GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,440
Erlang
29
GitHub Actions
16
Go
1,665
Maven
4,925
npm
3,453
NuGet
594
pip
2,854
Pub
10
RubyGems
823
Rust
764
Swift
34
Unreviewed advisories
All unreviewed
5,000+
25,711 advisories
Filter by severity
MS Basic Cross-site Scripting vulnerability
Moderate
CVE-2024-33748
was published
for
net.mingsoft:ms-basic
(Maven)
May 7, 2024
Trix Editor Arbitrary Code Execution Vulnerability
Moderate
CVE-2024-34341
was published
for
trix
(npm)
May 7, 2024
react-pdf vulnerable to arbitrary JavaScript execution upon opening a malicious PDF with PDF.js
High
CVE-2024-34342
was published
for
react-pdf
(npm)
May 7, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-34373
was published
May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-34374
was published
May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-34376
was published
May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
High
Unreviewed
CVE-2024-34369
was published
May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-34381
was published
May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-34380
was published
May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-34390
was published
May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-34375
was published
May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-34413
was published
May 6, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Moderate
Unreviewed
CVE-2024-34366
was published
May 6, 2024
Jinja vulnerable to HTML attribute injection when passing user input as keys to xmlattr filter
Moderate
CVE-2024-34064
was published
for
Jinja2
(pip)
May 6, 2024
The NPort 5100A Series prior to version 1.6 is affected by web server XSS vulnerability. The...
High
Unreviewed
CVE-2024-3576
was published
May 6, 2024
A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as...
Low
Unreviewed
CVE-2024-4528
was published
May 6, 2024
E-Mail containing malicious display-name information could trigger client-side script execution...
Moderate
Unreviewed
CVE-2024-23186
was published
May 6, 2024
Maliciously crafted E-Mail attachment names could be used to temporarily execute script code in...
Moderate
Unreviewed
CVE-2024-23188
was published
May 6, 2024
Content-ID based embedding of resources in E-Mails could be abused to trigger client-side script...
Moderate
Unreviewed
CVE-2024-23187
was published
May 6, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has...
Moderate
Unreviewed
CVE-2024-4527
was published
May 6, 2024
A vulnerability, which was classified as problematic, was found in Campcodes Complete Web-Based...
Moderate
Unreviewed
CVE-2024-4524
was published
May 6, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0 and...
Moderate
Unreviewed
CVE-2024-4526
was published
May 6, 2024
A vulnerability has been found in Campcodes Complete Web-Based School Management System 1.0 and...
Moderate
Unreviewed
CVE-2024-4525
was published
May 6, 2024
A vulnerability, which was classified as problematic, has been found in Campcodes Complete Web...
Moderate
Unreviewed
CVE-2024-4523
was published
May 6, 2024
A vulnerability classified as problematic has been found in Campcodes Complete Web-Based School...
Moderate
Unreviewed
CVE-2024-4521
was published
May 6, 2024
ProTip!
Advisories are also available from the
GraphQL API