GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
311 advisories
Filter by severity
An XML External Entity (XXE) vulnerability in the Import object and Translation Memory import...
Moderate
Unreviewed
CVE-2024-50848
was published
Nov 18, 2024
A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated,...
Moderate
Unreviewed
CVE-2020-26066
was published
Nov 18, 2024
A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated,...
Moderate
Unreviewed
CVE-2021-1483
was published
Nov 15, 2024
A blind XML External Entities (XXE) injection vulnerability in the Palo Alto Networks PAN-OS...
Moderate
Unreviewed
CVE-2024-5919
was published
Nov 14, 2024
A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read...
Moderate
Unreviewed
CVE-2024-20531
was published
Nov 6, 2024
IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML external entity injection ...
Moderate
Unreviewed
CVE-2024-45086
was published
Nov 4, 2024
Improper Restriction of XML External Entity Reference vulnerability in WP Royal Royal Elementor...
Moderate
Unreviewed
CVE-2024-50442
was published
Oct 28, 2024
IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML External Entity Injection ...
Moderate
Unreviewed
CVE-2024-45072
was published
Oct 16, 2024
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application...
Moderate
Unreviewed
CVE-2024-4189
was published
Oct 16, 2024
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application...
Moderate
Unreviewed
CVE-2024-4690
was published
Oct 16, 2024
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application...
Moderate
Unreviewed
CVE-2024-4184
was published
Oct 16, 2024
When the XML is read from the codes in the PDF and parsed using a DocumentBuilder, the default...
Moderate
Unreviewed
CVE-2024-8602
was published
Oct 14, 2024
Apache XML Graphics FOP XML External Entity Reference ('XXE') vulnerability
Moderate
CVE-2024-28168
was published
for
org.apache.xmlgraphics:fop-core
(Maven)
Oct 9, 2024
TopQuadrant TopBraid EDG before version 8.0.1 allows an authenticated attacker to upload an XML...
Moderate
Unreviewed
CVE-2024-45745
was published
Sep 27, 2024
In versions of Akana API Platform prior to 2024.1.0 a flaw resulting in XML External Entity (XXE)...
Moderate
Unreviewed
CVE-2024-3930
was published
Jul 30, 2024
Improper Restriction of XML External Entity Reference vulnerability in PruvaSoft Informatics...
Moderate
Unreviewed
CVE-2024-5625
was published
Jul 18, 2024
ClassGraph XML External Entity Reference
Moderate
CVE-2021-47621
was published
for
io.github.classgraph:classgraph
(Maven)
Jun 21, 2024
An information disclosure vulnerability exists in Progress Telerik Report Server, version 2024 Q1...
Moderate
Unreviewed
CVE-2024-4357
was published
May 15, 2024
Microsoft SharePoint Server Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-30043
was published
May 14, 2024
Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure...
Moderate
Unreviewed
CVE-2023-51600
was published
May 3, 2024
Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure...
Moderate
Unreviewed
CVE-2023-51602
was published
May 3, 2024
Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure...
Moderate
Unreviewed
CVE-2023-51604
was published
May 3, 2024
Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure...
Moderate
Unreviewed
CVE-2023-51601
was published
May 3, 2024
Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure...
Moderate
Unreviewed
CVE-2023-51605
was published
May 3, 2024
Voltronic Power ViewPower Pro doDocument XML External Entity Processing Information Disclosure...
Moderate
Unreviewed
CVE-2023-51591
was published
May 3, 2024
ProTip!
Advisories are also available from the
GraphQL API