Improper neutralization of input during web page generation allows an authenticated attacker with... Moderate Unreviewed
CVE-2023-27294 was published Feb 28, 2023
An issue was discovered in Online Reviewer Management System v1.0. There is a XSS vulnerability... Moderate Unreviewed
CVE-2023-25431 was published Feb 28, 2023
Microweber Cross-site Scripting vulnerability Moderate
CVE-2023-1081 was published for microweber/microweber (Composer) Feb 28, 2023
The GS Insever Portfolio WordPress plugin before 1.4.5 does not validate and escape some of its... Moderate Unreviewed
CVE-2023-0539 was published Feb 27, 2023
The ShortPixel Adaptive Images WordPress plugin before 3.6.3 does not sanitise and escape a... Moderate Unreviewed
CVE-2023-0334 was published Feb 27, 2023
WangEditor v5 was discovered to contain a cross-site scripting (XSS) vulnerability via the... Moderate Unreviewed
CVE-2023-24251 was published Feb 27, 2023
The Arigato Autoresponder and Newsletter WordPress plugin before 2.1.7.2 does not sanitize and... Moderate Unreviewed
CVE-2023-0543 was published Feb 27, 2023
The Donation Block For PayPal WordPress plugin before 2.1.0 does not validate and escape some of... Moderate Unreviewed
CVE-2023-0535 was published Feb 27, 2023
The Namaste! LMS WordPress plugin before 2.5.9.4 does not sanitize and escape some of its... Moderate Unreviewed
CVE-2023-0548 was published Feb 27, 2023
The Olevmedia Shortcodes WordPress plugin through 1.1.9 does not validate and escape some of its... Moderate Unreviewed
CVE-2023-0168 was published Feb 27, 2023
The VK All in One Expansion Unit WordPress plugin before 9.86.0.0 does not validate and escape... Moderate Unreviewed
CVE-2023-0230 was published Feb 27, 2023
Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection... Moderate Unreviewed
CVE-2023-24651 was published Feb 27, 2023
A stored cross-site scripting (XSS) vulnerability in Art Gallery Management System Project v1.0... Moderate Unreviewed
CVE-2023-23157 was published Feb 27, 2023
A stored cross-site scripting (XSS) vulnerability in Art Gallery Management System Project v1.0... Moderate Unreviewed
CVE-2023-23158 was published Feb 27, 2023
The Wufoo Shortcode WordPress plugin before 1.52 does not validate and escape some of its... Moderate Unreviewed
CVE-2022-4679 was published Feb 27, 2023
The Galleries by Angie Makes WordPress plugin through 1.67 does not validate and escape some of... Moderate Unreviewed
CVE-2022-4795 was published Feb 27, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database