Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,885
Erlang
37
GitHub Actions
38
Go
2,546
Maven
5,000+
npm
4,212
NuGet
744
pip
3,988
Pub
12
RubyGems
950
Rust
1,038
Swift
45
Unreviewed advisories
All unreviewed
5,000+

165 advisories

Loading
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2023-0107 was published for github.com/usememos/memos (Go) Jan 7, 2023
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2023-0106 was published for github.com/usememos/memos (Go) Jan 7, 2023
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2023-0110 was published for github.com/usememos/memos (Go) Jan 7, 2023
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2023-0111 was published for github.com/usememos/memos (Go) Jan 7, 2023
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2023-0112 was published for github.com/usememos/memos (Go) Jan 7, 2023
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2023-0108 was published for github.com/usememos/memos (Go) Jan 7, 2023
usememos/memos vulnerable to Cross-site Scripting Critical
CVE-2022-4866 was published for github.com/usememos/memos (Go) Dec 31, 2022
usememos/memos Cross-site Scripting vulnerability Critical
CVE-2022-4865 was published for github.com/usememos/memos (Go) Dec 31, 2022
gotify/server vulnerable to Cross-site Scripting in the application image file upload Moderate
CVE-2022-46181 was published for github.com/gotify/server (Go) Dec 30, 2022
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2022-4839 was published for github.com/usememos/memos (Go) Dec 29, 2022
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2022-4840 was published for github.com/usememos/memos (Go) Dec 29, 2022
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2022-4841 was published for github.com/usememos/memos (Go) Dec 29, 2022
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2022-4694 was published for github.com/usememos/memos (Go) Dec 27, 2022
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2022-4691 was published for github.com/usememos/memos (Go) Dec 27, 2022
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2022-4695 was published for github.com/usememos/memos (Go) Dec 27, 2022
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2022-4692 was published for github.com/usememos/memos (Go) Dec 23, 2022
usememos/memos vulnerable to stored cross-site scripting (XSS) Moderate
CVE-2022-4690 was published for github.com/usememos/memos (Go) Dec 23, 2022
leanote vulnerable to cross-site scripting Moderate
CVE-2021-4263 was published for github.com/leanote/leanote (Go) Dec 21, 2022
studygolang vulnerable to cross-site scripting Moderate
CVE-2021-4272 was published for github.com/studygolang/studygolang (Go) Dec 21, 2022
andrewpollock
Credited to andrewpollock
Memos Cross-site Scripting vulnerability Moderate
CVE-2022-4609 was published for github.com/usememos/memos (Go) Dec 19, 2022
csaf-poc/csaf_distribution Cross-site Scripting vulnerability Moderate
CVE-2022-43996 was published for github.com/csaf-poc/csaf_distribution (Go) Dec 14, 2022
tdunlap607
Credited to tdunlap607
Alist Cross-site Scripting vulnerability Moderate
CVE-2022-45970 was published for github.com/alist-org/alist/v3 (Go) Dec 12, 2022
teler dashboard vulnerable to DOM-based cross-site scripting (XSS) Low
CVE-2022-23466 was published for teler.app (Go) Dec 6, 2022
mm-wiki is vulnerable to Cross-Site Scripting (XSS) Moderate
CVE-2021-40289 was published for github.com/phachon/mm-wiki (Go) Nov 10, 2022
Gogs vulnerable to Cross-site Scripting Critical
CVE-2022-32174 was published for gogs.io/gogs (Go) Oct 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database