GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,413
Erlang
29
GitHub Actions
16
Go
1,653
Maven
4,915
npm
3,442
NuGet
594
pip
2,828
Pub
10
RubyGems
823
Rust
763
Swift
34
Unreviewed advisories
All unreviewed
5,000+
17 advisories
Filter by severity
Cross-site Scripting in Jenkins Stash Branch Parameter Plugin
High
CVE-2022-34198
was published
for
org.jenkins-ci.plugins:StashBranchParameter
(Maven)
Jun 24, 2022
Cross-site Scripting in Jenkins Agent Server Parameter Plugin
High
CVE-2022-34183
was published
for
io.jenkins.plugins:agent-server-parameter
(Maven)
Jun 24, 2022
Cross-site Scripting in Jenkins Image Tag Parameter Plugin
High
CVE-2022-34189
was published
for
org.jenkins-ci.plugins:image-tag-parameter
(Maven)
Jun 24, 2022
Cross-site Scripting in Jenkins Filesystem List Parameter Plugin
High
CVE-2022-34187
was published
for
aendter.jenkins.plugins:filesystem-list-parameter-plugin
(Maven)
Jun 24, 2022
Cross-site Scripting in Jenkins Package Version Plugin
High
CVE-2022-34193
was published
for
org.lilicurroad.jenkins:packageversion
(Maven)
Jun 24, 2022
Cross-site Scripting in Jenkins ontrack Jenkins Plugin
High
CVE-2022-34192
was published
for
org.jenkins-ci.plugins:ontrack
(Maven)
Jun 24, 2022
Cross-site Scripting in Jenkins Dynamic Extended Choice Parameter Plugin
High
CVE-2022-34186
was published
for
com.moded.extendedchoiceparameter:dynamic_extended_choice_parameter
(Maven)
Jun 24, 2022
Cross-site Scripting in Jenkins Date Parameter Plugin
High
CVE-2022-34185
was published
for
me.leejay.jenkins:date-parameter
(Maven)
Jun 24, 2022
Cross-site Scripting in Jenkins Maven Metadata Plugin
High
CVE-2022-34190
was published
for
eu.markov.jenkins.plugin.mvnmeta:maven-metadata-plugin
(Maven)
Jun 24, 2022
Cross-site Scripting in Jenkins CRX Content Package Deployer Plugin
High
CVE-2022-34184
was published
for
org.jenkins-ci.plugins:crx-content-package-deployer
(Maven)
Jun 24, 2022
Cross-site Scripting in Jenkins Readonly Parameter Plugin
High
CVE-2022-34194
was published
for
org.jenkins-ci.plugins:readonly-parameters
(Maven)
Jun 24, 2022
Cross-site Scripting in Jenkins REST List Parameter Plugin
High
CVE-2022-34196
was published
for
io.jenkins.plugins:rest-list-parameter
(Maven)
Jun 24, 2022
Cross-site Scripting in Jenkins Repository Connector Plugin
High
CVE-2022-34195
was published
for
org.jenkins-ci.plugins:repository-connector
(Maven)
Jun 24, 2022
Cross-site Scripting in Jenkins Hidden Parameter Plugin
High
CVE-2022-34188
was published
for
org.jenkins-ci.plugins:hidden-parameter
(Maven)
Jun 24, 2022
Cross-site Scripting in Jenkins Sauce OnDemand Plugin
High
CVE-2022-34197
was published
for
org.jenkins-ci.plugins:sauce-ondemand
(Maven)
Jun 24, 2022
Cross-site Scripting in Jenkins NS-ND Integration Performance Publisher Plugin
High
CVE-2022-34191
was published
for
io.jenkins.plugins:cavisson-ns-nd-integration
(Maven)
Jun 24, 2022
An exploitable free of a stack pointer vulnerability exists in the x509 certificate parsing code...
High
Unreviewed
CVE-2017-2784
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API