GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,338 advisories
Filter by severity
Multiple cross-site scripting (XSS) vulnerabilities in eXtplorer 2.1.3, when used as a component...
Low
Unreviewed
CVE-2013-5951
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in IBM Rational Team Concert 2.x and 3.x before 3.0.1.6...
Low
Unreviewed
CVE-2015-0122
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Error dialog in IBM Case Manager 5.2.1...
Low
Unreviewed
CVE-2015-1979
was published
May 17, 2022
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows...
Low
Unreviewed
CVE-2020-10447
was published
May 24, 2022
Cross-site scripting (XSS) vulnerability in Zurmo CRM 3.0.2 allows remote authenticated users to...
Low
Unreviewed
CVE-2015-5365
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the MDC Private Message plugin 1.0.0 for WordPress...
Low
Unreviewed
CVE-2015-6805
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Aruba Networks ClearPass Policy Manager ...
Low
Unreviewed
CVE-2015-4132
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the Taxonews module before 6.x-1.2 and 7.x-1.x before...
Low
Unreviewed
CVE-2015-3369
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the Room Reservations module before 7.x-1...
Low
Unreviewed
CVE-2015-3359
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the Node Invite module before 6.x-2.5 for Drupal...
Low
Unreviewed
CVE-2015-3372
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the Quizzler module before 7-x.1.16 for Drupal allows...
Low
Unreviewed
CVE-2015-3376
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in the JsonBuilder implementation in ProjectForge before...
Low
Unreviewed
CVE-2013-7250
was published
May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Archer GRC 5.x before 5.5.3 allow...
Low
Unreviewed
CVE-2015-4541
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in an application console in the server in Symantec...
Low
Unreviewed
CVE-2015-6549
was published
May 17, 2022
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows...
Low
Unreviewed
CVE-2020-10454
was published
May 24, 2022
Cross-site scripting (XSS) vulnerability in the ePO extension in McAfee Data Loss Prevention...
Low
Unreviewed
CVE-2015-2760
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in IBM Rational Quality Manager 2.x and 3.x before 3.0.1...
Low
Unreviewed
CVE-2015-0124
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in IBM Rational DOORS Next Generation 4.x before 4.0.7...
Low
Unreviewed
CVE-2015-0125
was published
May 17, 2022
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows...
Low
Unreviewed
CVE-2020-10448
was published
May 24, 2022
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows...
Low
Unreviewed
CVE-2020-10450
was published
May 24, 2022
Stored XSS exists in the Appointment Booking Calendar plugin before 1.3.35 for WordPress. In the...
Low
Unreviewed
CVE-2020-9371
was published
May 24, 2022
The way URIs are handled in admin/header.php in Chadha PHPKB Standard Multi-Language 9 allows...
Low
Unreviewed
CVE-2020-10455
was published
May 24, 2022
Cross-site scripting (XSS) vulnerability in the HTML-Scrubber module before 0.15 for Perl, when...
Low
Unreviewed
CVE-2015-5667
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in Zoho ManageEngine AssetExplorer 6.1 service pack 6112...
Low
Unreviewed
CVE-2015-5061
was published
May 17, 2022
Cross-site scripting (XSS) vulnerability in IBM Tivoli Common Reporting (TCR) 2.1 before IF13 and...
Low
Unreviewed
CVE-2015-1969
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API