Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,638
Erlang
34
GitHub Actions
26
Go
2,249
Maven
5,000+
npm
3,903
NuGet
702
pip
3,671
Pub
12
RubyGems
915
Rust
943
Swift
38
Unreviewed advisories
All unreviewed
5,000+

33,889 advisories

Loading
A cross-site scripting (XSS) vulnerability in flaskBlog v2.6.1 allows attackers to execute... Moderate Unreviewed
CVE-2025-28102 was published Apr 21, 2025
Stored XSS in Discussions in OpenText Content Management CE 20.2 to 25.1 on Windows and Linux... Moderate Unreviewed
CVE-2024-12863 was published Apr 21, 2025
code-projects Online Exam Mastering System 1.0 is vulnerable to Cross Site Scripting (XSS) in... Moderate Unreviewed
CVE-2025-28121 was published Apr 21, 2025
OpenCMS Cross-Site Scripting vulnerability Low
CVE-2024-42699 was published for org.opencms:opencms-core (Maven) Apr 21, 2025
OpenCMS cross-site scripting (XSS) vulnerability Moderate
CVE-2024-41446 was published for org.opencms:opencms-core (Maven) Apr 21, 2025
An improper neutralization of input vulnerability was identified in the End of Life (EOL) OVA... Low Unreviewed
CVE-2025-3840 was published Apr 21, 2025
The KnowBe4 Security Awareness Training application before 2020-01-10 allows reflected XSS. The... Moderate Unreviewed
CVE-2020-36844 was published Apr 21, 2025
QMarkdown Cross-Site Scripting (XSS) vulnerability Moderate
CVE-2025-43954 was published for @quasar/quasar-ui-qmarkdown (npm) Apr 20, 2025
A vulnerability, which was classified as problematic, was found in SourceCodester Web-based... Moderate Unreviewed
CVE-2025-3826 was published Apr 20, 2025
A vulnerability, which was classified as problematic, has been found in SourceCodester Web-based... Moderate Unreviewed
CVE-2025-3825 was published Apr 20, 2025
A vulnerability classified as problematic has been found in SourceCodester Web-based Pharmacy... Moderate Unreviewed
CVE-2025-3823 was published Apr 20, 2025
A vulnerability classified as problematic was found in SourceCodester Web-based Pharmacy Product... Moderate Unreviewed
CVE-2025-3824 was published Apr 20, 2025
A vulnerability was found in SourceCodester Web-based Pharmacy Product Management System 1.0. It... Moderate Unreviewed
CVE-2025-3822 was published Apr 20, 2025
A vulnerability was found in SourceCodester Web-based Pharmacy Product Management System 1.0. It... Moderate Unreviewed
CVE-2025-3821 was published Apr 20, 2025
A vulnerability, which was classified as problematic, has been found in dazhouda lecms up to 3.0... Moderate Unreviewed
CVE-2025-3806 was published Apr 19, 2025
one-api Cross-site Scripting vulnerability Moderate
CVE-2025-3801 was published for github.com/songquanpeng/one-api (Go) Apr 19, 2025
The SB Chart block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ... Moderate Unreviewed
CVE-2025-3661 was published Apr 19, 2025
The Element Pack Addons for Elementor – Free Templates and Widgets for Your WordPress Websites... Moderate Unreviewed
CVE-2025-1457 was published Apr 19, 2025
The Debug Log Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... High Unreviewed
CVE-2025-3809 was published Apr 19, 2025
The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2025-3275 was published Apr 19, 2025
A vulnerability was found in DaiCuo 1.3.13. It has been rated as problematic. Affected by this... Moderate Unreviewed
CVE-2025-3795 was published Apr 18, 2025
Alkacon OpenCMS stored cross-site scripting (XSS) vulnerability Moderate
CVE-2024-41447 was published for org.opencms:opencms-core (Maven) Apr 18, 2025
Cross-Site Scripting (XSS) vulnerability in NodeBB v4.0.4 and before allows remote attackers to... Moderate Unreviewed
CVE-2025-29512 was published Apr 18, 2025
Cross-Site Scripting (XSS) vulnerability in NodeBB v4.0.4 and before allows remote attackers to... Moderate Unreviewed
CVE-2025-29513 was published Apr 18, 2025
A vulnerability was found in baseweb JSite 1.0. It has been declared as problematic. Affected by... Moderate Unreviewed
CVE-2025-3788 was published Apr 18, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database