Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,991
Erlang
29
GitHub Actions
16
Go
1,779
Maven
5,000+
npm
3,544
NuGet
619
pip
3,134
Pub
10
RubyGems
838
Rust
793
Swift
34
Unreviewed advisories
All unreviewed
5,000+

2,295 advisories

Loading
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0937 was published for showdoc/showdoc (Composer) Mar 15, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0965 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0957 was published for showdoc/showdoc (Composer) Mar 16, 2022
Stored Cross-site Scripting in ShowDoc Moderate
CVE-2022-0945 was published for showdoc/showdoc (Composer) Mar 16, 2022
File Upload Restriction Bypass leading to Cross-site Scripting in ShowDoc Moderate
CVE-2022-0951 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in Pimcore Moderate
CVE-2022-0894 was published for pimcore/pimcore (Composer) Mar 16, 2022
Stored Cross-site Scripting in Microweber Moderate
CVE-2022-0954 was published for microweber/microweber (Composer) Mar 16, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0950 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0940 was published for showdoc/showdoc (Composer) Mar 15, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0938 was published for showdoc/showdoc (Composer) Mar 15, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0966 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0964 was published for showdoc/showdoc (Composer) Mar 16, 2022
Stored Cross-site Scripting in showdoc Moderate
CVE-2022-0967 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0941 was published for showdoc/showdoc (Composer) Mar 15, 2022
Cross-site Scripting in Pimcore Moderate
CVE-2022-0893 was published for pimcore/pimcore (Composer) Mar 16, 2022
Improper Restriction of Rendered UI Layers or Frames in Sylius Moderate
CVE-2022-24733 was published for sylius/sylius (Composer) Mar 14, 2022
Cross-site Scripting in microweber Moderate
CVE-2022-0926 was published for microweber/microweber (Composer) Mar 13, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0946 was published for showdoc/showdoc (Composer) Mar 15, 2022
Improper sanitize of SVG files during content upload ('Cross-site Scripting') in sylius/sylius Moderate
CVE-2022-24749 was published for Sylius/Sylius (Composer) Mar 14, 2022
Ocramius
Cross-site Scripting in microweber Moderate
CVE-2022-0929 was published for microweber/microweber (Composer) Mar 13, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0880 was published for showdoc/showdoc (Composer) Mar 13, 2022
Cross-site Scripting in microweber Moderate
CVE-2022-0928 was published for microweber/microweber (Composer) Mar 12, 2022
Unrestricted Upload of File with Dangerous Type in microweber Moderate
CVE-2022-0912 was published for microweber/microweber (Composer) Mar 12, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0962 was published for showdoc/showdoc (Composer) Mar 15, 2022
Unrestricted Upload of File with Dangerous Type in Microweber Moderate
CVE-2022-0921 was published for microweber/microweber (Composer) Mar 12, 2022
ProTip! Advisories are also available from the GraphQL API