Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

120,554 advisories

Loading
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-56261 was published Jan 2, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-56259 was published Jan 2, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-56262 was published Jan 2, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-56302 was published Jan 2, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Beee ACF City Selector allows... Moderate Unreviewed
CVE-2024-56264 was published Jan 2, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-56263 was published Jan 2, 2025
Missing Authorization vulnerability in Sonaar Music MP3 Audio Player for Music, Radio & Podcast... Moderate Unreviewed
CVE-2024-56266 was published Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Till Krüss Email Address Encoder allows Cross... Moderate Unreviewed
CVE-2024-43927 was published Jan 2, 2025
Missing Authorization vulnerability in QunatumCloud Floating Action Buttons allows Accessing... Moderate Unreviewed
CVE-2024-56238 was published Jan 2, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-56237 was published Jan 2, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-56246 was published Jan 2, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-56242 was published Jan 2, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-56245 was published Jan 2, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-56241 was published Jan 2, 2025
Missing Authorization vulnerability in JS Morisset WPSSO Core allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2024-56243 was published Jan 2, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-56248 was published Jan 2, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-56239 was published Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Event Espresso Event Espresso 4 Decaf allows... Moderate Unreviewed
CVE-2024-56251 was published Jan 2, 2025
Missing Authorization vulnerability in WP Royal Ashe Extra allows Exploiting Incorrectly... Moderate Unreviewed
CVE-2024-56244 was published Jan 2, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-56240 was published Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in MBE Worldwide S.p.A. MBE eShip allows Cross... Moderate Unreviewed
CVE-2024-38729 was published Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Metorik Metorik – Reports & Email Automation... Moderate Unreviewed
CVE-2024-38691 was published Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Magazine3 Google Adsense & Banner Ads by... Moderate Unreviewed
CVE-2024-38751 was published Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Labib Ahmed Animated Rotating Words allows... Moderate Unreviewed
CVE-2024-38753 was published Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Tagbox Taggbox allows Cross Site Request... Moderate Unreviewed
CVE-2024-38754 was published Jan 2, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database