Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,476
Erlang
33
GitHub Actions
24
Go
2,207
Maven
5,000+
npm
3,858
NuGet
696
pip
3,639
Pub
12
RubyGems
913
Rust
918
Swift
38
Unreviewed advisories
All unreviewed
5,000+

29,063 advisories

Loading
The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed
CVE-2024-11180 was published Mar 29, 2025
In MISP before 2.4.193, menu_custom_right_link_html parameters can be set via the UI (i.e.,... Moderate Unreviewed
CVE-2024-58129 was published Mar 29, 2025
In MISP before 2.4.193, menu_custom_right_link parameters can be set via the UI (i.e., without... Moderate Unreviewed
CVE-2024-58128 was published Mar 29, 2025
A flaw was found in the JBoss EAP Management Console, where a stored Cross-site scripting... Moderate Unreviewed
CVE-2025-2901 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31451 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31452 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31464 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31453 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31463 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31471 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31472 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31470 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31473 was published Mar 28, 2025
Reflected Cross-Site Scripting (XSS) vulnerability in version 1.0 of the Clinic Queuing System.... Moderate Unreviewed
CVE-2025-2869 was published Mar 28, 2025
Reflected Cross-Site Scripting (XSS) vulnerability in version 1.0 of the Clinic Queuing System.... Moderate Unreviewed
CVE-2025-2868 was published Mar 28, 2025
Reflected Cross-Site Scripting (XSS) vulnerability in version 1.0 of the Clinic Queuing System.... Moderate Unreviewed
CVE-2025-2870 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31093 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31096 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31090 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31434 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31437 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31433 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31450 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31077 was published Mar 28, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-31094 was published Mar 28, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database