GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
217 advisories
Filter by severity
TopQuadrant TopBraid EDG before version 8.0.1 allows an authenticated attacker to upload an XML...
Moderate
Unreviewed
CVE-2024-45745
was published
Sep 27, 2024
SAP Business One (B1i) - version 10.0, allows an authorized attacker to retrieve the details...
Moderate
Unreviewed
CVE-2023-41365
was published
Oct 10, 2023
An issue was discovered in OverIT Geocall before version 8.0. An authenticated user who has the...
Moderate
Unreviewed
CVE-2022-22835
was published
Mar 11, 2022
Electronic Deliverables Creation Support Tool (Construction Edition) prior to Ver1.0.4 and...
Moderate
Unreviewed
CVE-2024-21796
was published
Jan 24, 2024
Improper restriction of XML external entity references vulnerability exists in FitNesse all...
Moderate
Unreviewed
CVE-2024-28039
was published
Mar 18, 2024
In versions of Akana API Platform prior to 2024.1.0 a flaw resulting in XML External Entity (XXE)...
Moderate
Unreviewed
CVE-2024-3930
was published
Jul 30, 2024
Improper Restriction of XML External Entity Reference vulnerability in PruvaSoft Informatics...
Moderate
Unreviewed
CVE-2024-5625
was published
Jul 18, 2024
An information disclosure vulnerability exists in Progress Telerik Report Server, version 2024 Q1...
Moderate
Unreviewed
CVE-2024-4357
was published
May 15, 2024
Microsoft SharePoint Server Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-30043
was published
May 14, 2024
The Spreadsheet::ParseXLSX package before 0.30 for Perl allows XXE attacks because it neglects to...
Moderate
Unreviewed
CVE-2024-23525
was published
Jan 18, 2024
Voltronic Power ViewPower Pro doDocument XML External Entity Processing Information Disclosure...
Moderate
Unreviewed
CVE-2023-51591
was published
May 3, 2024
Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure...
Moderate
Unreviewed
CVE-2023-51605
was published
May 3, 2024
Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure...
Moderate
Unreviewed
CVE-2023-51600
was published
May 3, 2024
Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure...
Moderate
Unreviewed
CVE-2023-51601
was published
May 3, 2024
Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure...
Moderate
Unreviewed
CVE-2023-51602
was published
May 3, 2024
Honeywell Saia PG5 Controls Suite XML External Entity Processing Information Disclosure...
Moderate
Unreviewed
CVE-2023-51604
was published
May 3, 2024
Visualware MyConnection Server doIForward XML External Entity Processing Information Disclosure...
Moderate
Unreviewed
CVE-2023-42035
was published
May 3, 2024
Inductive Automation Ignition SimpleXMLReader XML External Entity Processing Information...
Moderate
Unreviewed
CVE-2023-39472
was published
May 3, 2024
The Foundry Magritte plugin rest-source was found to be vulnerable to an an XML external Entity...
Moderate
Unreviewed
CVE-2023-30951
was published
Aug 4, 2023
Zoho ManageEngine ADManager Plus before 7183 allows admin users to exploit an XXE issue to view...
Moderate
Unreviewed
CVE-2023-35786
was published
Jul 5, 2023
Dell Unity prior to 5.3 contains an XML External Entity injection vulnerability. An XXE attack...
Moderate
Unreviewed
CVE-2023-43067
was published
Oct 23, 2023
FD Application Apr. 2022 Edition (Version 9.01) and earlier improperly restricts XML external...
Moderate
Unreviewed
CVE-2023-42132
was published
Oct 2, 2023
Applicant Programme Ver.7.06 and earlier improperly restricts XML external entity references (XXE...
Moderate
Unreviewed
CVE-2023-32639
was published
Jul 25, 2023
XBRL data create application version 7.0 and earlier improperly restricts XML external entity...
Moderate
Unreviewed
CVE-2023-32635
was published
Jul 19, 2023
A CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that
could...
Moderate
Unreviewed
CVE-2023-37200
was published
Jul 12, 2023
ProTip!
Advisories are also available from the
GraphQL API