Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,131
Erlang
29
GitHub Actions
19
Go
1,936
Maven
5,000+
npm
3,671
NuGet
642
pip
3,288
Pub
10
RubyGems
873
Rust
828
Swift
35
Unreviewed advisories
All unreviewed
5,000+

28,307 advisories

Loading
PHPGurukul Hospital Management System In PHP V 4.0 is vulnerable to Cross Site Scripting (XSS)... Moderate Unreviewed
CVE-2022-42206 was published Oct 21, 2022
Auth. Stored Cross-Site Scripting (XSS) in Pop-Up Chop Chop plugin <= 2.1.7 on WordPress. Moderate Unreviewed
CVE-2022-41638 was published Oct 21, 2022
Auth. (admin+) Stored Cross-Site Scripting (XSS) in Fatcat Apps Analytics Cat plugin <= 1.0.9 on... Moderate Unreviewed
CVE-2022-40311 was published Oct 21, 2022
Aethon TUG Home Base Server versions prior to version 24 are affected by un unauthenticated... Moderate Unreviewed
CVE-2022-1059 was published Oct 21, 2022
Aethon TUG Home Base Server versions prior to version 24 are affected by un unauthenticated... Moderate Unreviewed
CVE-2022-27494 was published Oct 21, 2022
Simple Exam Reviewer Management System v1.0 is vulnerable to Stored Cross Site Scripting (XSS)... Moderate Unreviewed
CVE-2022-42200 was published Oct 20, 2022
A stored cross-site scripting (XSS) vulnerability in Garage Management System v1.0 allows... Moderate Unreviewed
CVE-2022-41358 was published Oct 20, 2022
Cross Site Scripting (XSS) vulnerability in New equipment page in EasyVista Service Manager 2018... Moderate Unreviewed
CVE-2021-33231 was published Oct 20, 2022
phpMyFAQ vulnerable to Cross-site Scripting High
CVE-2022-3608 was published for phpmyfaq/phpmyfaq (Composer) Oct 19, 2022
A stored cross-site scripting (XSS) vulnerability in the Configuration/Holidays module of... Moderate Unreviewed
CVE-2022-43185 was published Oct 19, 2022
Stored XSS vulnerability in Jenkins Custom Checkbox Parameter Plugin High
CVE-2022-43425 was published for io.jenkins.plugins:custom-checkbox-parameter (Maven) Oct 19, 2022
NotMyFault
Stored XSS vulnerability in Jenkins Pipeline: Supporting APIs Plugin High
CVE-2022-43409 was published for org.jenkins-ci.plugins.workflow:workflow-support (Maven) Oct 19, 2022
NotMyFault
Stored XSS vulnerability in Jenkins Contrast Continuous Application Security Plugin High
CVE-2022-43420 was published for org.jenkins-ci.plugins:contrast-continuous-application-security (Maven) Oct 19, 2022
NotMyFault
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting (XSS) vulnerability... Moderate Unreviewed
CVE-2022-43014 was published Oct 19, 2022
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting (XSS) vulnerability... Moderate Unreviewed
CVE-2022-43018 was published Oct 19, 2022
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting (XSS) vulnerability... Moderate Unreviewed
CVE-2022-43017 was published Oct 19, 2022
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting (XSS) vulnerability... Moderate Unreviewed
CVE-2022-43015 was published Oct 19, 2022
OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting (XSS) vulnerability... Moderate Unreviewed
CVE-2022-43016 was published Oct 19, 2022
A Cross-site scripting (XSS) vulnerability in the Role module's edit role assignees page in... Moderate Unreviewed
CVE-2022-42114 was published Oct 19, 2022
A Cross-site scripting (XSS) vulnerability in the Frontend Taglib module in Liferay Portal 7.3.2... Moderate Unreviewed
CVE-2022-42117 was published Oct 19, 2022
A Cross-site scripting (XSS) vulnerability in the Portal Search module's Sort widget in Liferay... Moderate Unreviewed
CVE-2022-42112 was published Oct 19, 2022
Cross-site scripting (XSS) vulnerability in the Object module's edit object details page in... Moderate Unreviewed
CVE-2022-42115 was published Oct 19, 2022
A Cross-site scripting (XSS) vulnerability in the Frontend Editor module's integration with... Moderate Unreviewed
CVE-2022-42116 was published Oct 19, 2022
A Cross-site scripting (XSS) vulnerability in Document Library module in Liferay Portal 7.4.3.30... Moderate Unreviewed
CVE-2022-42113 was published Oct 19, 2022
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component:... Moderate Unreviewed
CVE-2022-21639 was published Oct 19, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database