Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,440
Erlang
29
GitHub Actions
16
Go
1,665
Maven
4,925
npm
3,453
NuGet
594
pip
2,854
Pub
10
RubyGems
823
Rust
764
Swift
34
Unreviewed advisories
All unreviewed
5,000+

25,711 advisories

MS Basic Cross-site Scripting vulnerability Moderate
CVE-2024-33748 was published for net.mingsoft:ms-basic (Maven) May 7, 2024
Trix Editor Arbitrary Code Execution Vulnerability Moderate
CVE-2024-34341 was published for trix (npm) May 7, 2024
react-pdf vulnerable to arbitrary JavaScript execution upon opening a malicious PDF with PDF.js High
CVE-2024-34342 was published for react-pdf (npm) May 7, 2024
ThomasRinsma wojtekmaj
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-34373 was published May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-34374 was published May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-34376 was published May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2024-34369 was published May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-34381 was published May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-34380 was published May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-34390 was published May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-34375 was published May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-34413 was published May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2024-34366 was published May 6, 2024
Jinja vulnerable to HTML attribute injection when passing user input as keys to xmlattr filter Moderate
CVE-2024-34064 was published for Jinja2 (pip) May 6, 2024
Ry0taK
The NPort 5100A Series prior to version 1.6 is affected by web server XSS vulnerability. The... High Unreviewed
CVE-2024-3576 was published May 6, 2024
A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as... Low Unreviewed
CVE-2024-4528 was published May 6, 2024
E-Mail containing malicious display-name information could trigger client-side script execution... Moderate Unreviewed
CVE-2024-23186 was published May 6, 2024
Maliciously crafted E-Mail attachment names could be used to temporarily execute script code in... Moderate Unreviewed
CVE-2024-23188 was published May 6, 2024
Content-ID based embedding of resources in E-Mails could be abused to trigger client-side script... Moderate Unreviewed
CVE-2024-23187 was published May 6, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has... Moderate Unreviewed
CVE-2024-4527 was published May 6, 2024
A vulnerability, which was classified as problematic, was found in Campcodes Complete Web-Based... Moderate Unreviewed
CVE-2024-4524 was published May 6, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0 and... Moderate Unreviewed
CVE-2024-4526 was published May 6, 2024
A vulnerability has been found in Campcodes Complete Web-Based School Management System 1.0 and... Moderate Unreviewed
CVE-2024-4525 was published May 6, 2024
A vulnerability, which was classified as problematic, has been found in Campcodes Complete Web... Moderate Unreviewed
CVE-2024-4523 was published May 6, 2024
A vulnerability classified as problematic has been found in Campcodes Complete Web-Based School... Moderate Unreviewed
CVE-2024-4521 was published May 6, 2024
ProTip! Advisories are also available from the GraphQL API