Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,908
Erlang
39
GitHub Actions
38
Go
2,568
Maven
5,000+
npm
4,240
NuGet
754
pip
4,004
Pub
12
RubyGems
953
Rust
1,042
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,330 advisories

Loading
Multiple cross-site scripting (XSS) vulnerabilities in Layton HelpBox 3.7.1 allow remote... Low Unreviewed
CVE-2007-5403 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in IDMOS 1.0-beta (aka Phoenix) allow remote... Low Unreviewed
CVE-2007-5293 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in the subscription functionality in the Project issue... Low Unreviewed
CVE-2007-5228 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in mode.php in Coppermine Photo Gallery (CPG) 1.4.12 and... Low Unreviewed
CVE-2007-4977 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in account_settings.php in TorrentTrader 1.07... Low Unreviewed
CVE-2007-4831 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in admin/adminusers.php in Claroline before 1.8.6 allows... Low Unreviewed
CVE-2007-4741 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Claroline before 1.8.6 allow remote... Low Unreviewed
CVE-2007-4717 was published May 1, 2022
** DISPUTED ** Cross-site scripting (XSS) vulnerability in an mt import in wp-admin/admin.php in... Low Unreviewed
CVE-2007-1732 was published May 1, 2022
** DISPUTED ** Multiple cross-site scripting (XSS) vulnerabilities in the Admin Control Panel ... Low Unreviewed
CVE-2007-0830 was published May 1, 2022
The KDE HTML library (kdelibs), as used by Konqueror 3.5.5, does not properly parse HTML comments... Low Unreviewed
CVE-2007-0537 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in memcp.php in XMB U2U Instant Messenger allows remote... Low Unreviewed
CVE-2007-0519 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in Oracle Reports Web Cartridge (RWCGI60) in the... Low Unreviewed
CVE-2007-0275 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in TorrentFlux 2.1 allow remote attackers to... Low Unreviewed
CVE-2006-5451 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in interna/hilfe.php in Papoo 3 RC3 and... Low Unreviewed
CVE-2006-3571 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in 5 Star Review allow remote attackers to... Low Unreviewed
CVE-2006-3061 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Xtreme Topsites 1.1 allow remote attackers... Low Unreviewed
CVE-2006-2545 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in phpLDAPadmin 0.9.8 and earlier allow... Low Unreviewed
CVE-2006-2016 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Papoo 2.1.5 allow remote attackers to... Low Unreviewed
CVE-2006-1918 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Ralph Capper Tiny PHP Forum (TPF) 3.6... Low Unreviewed
CVE-2006-1898 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Autogallery 0.41 allow remote... Low Unreviewed
CVE-2006-1750 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in Microsoft Exchange Server 2000 SP1 through SP3, when... Low Unreviewed
CVE-2006-1193 was published May 1, 2022
Interpretation conflict in PostNuke 0.761 and earlier allows remote attackers to conduct cross... Low Unreviewed
CVE-2006-0800 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework before 3.0.8... Low Unreviewed
CVE-2005-4190 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in iSQL*Plus (iSQLPlus) in Oracle9i Database Server... Low Unreviewed
CVE-2005-3205 was published May 1, 2022
Cross-site scripting (XSS) vulnerability in readpmsg.php in PostNuke 0.750 allows remote... Low Unreviewed
CVE-2005-1778 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database