Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
73
GitHub Actions
53
Go
4,029
Maven
5,000+
npm
5,000+
NuGet
976
pip
5,000+
Pub
13
RubyGems
1,070
Rust
1,404
Swift
61
Unreviewed advisories
All unreviewed
5,000+

393 advisories

Loading
A vulnerability has been found in TrueConf Server 4.3.7 and classified as problematic. This... Moderate Unreviewed
CVE-2017-20114 was published Jun 30, 2022
A vulnerability was found in TrueConf Server 4.3.7 and classified as problematic. This issue... Moderate Unreviewed
CVE-2017-20115 was published Jun 30, 2022
A vulnerability, which was classified as problematic, has been found in Thomson TCW710 ST5D.10.05... Moderate Unreviewed
CVE-2018-25034 was published Jun 13, 2022
Cross Site Scripting vulnerability in django-jsonform's admin form. High
GHSA-x9jp-4w8m-4f3c was published for django-jsonform (pip) Jun 10, 2022
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in WolfCMS up to 0.8.3.1. It has been... Moderate Unreviewed
CVE-2019-25070 was published Jun 10, 2022
Cross-site Scripting vulnerability in repository issue list in Gogs Moderate
CVE-2022-31038 was published for gogs.io/gogs (Go) Jun 8, 2022
wuhan005 Credited to wuhan005
Cross-site Scripting in the Flamingo theme manager High
CVE-2022-29251 was published for org.xwiki.platform:xwiki-platform-flamingo-theme-ui (Maven) May 25, 2022
The LearnPress WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient... Moderate Unreviewed
CVE-2021-39348 was published May 24, 2022
This issue affects: QNAP Systems Inc. Q'center versions prior to 1.11.1004. Moderate Unreviewed
CVE-2021-28803 was published May 24, 2022
A stored XSS vulnerability has been reported to affect QNAP NAS running QuLog Center. If... Moderate Unreviewed
CVE-2020-36196 was published May 24, 2022
A vulnerability in certain web pages of Cisco Webex Meetings could allow an unauthenticated,... Moderate Unreviewed
CVE-2021-1420 was published May 24, 2022
A vulnerability in the web-based interface of Cisco Webex Meetings could allow an unauthenticated... Moderate Unreviewed
CVE-2021-1351 was published May 24, 2022
A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow... Moderate Unreviewed
CVE-2019-19285 was published May 24, 2022
An issue was discovered in Roundcube Webmail before 1.3.12 and 1.4.x before 1.4.5. There is XSS... Moderate Unreviewed
CVE-2020-13965 was published May 24, 2022
A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0), SCALANCE S612 (All... Moderate Unreviewed
CVE-2019-6585 was published May 24, 2022
A vulnerability has been identified in IE/WSN-PA Link WirelessHART Gateway (All versions). The... Critical Unreviewed
CVE-2019-13923 was published May 24, 2022
Zammad GmbH Zammad 2.3.0 and earlier is affected by: Cross Site Scripting (XSS) - CWE-80. The... Moderate Unreviewed
CVE-2019-1010018 was published May 24, 2022
A vulnerability has been identified in Spectrum Power 3 (Corporate User Interface) (All versions ... Moderate Unreviewed
CVE-2019-10933 was published May 24, 2022
A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15.1... Moderate Unreviewed
CVE-2019-6577 was published May 24, 2022
Cross-site scripting (XSS) vulnerability in Cogent DataHub before 7.3.5 allows remote attackers... Moderate Unreviewed
CVE-2014-2353 was published May 17, 2022
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC)... Moderate Unreviewed
CVE-2022-20740 was published May 4, 2022
Apache Tomcat's CookieExample Vulnerable to XSS Moderate
CVE-2007-3384 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
Apache Tomcat SendMailServlet XSS Moderate
CVE-2007-3383 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
Apache Tomcat XSS Vulnerability Moderate
CVE-2006-7195 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
Cross-site scripting (XSS) vulnerability in SimpBook 1.0, with html_enable on (the default),... Moderate Unreviewed
CVE-2006-0149 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database