GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,991
Erlang
29
GitHub Actions
16
Go
1,779
Maven
5,000+
npm
3,544
NuGet
619
pip
3,134
Pub
10
RubyGems
838
Rust
793
Swift
34
Unreviewed advisories
All unreviewed
5,000+
2,295 advisories
Filter by severity
Cross-site Scripting in ShowDoc
Moderate
CVE-2022-0937
was published
for
showdoc/showdoc
(Composer)
Mar 15, 2022
Cross-site Scripting in ShowDoc
Moderate
CVE-2022-0965
was published
for
showdoc/showdoc
(Composer)
Mar 16, 2022
Cross-site Scripting in ShowDoc
Moderate
CVE-2022-0957
was published
for
showdoc/showdoc
(Composer)
Mar 16, 2022
Stored Cross-site Scripting in ShowDoc
Moderate
CVE-2022-0945
was published
for
showdoc/showdoc
(Composer)
Mar 16, 2022
File Upload Restriction Bypass leading to Cross-site Scripting in ShowDoc
Moderate
CVE-2022-0951
was published
for
showdoc/showdoc
(Composer)
Mar 16, 2022
Cross-site Scripting in Pimcore
Moderate
CVE-2022-0894
was published
for
pimcore/pimcore
(Composer)
Mar 16, 2022
Stored Cross-site Scripting in Microweber
Moderate
CVE-2022-0954
was published
for
microweber/microweber
(Composer)
Mar 16, 2022
Cross-site Scripting in ShowDoc
Moderate
CVE-2022-0950
was published
for
showdoc/showdoc
(Composer)
Mar 16, 2022
Cross-site Scripting in ShowDoc
Moderate
CVE-2022-0940
was published
for
showdoc/showdoc
(Composer)
Mar 15, 2022
Cross-site Scripting in ShowDoc
Moderate
CVE-2022-0938
was published
for
showdoc/showdoc
(Composer)
Mar 15, 2022
Cross-site Scripting in ShowDoc
Moderate
CVE-2022-0966
was published
for
showdoc/showdoc
(Composer)
Mar 16, 2022
Cross-site Scripting in ShowDoc
Moderate
CVE-2022-0964
was published
for
showdoc/showdoc
(Composer)
Mar 16, 2022
Stored Cross-site Scripting in showdoc
Moderate
CVE-2022-0967
was published
for
showdoc/showdoc
(Composer)
Mar 16, 2022
Cross-site Scripting in ShowDoc
Moderate
CVE-2022-0941
was published
for
showdoc/showdoc
(Composer)
Mar 15, 2022
Cross-site Scripting in Pimcore
Moderate
CVE-2022-0893
was published
for
pimcore/pimcore
(Composer)
Mar 16, 2022
Improper Restriction of Rendered UI Layers or Frames in Sylius
Moderate
CVE-2022-24733
was published
for
sylius/sylius
(Composer)
Mar 14, 2022
Cross-site Scripting in microweber
Moderate
CVE-2022-0926
was published
for
microweber/microweber
(Composer)
Mar 13, 2022
Cross-site Scripting in ShowDoc
Moderate
CVE-2022-0946
was published
for
showdoc/showdoc
(Composer)
Mar 15, 2022
Improper sanitize of SVG files during content upload ('Cross-site Scripting') in sylius/sylius
Moderate
CVE-2022-24749
was published
for
Sylius/Sylius
(Composer)
Mar 14, 2022
Cross-site Scripting in microweber
Moderate
CVE-2022-0929
was published
for
microweber/microweber
(Composer)
Mar 13, 2022
Cross-site Scripting in ShowDoc
Moderate
CVE-2022-0880
was published
for
showdoc/showdoc
(Composer)
Mar 13, 2022
Cross-site Scripting in microweber
Moderate
CVE-2022-0928
was published
for
microweber/microweber
(Composer)
Mar 12, 2022
Unrestricted Upload of File with Dangerous Type in microweber
Moderate
CVE-2022-0912
was published
for
microweber/microweber
(Composer)
Mar 12, 2022
Cross-site Scripting in ShowDoc
Moderate
CVE-2022-0962
was published
for
showdoc/showdoc
(Composer)
Mar 15, 2022
Unrestricted Upload of File with Dangerous Type in Microweber
Moderate
CVE-2022-0921
was published
for
microweber/microweber
(Composer)
Mar 12, 2022
ProTip!
Advisories are also available from the
GraphQL API