Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,744
Maven
5,000+
npm
4,341
NuGet
765
pip
4,113
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

163 advisories

Loading
Cross-site Scripting in Jenkins Rich Text Publisher Plugin High
CVE-2022-34786 was published for org.jenkins-ci.plugins:rich-text-publisher-plugin (Maven) Jul 1, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting in Jenkins Deployment Dashboard Plugin High
CVE-2022-34795 was published for org.jenkins-ci.plugins:ec2-deployment-dashboard (Maven) Jul 1, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting in Jenkins Plot Plugin High
CVE-2022-34783 was published for org.jenkins-ci.plugins:plot (Maven) Jul 1, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting in Jenkins TestNG Results Plugin High
CVE-2022-34778 was published for org.jenkins-ci.plugins:testng-plugin (Maven) Jul 1, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting in Jenkins eXtreme Feedback Panel Plugin High
CVE-2022-34790 was published for org.jenkins-ci.plugins:xfpanel (Maven) Jul 1, 2022
NotMyFault
Credited to NotMyFault
Jenkins Matrix Reloaded Plugin vulnerable to Stored XSS High
CVE-2022-34788 was published for net.praqma:matrix-reloaded (Maven) Jul 1, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting in Jenkins GitLab Plugin High
CVE-2022-34777 was published for org.jenkins-ci.plugins:gitlab-plugin (Maven) Jul 1, 2022
NotMyFault
Credited to NotMyFault
Jenkins Project Inheritance Plugin vulnerable to cross site scripting High
CVE-2022-34787 was published for hudson.plugins:project-inheritance (Maven) Jul 1, 2022
NotMyFault
Credited to NotMyFault
Cross site scripting in Jenkins build-metrics Plugin High
CVE-2022-34784 was published for org.jenkins-ci.plugins:build-metrics (Maven) Jul 1, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting in Jenkins Stash Branch Parameter Plugin High
CVE-2022-34198 was published for org.jenkins-ci.plugins:StashBranchParameter (Maven) Jun 24, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting vulnerability in Jenkins High
CVE-2022-34170 was published for org.jenkins-ci.main:jenkins-core (Maven) Jun 24, 2022
NotMyFault sunSUNQ
Credited to NotMyFault and sunSUNQ
Cross-site Scripting in Jenkins Dynamic Extended Choice Parameter Plugin High
CVE-2022-34186 was published for com.moded.extendedchoiceparameter:dynamic_extended_choice_parameter (Maven) Jun 24, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting in Jenkins REST List Parameter Plugin High
CVE-2022-34196 was published for io.jenkins.plugins:rest-list-parameter (Maven) Jun 24, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting in Jenkins Maven Metadata Plugin High
CVE-2022-34190 was published for eu.markov.jenkins.plugin.mvnmeta:maven-metadata-plugin (Maven) Jun 24, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting in Jenkins Filesystem List Parameter Plugin High
CVE-2022-34187 was published for aendter.jenkins.plugins:filesystem-list-parameter-plugin (Maven) Jun 24, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting in Jenkins Package Version Plugin High
CVE-2022-34193 was published for org.lilicurroad.jenkins:packageversion (Maven) Jun 24, 2022
Cross-site Scripting vulnerability in Jenkins High
CVE-2022-34171 was published for org.jenkins-ci.main:jenkins-core (Maven) Jun 24, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting vulnerability in Jenkins High
CVE-2022-34173 was published for org.jenkins-ci.main:jenkins-core (Maven) Jun 24, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting in Jenkins Sauce OnDemand Plugin High
CVE-2022-34197 was published for org.jenkins-ci.plugins:sauce-ondemand (Maven) Jun 24, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting in Jenkins Agent Server Parameter Plugin High
CVE-2022-34183 was published for io.jenkins.plugins:agent-server-parameter (Maven) Jun 24, 2022
NotMyFault
Credited to NotMyFault
Reflected Cross site scripting in Jenkins Embeddable Build Status Plugin High
CVE-2022-34178 was published for org.jenkins-ci.plugins:embeddable-build-status (Maven) Jun 24, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting in Jenkins Hidden Parameter Plugin High
CVE-2022-34188 was published for org.jenkins-ci.plugins:hidden-parameter (Maven) Jun 24, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting in Jenkins Repository Connector Plugin High
CVE-2022-34195 was published for org.jenkins-ci.plugins:repository-connector (Maven) Jun 24, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting in Jenkins CRX Content Package Deployer Plugin High
CVE-2022-34184 was published for org.jenkins-ci.plugins:crx-content-package-deployer (Maven) Jun 24, 2022
NotMyFault
Credited to NotMyFault
Cross-site Scripting in Jenkins NS-ND Integration Performance Publisher Plugin High
CVE-2022-34191 was published for io.jenkins.plugins:cavisson-ns-nd-integration (Maven) Jun 24, 2022
NotMyFault
Credited to NotMyFault
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database