Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,055
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,605
NuGet
638
pip
3,208
Pub
10
RubyGems
852
Rust
816
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,329 advisories

Loading
Cross-site Scripting in microweber Moderate
CVE-2022-0929 was published for microweber/microweber (Composer) Mar 13, 2022
Improper Restriction of Rendered UI Layers or Frames in Sylius Moderate
CVE-2022-24733 was published for sylius/sylius (Composer) Mar 14, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0946 was published for showdoc/showdoc (Composer) Mar 15, 2022
Cross-site Scripting in microweber Moderate
CVE-2022-0926 was published for microweber/microweber (Composer) Mar 13, 2022
Improper sanitize of SVG files during content upload ('Cross-site Scripting') in sylius/sylius Moderate
CVE-2022-24749 was published for Sylius/Sylius (Composer) Mar 14, 2022
Ocramius
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0964 was published for showdoc/showdoc (Composer) Mar 16, 2022
Stored Cross-site Scripting in showdoc Moderate
CVE-2022-0967 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in Pimcore Moderate
CVE-2022-0893 was published for pimcore/pimcore (Composer) Mar 16, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0966 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0938 was published for showdoc/showdoc (Composer) Mar 15, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0940 was published for showdoc/showdoc (Composer) Mar 15, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0941 was published for showdoc/showdoc (Composer) Mar 15, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0965 was published for showdoc/showdoc (Composer) Mar 16, 2022
Unrestricted XML files leading to cross-site scripting in Microweber Moderate
CVE-2022-0963 was published for microweber/microweber (Composer) Mar 16, 2022
Stored Cross-site Scripting in Microweber Moderate
CVE-2022-0954 was published for microweber/microweber (Composer) Mar 16, 2022
Stored Cross-site Scripting in ShowDoc Moderate
CVE-2022-0945 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in Pimcore Moderate
CVE-2022-0894 was published for pimcore/pimcore (Composer) Mar 16, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0956 was published for showdoc/showdoc (Composer) Mar 16, 2022
File Upload Restriction Bypass leading to Cross-site Scripting in ShowDoc Moderate
CVE-2022-0951 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0957 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0942 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in Zenario CMS Moderate
CVE-2021-41952 was published for tribalsystems/zenario (Composer) Mar 15, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0937 was published for showdoc/showdoc (Composer) Mar 15, 2022
Cross-site Scripting in ShowDoc Moderate
CVE-2022-0950 was published for showdoc/showdoc (Composer) Mar 16, 2022
Cross-site Scripting in Pimcore Moderate
CVE-2022-0705 was published for pimcore/pimcore (Composer) Mar 17, 2022
ProTip! Advisories are also available from the GraphQL API