GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
27,964 advisories
Filter by severity
Certain switch models from PLANET Technology have a web application that does not properly...
Moderate
Unreviewed
CVE-2024-8457
was published
Sep 30, 2024
A vulnerability was found in SourceCodester Inventory Management System 1.0. It has been declared...
Moderate
Unreviewed
CVE-2024-9323
was published
Sep 29, 2024
A vulnerability has been found in SourceCodester Online Timesheet App 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-9320
was published
Sep 29, 2024
A vulnerability classified as problematic has been found in SourceCodester Online Railway...
Moderate
Unreviewed
CVE-2024-9299
was published
Sep 28, 2024
The WP MultiTasking – WP Utilities plugin for WordPress is vulnerable to Stored Cross-Site...
Moderate
Unreviewed
CVE-2024-8189
was published
Sep 28, 2024
A vulnerability classified as problematic was found in SourceCodester Online Railway Reservation...
Moderate
Unreviewed
CVE-2024-9300
was published
Sep 28, 2024
The GTM Server Side plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to...
Moderate
Unreviewed
CVE-2024-8712
was published
Sep 28, 2024
The EU/UK VAT Manager for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site...
Moderate
Unreviewed
CVE-2024-8788
was published
Sep 28, 2024
The Simple LDAP Login plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to...
Moderate
Unreviewed
CVE-2024-8715
was published
Sep 28, 2024
The Simple Popup Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
Moderate
Unreviewed
CVE-2024-8547
was published
Sep 28, 2024
The WP-WebAuthn plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin...
Moderate
Unreviewed
CVE-2024-9023
was published
Sep 28, 2024
A vulnerability classified as problematic has been found in kalvinGit kvf-admin up to...
Moderate
Unreviewed
CVE-2024-9291
was published
Sep 27, 2024
Filament has unvalidated ColorColumn and ColorEntry values that can be used for Cross-site Scripting
Critical
CVE-2024-47186
was published
for
filament/infolists
(Composer)
Sep 27, 2024
A cross-site scripting (XSS) vulnerability in Flatpress v1.3 allows attackers to execute...
Moderate
Unreviewed
CVE-2024-25411
was published
Sep 27, 2024
A Stored Cross-Site Scripting (XSS) vulnerability in Webkul Krayin CRM 1.3.0 allows remote...
Critical
Unreviewed
CVE-2024-46367
was published
Sep 27, 2024
Advantech ADAM 5550's web application includes a "logs" page where all
the HTTP requests...
High
Unreviewed
CVE-2024-38308
was published
Sep 27, 2024
A vulnerability classified as problematic has been found in RelaxedJS ReLaXed up to 0.2.2....
Moderate
Unreviewed
CVE-2024-9283
was published
Sep 27, 2024
Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain...
High
Unreviewed
CVE-2024-40509
was published
Sep 27, 2024
Cross Site Scripting vulnerability in CodeAstro Membership Management System 1.0 allows attackers...
Moderate
Unreviewed
CVE-2024-46470
was published
Sep 27, 2024
Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain...
High
Unreviewed
CVE-2024-40512
was published
Sep 27, 2024
An authenticated cross-site scripting (XSS) vulnerability in Piwigo v14.5.0 allows attackers to...
Moderate
Unreviewed
CVE-2024-46333
was published
Sep 27, 2024
Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain...
High
Unreviewed
CVE-2024-40511
was published
Sep 27, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
High
Unreviewed
CVE-2024-8608
was published
Sep 27, 2024
A vulnerability classified as problematic has been found in TMsoft MyAuth Gateway 3. Affected is...
Moderate
Unreviewed
CVE-2024-9276
was published
Sep 27, 2024
A vulnerability, which was classified as problematic, was found in funnyzpc Mee-Admin up to 1.6....
Moderate
Unreviewed
CVE-2024-9279
was published
Sep 27, 2024
ProTip!
Advisories are also available from the
GraphQL API