GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,151
Erlang
30
GitHub Actions
19
Go
1,953
Maven
5,000+
npm
3,692
NuGet
650
pip
3,306
Pub
11
RubyGems
880
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
106,386 advisories
Filter by severity
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-50443
was published
Oct 28, 2024
A vulnerability, which was classified as problematic, has been found in code-projects Blood Bank...
Moderate
Unreviewed
CVE-2024-10448
was published
Oct 28, 2024
A vulnerability, which was classified as critical, was found in Codezips Hospital Appointment...
Moderate
Unreviewed
CVE-2024-10449
was published
Oct 28, 2024
A vulnerability has been found in SourceCodester Kortex Lite Advocate Office Management System 1...
Moderate
Unreviewed
CVE-2024-10450
was published
Oct 28, 2024
In JetBrains YouTrack before 2024.3.47707 reflected XSS due to insecure link sanitization was...
Moderate
Unreviewed
CVE-2024-50579
was published
Oct 28, 2024
In JetBrains YouTrack before 2024.3.47707 potential ReDoS exploit was possible via email header...
Moderate
Unreviewed
CVE-2024-50574
was published
Oct 28, 2024
In JetBrains YouTrack before 2024.3.47707 multiple XSS were possible due to insecure markdown...
Moderate
Unreviewed
CVE-2024-50580
was published
Oct 28, 2024
In JetBrains Hub before 2024.3.47707 improper access control allowed users to generate permanent...
Moderate
Unreviewed
CVE-2024-50573
was published
Oct 28, 2024
In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via sprint value on agile...
Moderate
Unreviewed
CVE-2024-50578
was published
Oct 28, 2024
In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via Angular template injection...
Moderate
Unreviewed
CVE-2024-50577
was published
Oct 28, 2024
In JetBrains YouTrack before 2024.3.47707 reflected XSS was possible in Widget API
Moderate
Unreviewed
CVE-2024-50575
was published
Oct 28, 2024
In JetBrains YouTrack before 2024.3.47707 stored XSS was possible due to improper HTML...
Moderate
Unreviewed
CVE-2024-50582
was published
Oct 28, 2024
In JetBrains YouTrack before 2024.3.47707 improper HTML sanitization could lead to XSS attack via...
Moderate
Unreviewed
CVE-2024-50581
was published
Oct 28, 2024
In JetBrains YouTrack before 2024.3.47707 stored XSS was possible via vendor URL in App manifest
Moderate
Unreviewed
CVE-2024-50576
was published
Oct 28, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-50501
was published
Oct 28, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-50470
was published
Oct 28, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-50472
was published
Oct 28, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-50471
was published
Oct 28, 2024
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-50502
was published
Oct 28, 2024
A vulnerability classified as critical was found in Project Worlds Online Time Table Generator 1...
Moderate
Unreviewed
CVE-2024-10447
was published
Oct 28, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WP Sunshine Sunshine Photo...
Moderate
Unreviewed
CVE-2024-50463
was published
Oct 28, 2024
A vulnerability classified as critical has been found in Project Worlds Online Time Table...
Moderate
Unreviewed
CVE-2024-10446
was published
Oct 28, 2024
Improper Restriction of XML External Entity Reference vulnerability in WP Royal Royal Elementor...
Moderate
Unreviewed
CVE-2024-50442
was published
Oct 28, 2024
Use of potentially dangerous function issue exists in Chatwork Desktop Application (Windows)...
Moderate
Unreviewed
CVE-2024-50307
was published
Oct 28, 2024
A vulnerability was found in didi Super-Jacoco 1.0. It has been declared as critical. This...
Moderate
Unreviewed
CVE-2024-10435
was published
Oct 28, 2024
ProTip!
Advisories are also available from the
GraphQL API