GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,035
Maven
5,000+
npm
3,732
NuGet
662
pip
3,413
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,209 advisories
Filter by severity
Reflected Cross Site Scripting in GitHub repository openemr/openemr prior to 6.0.0.4.
Low
Unreviewed
CVE-2022-1180
was published
Mar 31, 2022
In JetBrains IntelliJ IDEA before 2022.1 HTML injection into IDE messages was possible
Low
Unreviewed
CVE-2022-29816
was published
Apr 29, 2022
Sun ONE (aka iPlanet) Web Server 4.1 through SP12 and 6.0 through SP5, when DNS resolution is...
Low
Unreviewed
CVE-2003-1577
was published
Apr 29, 2022
Microsoft Internet Information Services (IIS) 6.0, when DNS resolution is enabled for client IP...
Low
Unreviewed
CVE-2003-1582
was published
Apr 29, 2022
The Apache HTTP Server 2.0.44, when DNS resolution is enabled for client IP addresses, allows...
Low
Unreviewed
CVE-2003-1581
was published
Apr 29, 2022
Cross-site scripting (XSS) vulnerability in readpmsg.php in PostNuke 0.750 allows remote...
Low
Unreviewed
CVE-2005-1778
was published
May 1, 2022
Cross-site scripting (XSS) vulnerability in iSQL*Plus (iSQLPlus) in Oracle9i Database Server...
Low
Unreviewed
CVE-2005-3205
was published
May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework before 3.0.8...
Low
Unreviewed
CVE-2005-4190
was published
May 1, 2022
Interpretation conflict in PostNuke 0.761 and earlier allows remote attackers to conduct cross...
Low
Unreviewed
CVE-2006-0800
was published
May 1, 2022
Cross-site scripting (XSS) vulnerability in Microsoft Exchange Server 2000 SP1 through SP3, when...
Low
Unreviewed
CVE-2006-1193
was published
May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Autogallery 0.41 allow remote...
Low
Unreviewed
CVE-2006-1750
was published
May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Ralph Capper Tiny PHP Forum (TPF) 3.6...
Low
Unreviewed
CVE-2006-1898
was published
May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Papoo 2.1.5 allow remote attackers to...
Low
Unreviewed
CVE-2006-1918
was published
May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in phpLDAPadmin 0.9.8 and earlier allow...
Low
Unreviewed
CVE-2006-2016
was published
May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Xtreme Topsites 1.1 allow remote attackers...
Low
Unreviewed
CVE-2006-2545
was published
May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in 5 Star Review allow remote attackers to...
Low
Unreviewed
CVE-2006-3061
was published
May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in interna/hilfe.php in Papoo 3 RC3 and...
Low
Unreviewed
CVE-2006-3571
was published
May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in TorrentFlux 2.1 allow remote attackers to...
Low
Unreviewed
CVE-2006-5451
was published
May 1, 2022
Cross-site scripting (XSS) vulnerability in Oracle Reports Web Cartridge (RWCGI60) in the...
Low
Unreviewed
CVE-2007-0275
was published
May 1, 2022
Cross-site scripting (XSS) vulnerability in memcp.php in XMB U2U Instant Messenger allows remote...
Low
Unreviewed
CVE-2007-0519
was published
May 1, 2022
The KDE HTML library (kdelibs), as used by Konqueror 3.5.5, does not properly parse HTML comments...
Low
Unreviewed
CVE-2007-0537
was published
May 1, 2022
** DISPUTED ** Multiple cross-site scripting (XSS) vulnerabilities in the Admin Control Panel ...
Low
Unreviewed
CVE-2007-0830
was published
May 1, 2022
** DISPUTED ** Cross-site scripting (XSS) vulnerability in an mt import in wp-admin/admin.php in...
Low
Unreviewed
CVE-2007-1732
was published
May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Claroline before 1.8.6 allow remote...
Low
Unreviewed
CVE-2007-4717
was published
May 1, 2022
Cross-site scripting (XSS) vulnerability in admin/adminusers.php in Claroline before 1.8.6 allows...
Low
Unreviewed
CVE-2007-4741
was published
May 1, 2022
ProTip!
Advisories are also available from the
GraphQL API