Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,714
NuGet
661
pip
3,387
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

29,513 advisories

Loading
The Jeg Elementor Kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-10308 was published Nov 26, 2024
The Parsi Date plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the... Moderate Unreviewed
CVE-2024-11032 was published Nov 26, 2024
The Booster for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2024-9170 was published Nov 26, 2024
The Spotify Play Button for WordPress plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-11192 was published Nov 26, 2024
The BNE Gallery Extended plugin for WordPress is vulnerable to Stored Cross-Site Scripting via... Moderate Unreviewed
CVE-2024-11119 was published Nov 26, 2024
The Support SVG – Upload svg files in wordpress without hassle plugin for WordPress is vulnerable... Moderate Unreviewed
CVE-2024-11091 was published Nov 26, 2024
Cross-site scripting vulnerability exists in Sharp Corporation and Toshiba Tech Corporation... High Unreviewed
CVE-2024-36249 was published Nov 26, 2024
Multiple plugins for WordPress are vulnerable to Reflected Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-11202 was published Nov 26, 2024
Cross-site scripting vulnerability exists in WP Admin UI Customize versions prior to ver 1.5.14.... Moderate Unreviewed
CVE-2024-53278 was published Nov 26, 2024
The Additional Order Filters for WooCommerce plugin for WordPress is vulnerable to Reflected... Moderate Unreviewed
CVE-2024-11418 was published Nov 26, 2024
A vulnerability was found in CodeAstro Hospital Management System 1.0. It has been classified as... Moderate Unreviewed
CVE-2024-11677 was published Nov 26, 2024
A vulnerability has been found in CodeAstro Hospital Management System 1.0 and classified as... Moderate Unreviewed
CVE-2024-11675 was published Nov 26, 2024
A vulnerability was found in CodeAstro Hospital Management System 1.0. It has been declared as... Moderate Unreviewed
CVE-2024-11678 was published Nov 26, 2024
A vulnerability was found in CodeAstro Hospital Management System 1.0 and classified as... Moderate Unreviewed
CVE-2024-11676 was published Nov 26, 2024
A cross-site scripting (XSS) vulnerability in the /scroll.php endpoint of LafeLabs Chaos v0.0.1... Moderate Unreviewed
CVE-2024-53599 was published Nov 25, 2024
A Stored Cross-Site Scripting (XSS) vulnerability in the Management Console of BlackBerry AtHoc... Moderate Unreviewed
CVE-2024-51723 was published Nov 25, 2024
deno_doc's HTML generator vulnerable to Cross-site Scripting Low
CVE-2024-32468 was published for deno_doc (Rust) Nov 25, 2024
NeKzor
IBM Jazz Foundation 7.0.2 and below are vulnerable to cross-site scripting. This vulnerability... Moderate Unreviewed
CVE-2023-45181 was published Nov 25, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')... Moderate Unreviewed
CVE-2024-7130 was published Nov 25, 2024
@sveltejs/kit vulnerable to on dev mode 404 page Low
CVE-2024-53261 was published for @sveltejs/kit (npm) Nov 25, 2024
benmccann eltigerchino
@sveltejs/kit has unescaped error message included on error page Low
CVE-2024-53262 was published for @sveltejs/kit (npm) Nov 25, 2024
dominikg eltigerchino
benmccann
Eaton Intelligent Power Manager (IPM) prior to 1.70 is vulnerable to stored Cross site scripting.... Moderate Unreviewed
CVE-2021-23282 was published Nov 25, 2024
A vulnerability was found in code-projects Farmacia 1.0. It has been classified as problematic.... Moderate Unreviewed
CVE-2024-11660 was published Nov 25, 2024
The Rescue Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed
CVE-2024-11199 was published Nov 23, 2024
The 코드엠샵 소셜톡 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's... Moderate Unreviewed
CVE-2024-11229 was published Nov 23, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database