Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,017
Maven
5,000+
npm
3,722
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
857
Swift
36
Unreviewed advisories
All unreviewed
5,000+

29,689 advisories

Loading
In JetBrains TeamCity before 2022.10.2 there was an XSS vulnerability in the group creation process. Moderate Unreviewed
CVE-2022-48344 was published Feb 23, 2023
A vulnerability classified as problematic was found in SourceCodester Online Pizza Ordering... Moderate Unreviewed
CVE-2023-0987 was published Feb 23, 2023
In JetBrains TeamCity before 2022.10.2 there was an XSS vulnerability in the user creation process. Moderate Unreviewed
CVE-2022-48343 was published Feb 23, 2023
OpenNMS Meridian and Horizon vulnerable to Cross-site Scripting Moderate
CVE-2023-0868 was published for org.opennms:opennms-webapp (Maven) Feb 23, 2023
Cross Site Scripting in OpenNMS Moderate
CVE-2023-0869 was published for org.opennms:opennms-web-api (Maven) Feb 23, 2023
OpenNMS Meridian and Horizon vulnerable to Cross-site Scripting Moderate
CVE-2023-0867 was published for org.opennms:opennms (Maven) Feb 23, 2023
A vulnerability classified as problematic was found in SourceCodester Online Eyewear Shop 1.0.... High Unreviewed
CVE-2023-0966 was published Feb 22, 2023
OpenNMS Horizon and Meridian vulnerable to Cross-site Scripting Moderate
CVE-2023-0846 was published for org.opennms:opennms (Maven) Feb 22, 2023
A Reflected Cross-site scripting (XSS) vulnerability in interface/forms/eye_mag/php... Moderate Unreviewed
CVE-2023-22972 was published Feb 22, 2023
pfSense CE through 2.6.0 and pfSense Plus before 22.05 allow XSS in the WebGUI via URL Table... Moderate Unreviewed
CVE-2022-29273 was published Feb 22, 2023
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.7 and 6.1.0.0 through 6.1.2.0... Moderate Unreviewed
CVE-2022-43578 was published Feb 22, 2023
The BusinessConnect UI component of TIBCO Software Inc.'s TIBCO BusinessConnect contains an... Moderate Unreviewed
CVE-2022-41567 was published Feb 22, 2023
The server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an easily exploitable... Moderate Unreviewed
CVE-2022-41566 was published Feb 22, 2023
The Web Application component of TIBCO Software Inc.'s TIBCO EBX and TIBCO Product and Service... Moderate Unreviewed
CVE-2022-41565 was published Feb 22, 2023
The BusinessConnect UI component of TIBCO Software Inc.'s TIBCO BusinessConnect contains easily... Moderate Unreviewed
CVE-2023-26214 was published Feb 22, 2023
modoboa Cross-site Scripting vulnerability Moderate
CVE-2023-0949 was published for modoboa (pip) Feb 22, 2023
Multiple stored cross-site scripting (XSS) vulnerabilities in Redrock Software TutorTrac before... Moderate Unreviewed
CVE-2023-24081 was published Feb 22, 2023
A vulnerability, which was classified as problematic, has been found in NHN TOAST UI Chart 4.1.4.... Moderate Unreviewed
CVE-2021-4325 was published Feb 22, 2023
A vulnerability, which was classified as problematic, was found in SourceCodester Best POS... Moderate Unreviewed
CVE-2023-0945 was published Feb 21, 2023
A Vulnerability was discovered in Axis 207W network camera. There is a reflected XSS... Moderate Unreviewed
CVE-2023-22984 was published Feb 21, 2023
IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability... Moderate Unreviewed
CVE-2023-25928 was published Feb 21, 2023
Answer vulnerable to Cross-site Scripting Moderate
CVE-2023-0934 was published for github.com/answerdev/answer (Go) Feb 21, 2023
Vditor Cross-site Scripting vulnerability Moderate
CVE-2021-32855 was published for vditor (npm) Feb 21, 2023
Baremetrics date range picker vulnerable to Cross-site Scripting Moderate
CVE-2021-32859 was published for baremetrics-calendar (npm) Feb 21, 2023
Microweber Cross-site Scripting vulnerability Moderate
CVE-2021-32856 was published for microweber/microweber (Composer) Feb 21, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database