Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

26,358 advisories

Loading
An issue was discovered in WSO2 Enterprise Integrator 6.4.0. A Reflected Cross-Site Scripting ... Moderate Unreviewed
CVE-2022-39810 was published Sep 10, 2022
An issue was discovered in WSO2 Enterprise Integrator 6.4.0. A Reflected Cross-Site Scripting ... Moderate Unreviewed
CVE-2022-39809 was published Sep 10, 2022
Markdown-Nice v1.8.22 vulnerable to Cross-site Scripting Moderate
CVE-2022-38639 was published for markdown-nice (npm) Sep 10, 2022
Cross-site Scripting (XSS) - Generic in GitHub repository jgraph/drawio prior to 20.3.0. Moderate Unreviewed
CVE-2022-3138 was published Sep 9, 2022
Cross-site Scripting (XSS) - Generic in GitHub repository jgraph/drawio prior to 20.3.0. Moderate Unreviewed
CVE-2022-3148 was published Sep 9, 2022
TastyIgniter v3.5.0 was discovered to contain a cross-site scripting (XSS) vulnerability which... Moderate Unreviewed
CVE-2022-38256 was published Sep 9, 2022
ftcms 2.1 poster.PHP has a XSS vulnerability. The attacker inserts malicious JavaScript code into... Moderate Unreviewed
CVE-2022-37731 was published Sep 8, 2022
Cross Site Scripting (XSS) in xiunobbs 4.0.4 allows remote attackers to execute arbitrary web... Moderate Unreviewed
CVE-2020-19914 was published Sep 8, 2022
Nagios XI v5.8.6 was discovered to contain a cross-site scripting (XSS) vulnerability via the MTR... Moderate Unreviewed
CVE-2022-38249 was published Sep 8, 2022
Nagios XI v5.8.6 was discovered to contain a cross-site scripting (XSS) vulnerability via the... Moderate Unreviewed
CVE-2022-38247 was published Sep 8, 2022
Nagios XI v5.8.6 was discovered to contain a cross-site scripting (XSS) vulnerability via the... Moderate Unreviewed
CVE-2022-38251 was published Sep 8, 2022
Nagios XI before v5.8.7 was discovered to contain a cross-site scripting (XSS) vulnerability via... Moderate Unreviewed
CVE-2022-38254 was published Sep 8, 2022
Nagios XI before v5.8.7 was discovered to contain multiple cross-site scripting (XSS)... Moderate Unreviewed
CVE-2022-38248 was published Sep 8, 2022
An improper neutralization of input during web page generation vulnerability [CWE-79] in the... Moderate Unreviewed
CVE-2022-26114 was published Sep 7, 2022
An improper neutralization of input during web page generation vulnerability [CWE-79] in FortiOS... Moderate Unreviewed
CVE-2021-43080 was published Sep 7, 2022
The Beaver Builder – WordPress Page Builder for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2022-2517 was published Sep 7, 2022
The Image Hover Effects Ultimate plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2022-2936 was published Sep 7, 2022
The Visual Composer Website Builder plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2022-2516 was published Sep 7, 2022
The Beaver Builder – WordPress Page Builder for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2022-2695 was published Sep 7, 2022
The Beaver Builder – WordPress Page Builder for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2022-2934 was published Sep 7, 2022
The Beaver Builder – WordPress Page Builder for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2022-2716 was published Sep 7, 2022
The Simple Banner plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2022-2515 was published Sep 7, 2022
The WP-UserOnline plugin for WordPress has multiple Stored Cross-Site Scripting vulnerabilities... Moderate Unreviewed
CVE-2022-2941 was published Sep 7, 2022
The WP-UserOnline plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2022-2473 was published Sep 7, 2022
The Simple SEO plugin for WordPress is vulnerable to attribute-based stored Cross-Site Scripting... Moderate Unreviewed
CVE-2022-1628 was published Sep 7, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database