GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
3,275 advisories
Filter by severity
Umbraco CMS vulnerable to stored Cross-site Scripting in the "dictionary name" on Dictionary section
Moderate
CVE-2024-47819
was published
for
@umbraco-cms/backoffice
(npm)
Oct 22, 2024
Cross Site Scripting (XSS) in Simiki
Moderate
CVE-2020-19000
was published
for
simiki
(pip)
Sep 1, 2021
Cross-site scripting in sickrage
Moderate
CVE-2021-25926
was published
for
sickrage
(pip)
Apr 20, 2021
Roundup Cross-site Scripting (XSS) vulnerability
Moderate
CVE-2012-6132
was published
for
roundup
(pip)
May 17, 2022
Roundup Cross-site scripting (XSS) vulnerability
Moderate
CVE-2012-6131
was published
for
roundup
(pip)
May 17, 2022
Moderate severity vulnerability that affects roundup
Moderate
CVE-2019-10904
was published
for
roundup
(pip)
Apr 9, 2019
Roundup Cross-site Scripting (XSS) vulnerability
Moderate
CVE-2012-6130
was published
for
roundup
(pip)
May 17, 2022
Cross-site Scripting and Open Redirect in Products.ATContentTypes
Moderate
CVE-2022-23599
was published
for
Products.ATContentTypes
(pip)
Jan 28, 2022
Plone vulnerable to cross-site scripting
Moderate
CVE-2013-4190
was published
for
plone
(pip)
May 17, 2022
Plone has stored XSS in folder contents
Moderate
CVE-2021-35959
was published
for
plone
(pip)
May 24, 2022
Cross-site scripting in Products.CMFCore, Products.PluggableAuthService, Plone
Moderate
CVE-2021-33507
was published
for
Plone
(pip)
Jun 18, 2021
Plone Cross-site Scripting Vulnerability
Moderate
CVE-2015-7316
was published
for
Plone
(pip)
May 17, 2022
Plone vulnerable to Cross-site Scripting
Moderate
CVE-2016-7140
was published
for
Plone
(pip)
May 14, 2022
Products.CMFPlone XSS in profile home_page property
Moderate
CVE-2017-1000482
was published
for
Plone
(pip)
May 14, 2022
Plone Zope cross-site scripting (XSS) vulnerability
Moderate
CVE-2013-7062
was published
for
plone
(pip)
May 5, 2022
Slim Select has potential Cross-site Scripting issue
Moderate
CVE-2024-9440
was published
for
slim-select
(npm)
Oct 2, 2024
Cross-site Scripting via uploaded SVG
Moderate
CVE-2024-47618
was published
for
sulu/sulu
(Composer)
Oct 3, 2024
Injection of arbitrary HTML/JavaScript code through the media download URL
Moderate
CVE-2024-47617
was published
for
sulu/sulu
(Composer)
Oct 3, 2024
Admidio Vulnerable to HTML Injection In The Messages Section
Low
CVE-2024-47836
was published
for
admidio/admidio
(Composer)
Oct 16, 2024
ProTip!
Advisories are also available from the
GraphQL API