GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
4,894 advisories
LibreNMS is vulnerable to Reflected-XSS in `report_this` function
Moderate
CVE-2025-62365
was published
for
librenms/librenms
(Composer)
Oct 13, 2025
Kimai API returns timesheet entries a user should not be authorized to view
Moderate
CVE-2024-29200
was published
for
kimai/kimai
(Composer)
Mar 29, 2024
phpMyFAQ duplicate email registration allows multiple accounts with the same email
High
CVE-2025-59943
was published
for
thorsten/phpmyfaq
(Composer)
Oct 3, 2025
Withdrawn Advisory: Bootstrap Cross-Site Scripting (XSS) vulnerability
Moderate
CVE-2024-6531
was published
for
bootstrap
(RubyGems)
Jul 11, 2024
•
withdrawn
Melis Platform CMS Unauthenticated File Upload Leading to RCE
Critical
CVE-2025-10353
was published
for
melisplatform/melis-cms-slider
(Composer)
Oct 8, 2025
Melis Platform CMS Unauthenticated Admin Account Creation
Critical
CVE-2025-10352
was published
for
melisplatform/melis-core
(Composer)
Oct 8, 2025
Melis Platform CMS SQL Injection
Critical
CVE-2025-10351
was published
for
melisplatform/melis-cms
(Composer)
Oct 8, 2025
MediaWiki Cargo Extension Cross-site Scripting vulnerability
Moderate
CVE-2024-23173
was published
for
mediawiki/cargo
(Composer)
Jan 12, 2024
Star Citizen EmbedVideo Extension Stored XSS through wikitext caused by usage of non-reserved data attributes
High
CVE-2025-59839
was published
for
starcitizenwiki/embedvideo
(Composer)
Sep 24, 2025
ProTip!
Advisories are also available from the
GraphQL API