GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,878
Composer 4,266
Erlang 31
GitHub Actions 21
Go 2,035
Maven 5,219
npm 3,732
NuGet 662
pip 3,413
Pub 12
RubyGems 891
Rust 865
Swift 36

Unreviewed advisories

All unreviewed 237,816

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

30,088 advisories

Filter by severity

Sort by

Least recently updated

Complianz WordPress plugin vulnerable to cross-site scripting Moderate

CVE-2023-1069 was published for really-simple-plugins/complianz-gdpr (Composer) Mar 27, 2023

The WP Image Carousel WordPress plugin through 1.0.2 does not sanitise and escape some parameters... Moderate Unreviewed

CVE-2023-0589 was published Mar 27, 2023

The Smart Slider 3 WordPress plugin before 3.5.1.14 does not properly validate and escape some of... Moderate Unreviewed

CVE-2023-0660 was published Mar 27, 2023

In JetBrains TeamCity before 2022.10.3 stored XSS in Perforce connection settings was possible Moderate Unreviewed

CVE-2022-48426 was published Mar 27, 2023

In JetBrains TeamCity before 2022.10.3 stored XSS on the SSH keys page was possible Moderate Unreviewed

CVE-2022-48428 was published Mar 27, 2023

A cross-site scripting (XSS) vulnerability in File Management Project 1.0.0 allows attackers to... Moderate Unreviewed

CVE-2023-27245 was published Mar 27, 2023

In JetBrains Hub before 2022.3.15573, 2022.2.15572, 2022.1.15583 reflected XSS in dashboards was... Moderate Unreviewed

CVE-2022-48429 was published Mar 27, 2023

SourceCodester Water Billing System v1.0 was discovered to contain a cross-site scripting (XSS)... Moderate Unreviewed

CVE-2023-27241 was published Mar 27, 2023

The Schedulicity WordPress plugin through 2.21 does not validate and escape some of its shortcode... Moderate Unreviewed

CVE-2023-0491 was published Mar 27, 2023

The NEX-Forms WordPress plugin before 8.3.3 does not validate and escape some of its shortcode... Moderate Unreviewed

CVE-2023-0272 was published Mar 27, 2023

The menu shortcode WordPress plugin through 1.0 does not validate and escape some of its block... Moderate Unreviewed

CVE-2023-0395 was published Mar 27, 2023

Phpgurukul Park Ticketing Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via... Moderate Unreviewed

CVE-2023-26958 was published Mar 27, 2023

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Contempoinc Real Estate 7 WordPress... Moderate Unreviewed

CVE-2022-47146 was published Mar 27, 2023

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Le Van Toan Woocommerce Vietnam... Moderate Unreviewed

CVE-2022-46843 was published Mar 27, 2023

Openfind Mail2000 file uploading function has insufficient filtering for user input. An... Moderate Unreviewed

CVE-2023-22902 was published Mar 27, 2023

RIFARTEK IOT Wall transportation function has insufficient filtering for user input. An... Moderate Unreviewed

CVE-2023-25018 was published Mar 27, 2023

In MISP 2.4.169, app/Lib/Tools/CustomPaginationTool.php allows XSS in the community index. Moderate Unreviewed

CVE-2023-28884 was published Mar 27, 2023

A vulnerability was found in OTCMS 6.72. It has been declared as problematic. Affected by this... Moderate Unreviewed

CVE-2023-1635 was published Mar 25, 2023

Cobalt Strike 4.7.1 fails to properly escape HTML tags when they are displayed on Swing... Critical Unreviewed

CVE-2022-42948 was published Mar 24, 2023

SourceCodester Loan Management System v1.0 was discovered to contain a cross-site scripting (XSS)... Moderate Unreviewed

CVE-2023-27242 was published Mar 24, 2023

A vulnerability was found in XiaoBingBy TeaCMS up to 2.0.2. It has been classified as problematic... Moderate Unreviewed

CVE-2023-1616 was published Mar 24, 2023

Cross Site Scripting vulnerabilty found in IXPManager v.5.6.0 allows attackers to excute... Moderate Unreviewed

CVE-2020-24857 was published Mar 24, 2023

A vulnerability was found in Zhong Bang CRMEB Java up to 1.3.4. It has been rated as problematic.... Moderate Unreviewed

CVE-2023-1609 was published Mar 23, 2023

A vulnerability has been found in Rebuild up to 3.2.3 and classified as problematic. This... Moderate Unreviewed

CVE-2023-1613 was published Mar 23, 2023

Moodle vulnerable to Cross-site Scripting when algebra filter enabled but not functional Moderate

CVE-2023-28332 was published for moodle/moodle (Composer) Mar 23, 2023

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

30,088 advisories