GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 30,755
Composer 5,829
Erlang 65
GitHub Actions 50
Go 3,845
Maven 6,581
npm 6,233
NuGet 956
pip 5,119
Pub 13
RubyGems 1,061
Rust 1,358
Swift 54

Unreviewed advisories

All unreviewed 302,759

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

42,338 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A security flaw has been discovered in Devs Palace ERP Online up to 4.0.0. Affected by this issue... Low Unreviewed

CVE-2026-8254 was published May 11, 2026

A weakness has been identified in Devs Palace ERP Online up to 4.0.0. This affects an unknown... Low Unreviewed

CVE-2026-8255 was published May 11, 2026

WordPress Plugin AAWP 3.16 contains a reflected cross-site scripting vulnerability that allows... Moderate Unreviewed

CVE-2022-50970 was published May 10, 2026

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the auctions/manage... Moderate Unreviewed

CVE-2022-50968 was published May 10, 2026

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the backend... Moderate Unreviewed

CVE-2022-50969 was published May 10, 2026

Advanced Guestbook 2.4.4 contains a persistent cross-site scripting vulnerability in the smilies... Moderate Unreviewed

CVE-2021-47950 was published May 10, 2026

Projectsend r1295 contains a stored cross-site scripting vulnerability that allows authenticated... Moderate Unreviewed

CVE-2021-47947 was published May 10, 2026

WordPress Picture Gallery 1.4.2 contains a stored cross-site scripting vulnerability that allows... Moderate Unreviewed

CVE-2021-47951 was published May 10, 2026

WordPress Plugin Testimonial Slider and Showcase 2.2.6 contains a stored cross-site scripting... Moderate Unreviewed

CVE-2022-50947 was published May 10, 2026

Moodle LMS 4.0 contains a cross-site scripting vulnerability that allows unauthenticated... Moderate Unreviewed

CVE-2022-50943 was published May 10, 2026

WordPress Plugin Netroics Blog Posts Grid 1.0 contains a stored cross-site scripting... Moderate Unreviewed

CVE-2022-50946 was published May 10, 2026

Motopress Hotel Booking Lite 4.2.4 contains a stored cross-site scripting vulnerability that... Moderate Unreviewed

CVE-2022-50948 was published May 10, 2026

WordPress Plugin Videos sync PDF 1.7.4 contains a stored cross-site scripting vulnerability that... Moderate Unreviewed

CVE-2022-50949 was published May 10, 2026

Drupal avatar_uploader 7.x-1.0-beta8 contains a reflected cross-site scripting vulnerability that... Moderate Unreviewed

CVE-2022-50957 was published May 10, 2026

WordPress Plugin Jetpack 9.1 contains a reflected cross-site scripting vulnerability that allows... Moderate Unreviewed

CVE-2022-50958 was published May 10, 2026

WordPress International Sms For Contact Form 7 Integration version 1.2 contains a reflected cross... Moderate Unreviewed

CVE-2022-50960 was published May 10, 2026

WordPress Contact Form Builder 1.6.1 contains a reflected cross-site scripting vulnerability that... Moderate Unreviewed

CVE-2022-50959 was published May 10, 2026

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the orders/myOrders... Moderate Unreviewed

CVE-2022-50962 was published May 10, 2026

WordPress Plugin IP2Location Country Blocker 2.26.7 contains a stored cross-site scripting... Moderate Unreviewed

CVE-2022-50961 was published May 10, 2026

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the auctions... Moderate Unreviewed

CVE-2022-50963 was published May 10, 2026

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the auctions... Moderate Unreviewed

CVE-2022-50964 was published May 10, 2026

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the posts/manage... Moderate Unreviewed

CVE-2022-50965 was published May 10, 2026

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the news/manage... Moderate Unreviewed

CVE-2022-50966 was published May 10, 2026

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the tickets/manage... Moderate Unreviewed

CVE-2022-50967 was published May 10, 2026

WordPress 3dady real-time web stats plugin 1.0 contains a stored cross-site scripting... Moderate Unreviewed

CVE-2022-50945 was published May 10, 2026

Previous 1…7…400 Next

Previous 1 2 … 5 6 7 8 9 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

42,338 advisories