Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

210 advisories

Loading
Cross-site Scripting vulnerability in Jenkins High
CVE-2022-34171 was published for org.jenkins-ci.main:jenkins-core (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting in Jenkins JUnit Plugin High
CVE-2022-34176 was published for org.jenkins-ci.plugins:junit (Maven) Jun 24, 2022
NotMyFault
Reflected Cross site scripting in Jenkins Embeddable Build Status Plugin High
CVE-2022-34178 was published for org.jenkins-ci.plugins:embeddable-build-status (Maven) Jun 24, 2022
NotMyFault
Arbitrary file write vulnerability in Jenkins Pipeline: Input Step Plugin High
CVE-2022-34177 was published for org.jenkins-ci.plugins:pipeline-input-step (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting in Jenkins Image Tag Parameter Plugin High
CVE-2022-34189 was published for org.jenkins-ci.plugins:image-tag-parameter (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting in Jenkins CRX Content Package Deployer Plugin High
CVE-2022-34184 was published for org.jenkins-ci.plugins:crx-content-package-deployer (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting in Jenkins Dynamic Extended Choice Parameter Plugin High
CVE-2022-34186 was published for com.moded.extendedchoiceparameter:dynamic_extended_choice_parameter (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting in Jenkins REST List Parameter Plugin High
CVE-2022-34196 was published for io.jenkins.plugins:rest-list-parameter (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting in Jenkins Maven Metadata Plugin High
CVE-2022-34190 was published for eu.markov.jenkins.plugin.mvnmeta:maven-metadata-plugin (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting in Jenkins ontrack Jenkins Plugin High
CVE-2022-34192 was published for org.jenkins-ci.plugins:ontrack (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting in Jenkins Stash Branch Parameter Plugin High
CVE-2022-34198 was published for org.jenkins-ci.plugins:StashBranchParameter (Maven) Jun 24, 2022
NotMyFault
Cross-site Scripting in Jenkins Plot Plugin High
CVE-2022-34783 was published for org.jenkins-ci.plugins:plot (Maven) Jul 1, 2022
NotMyFault
Cross-site Scripting in Jenkins GitLab Plugin High
CVE-2022-34777 was published for org.jenkins-ci.plugins:gitlab-plugin (Maven) Jul 1, 2022
NotMyFault
Cross site scripting in Jenkins build-metrics Plugin High
CVE-2022-34784 was published for org.jenkins-ci.plugins:build-metrics (Maven) Jul 1, 2022
NotMyFault
Cross-site Scripting in Jenkins TestNG Results Plugin High
CVE-2022-34778 was published for org.jenkins-ci.plugins:testng-plugin (Maven) Jul 1, 2022
NotMyFault
Cross-site Scripting in Jenkins eXtreme Feedback Panel Plugin High
CVE-2022-34790 was published for org.jenkins-ci.plugins:xfpanel (Maven) Jul 1, 2022
NotMyFault
Jenkins Matrix Reloaded Plugin vulnerable to Stored XSS High
CVE-2022-34788 was published for net.praqma:matrix-reloaded (Maven) Jul 1, 2022
NotMyFault
Jenkins Project Inheritance Plugin vulnerable to cross site scripting High
CVE-2022-34787 was published for hudson.plugins:project-inheritance (Maven) Jul 1, 2022
NotMyFault
Cross-site Scripting in Jenkins Rich Text Publisher Plugin High
CVE-2022-34786 was published for org.jenkins-ci.plugins:rich-text-publisher-plugin (Maven) Jul 1, 2022
NotMyFault
Missing Authorization in Jenkins Recipe Plugin High
CVE-2022-34794 was published for org.jenkins-ci.plugins:recipe (Maven) Jul 1, 2022
NotMyFault
Cross-site Scripting in Jenkins Validating Email Parameter Plugin High
CVE-2022-34791 was published for io.jenkins.plugins:validating-email-parameter (Maven) Jul 1, 2022
NotMyFault
XML External Entity Reference in Jenkins Recipe Plugin High
CVE-2022-34793 was published for org.jenkins-ci.plugins:recipe (Maven) Jul 1, 2022
NotMyFault
Cross-site Scripting in Jenkins Deployment Dashboard Plugin High
CVE-2022-34795 was published for org.jenkins-ci.plugins:ec2-deployment-dashboard (Maven) Jul 1, 2022
NotMyFault
Cross-Site Request Forgery in Jenkins Recipe Plugin High
CVE-2022-34792 was published for org.jenkins-ci.plugins:recipe (Maven) Jul 1, 2022
NotMyFault
Arbitrary file write vulnerability in Jenkins CLIF Performance Testing plugin High
CVE-2022-36894 was published for org.jenkins-ci.plugins:clif-performance-testing (Maven) Jul 28, 2022
NotMyFault
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database