Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,466
Erlang
33
GitHub Actions
23
Go
2,166
Maven
5,000+
npm
3,829
NuGet
696
pip
3,507
Pub
12
RubyGems
909
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+

32,694 advisories

Loading
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28878 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-28895 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28879 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-28905 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28907 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28906 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28875 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28871 was published Mar 11, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed
CVE-2025-28870 was published Mar 11, 2025
A vulnerability classified as problematic was found in aitangbao springboot-manager 3.0. This... Moderate Unreviewed
CVE-2025-2207 was published Mar 11, 2025
A vulnerability classified as problematic has been found in aitangbao springboot-manager 3.0.... Moderate Unreviewed
CVE-2025-2206 was published Mar 11, 2025
A reflected cross-site scripting (XSS) vulnerability in the component /legacyui... Moderate Unreviewed
CVE-2025-25929 was published Mar 11, 2025
A stored cross-scripting (XSS) vulnerability in Openmrs v2.4.3 Build 0ff0ed allows attackers to... Moderate Unreviewed
CVE-2025-25925 was published Mar 11, 2025
Froxlor has an HTML Injection Vulnerability Moderate
GHSA-26xq-m8xw-6373 was published for froxlor/froxlor (Composer) Mar 11, 2025
BenefactorYuvi
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.6 and 6.2.0.0 through 6.2.0.3... Moderate Unreviewed
CVE-2024-56338 was published Mar 11, 2025
Cross Site Scripting vulnerability in DigitalDruid HotelDruid v.3.0.7 allows an attacker to... Moderate Unreviewed
CVE-2025-25747 was published Mar 11, 2025
Cross Site Scripting vulnerability in Zucchetti Ad Hoc Infinity 2.4 allows an authenticated... Moderate Unreviewed
CVE-2024-51322 was published Mar 11, 2025
An improper neutralization of input during web page generation ('Cross-site Scripting')... High Unreviewed
CVE-2023-37933 was published Mar 11, 2025
Cross Site Scripting vulnerability in Zucchetti Ad Hoc Infinity 2.4 allows an authenticated... Moderate Unreviewed
CVE-2024-51320 was published Mar 11, 2025
A vulnerability was found in MRCMS 3.1.2. It has been classified as problematic. Affected is the... Moderate Unreviewed
CVE-2025-2195 was published Mar 11, 2025
A vulnerability was found in MRCMS 3.1.2 and classified as problematic. This issue affects the... Moderate Unreviewed
CVE-2025-2194 was published Mar 11, 2025
A vulnerability was found in MRCMS 3.1.2. It has been declared as problematic. Affected by this... Moderate Unreviewed
CVE-2025-2196 was published Mar 11, 2025
A vulnerability, which was classified as problematic, has been found in Claro A7600-A1 RNR4-A72T... Moderate Unreviewed
CVE-2025-2191 was published Mar 11, 2025
The Spreadsheet view is vulnerable to a XSS attack, where a remote unauthorised attacker can read... Moderate Unreviewed
CVE-2025-1434 was published Mar 11, 2025
The ProductDyno plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘res... Moderate Unreviewed
CVE-2024-13413 was published Mar 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database