Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
1,998
Maven
5,000+
npm
3,710
NuGet
661
pip
3,364
Pub
11
RubyGems
885
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

29,446 advisories

Loading
The Restaurant Menu WordPress plugin before 2.3.6 does not validate and escape some of its... Moderate Unreviewed
CVE-2022-4657 was published Feb 6, 2023
The Leaflet Maps Marker WordPress plugin before 3.12.7 does not validate and escape one of its... Moderate Unreviewed
CVE-2022-4677 was published Feb 6, 2023
The PPWP WordPress plugin before 1.8.6 does not validate and escape some of its shortcode... Moderate Unreviewed
CVE-2022-4626 was published Feb 6, 2023
The Materialis Companion WordPress plugin before 1.3.40 does not validate and escape some of its... Moderate Unreviewed
CVE-2022-4762 was published Feb 6, 2023
The My YouTube Channel WordPress plugin before 3.23.0 does not validate and escape some of its... Moderate Unreviewed
CVE-2022-4756 was published Feb 6, 2023
The PDF.js Viewer WordPress plugin before 2.1.8 does not validate and escape some of its... Moderate Unreviewed
CVE-2022-4670 was published Feb 6, 2023
The WP Show Posts WordPress plugin before 1.1.4 does not validate and escape some of its... Moderate Unreviewed
CVE-2022-4459 was published Feb 6, 2023
The Ibtana WordPress plugin before 1.1.8.8 does not validate and escape one of its shortcode... Moderate Unreviewed
CVE-2022-4674 was published Feb 6, 2023
The Post Category Image With Grid and Slider WordPress plugin before 1.4.8 does not validate and... Moderate Unreviewed
CVE-2022-4747 was published Feb 6, 2023
The Logo Slider WordPress plugin before 3.6.0 does not validate and escape some of its shortcode... Moderate Unreviewed
CVE-2022-4664 was published Feb 6, 2023
The Strong Testimonials WordPress plugin before 3.0.3 does not validate and escape some of its... Moderate Unreviewed
CVE-2022-4717 was published Feb 6, 2023
tinymighty WikiSEO is vulnerable to cross-site scripting via modifyHTML function Critical
CVE-2015-10073 was published for tinymighty/wiki-seo (Composer) Feb 6, 2023
A vulnerability, which was classified as problematic, has been found in WangGuard Plugin 1.8.0.... Moderate Unreviewed
CVE-2017-20177 was published Feb 6, 2023
The PDF Generator for WordPress plugin before 1.1.2 includes a vendored dompdf example file which... Moderate Unreviewed
CVE-2022-4321 was published Feb 6, 2023
**UNSUPPORTED WHEN ASSIGNED** Cross Site Scripting (XSS) in HP Deskjet 2540 series printer... Critical Unreviewed
CVE-2022-48311 was published Feb 6, 2023
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Afterpay Gateway for WooCommerce <=... Moderate Unreviewed
CVE-2022-29416 was published Feb 6, 2023
Softr v2.0 was discovered to contain a HTML injection vulnerability via the Work Space Name... Moderate Unreviewed
CVE-2022-48085 was published Feb 6, 2023
ezEIP v5.3.0(0649) was discovered to contain a cross-site scripting (XSS) vulnerability. Moderate Unreviewed
CVE-2022-45722 was published Feb 6, 2023
Online Food Ordering System v2 was discovered to contain a cross-site scripting (XSS)... Moderate Unreviewed
CVE-2023-24192 was published Feb 6, 2023
Online Food Ordering System v2 was discovered to contain a cross-site scripting (XSS)... Moderate Unreviewed
CVE-2023-24191 was published Feb 6, 2023
Online Food Ordering System v2 was discovered to contain a cross-site scripting (XSS)... Moderate Unreviewed
CVE-2023-24195 was published Feb 6, 2023
Online Food Ordering System v2 was discovered to contain a cross-site scripting (XSS)... Moderate Unreviewed
CVE-2023-24194 was published Feb 6, 2023
Online Food Ordering System v2 was discovered to contain a SQL injection vulnerability via the id... Moderate Unreviewed
CVE-2023-24197 was published Feb 6, 2023
A vulnerability classified as problematic was found in ciubotaru share-on-diaspora 0.7.9. This... Moderate Unreviewed
CVE-2017-20176 was published Feb 6, 2023
Cross-site Scripting in DaSchTour matomo-mediawiki-extension Moderate
CVE-2017-20175 was published for mediawiki/matomo (Composer) Feb 5, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database