GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
105 advisories
Filter by severity
XML External Entity Reference in Jenkins Recipe Plugin
High
CVE-2022-34793
was published
for
org.jenkins-ci.plugins:recipe
(Maven)
Jul 1, 2022
XML External Entity processing vulnerability in Pipeline Maven Integration Jenkins Plugin
High
CVE-2019-10327
was published
for
org.jenkins-ci.plugins:pipeline-maven
(Maven)
May 24, 2022
XXE vulnerability in Jenkins OWASP Dependency-Check Plugin
High
CVE-2021-43577
was published
for
org.jenkins-ci.plugins:dependency-check-jenkins-plugin
(Maven)
May 24, 2022
Improper Restriction of XML External Entity Reference in Stanford CoreNLP
High
CVE-2021-3869
was published
for
edu.stanford.nlp:stanford-corenlp
(Maven)
May 24, 2022
XXE vulnerability in Jenkins Nested View Plugin
High
CVE-2021-21680
was published
for
org.jenkins-ci.plugins:nested-view
(Maven)
May 24, 2022
XXE vulnerability in Jenkins URLTrigger Plugin
High
CVE-2021-21659
was published
for
org.jenkins-ci.plugins:urltrigger
(Maven)
May 24, 2022
XXE vulnerability in Jenkins Filesystem Trigger Plugin
High
CVE-2021-21657
was published
for
org.jenkins-ci.plugins:fstrigger
(Maven)
May 24, 2022
XML External Entity Reference vulnerability in Jenkins Config File Provider Plugin
High
CVE-2021-21642
was published
for
org.jenkins-ci.plugins:config-file-provider
(Maven)
May 24, 2022
XXE vulnerability in Jenkins CVS Plugin
High
CVE-2020-2324
was published
for
org.jenkins-ci.plugins:cvs
(Maven)
May 24, 2022
XXE vulnerability in Jenkins Liquibase Runner Plugin
High
CVE-2020-2284
was published
for
org.jenkins-ci.plugins:liquibase-runner
(Maven)
May 24, 2022
XXE vulnerability in Jenkins Klocwork Analysis Plugin
High
CVE-2020-2247
was published
for
org.jenkins-ci.plugins:klocwork
(Maven)
May 24, 2022
XXE vulnerability in Jenkins Valgrind Plugin
High
CVE-2020-2245
was published
for
org.jenkins-ci.plugins:valgrind
(Maven)
May 24, 2022
XXE vulnerability in Jenkins Parasoft Findings Plugin
High
CVE-2020-2178
was published
for
com.parasoft:parasoft-findings
(Maven)
May 24, 2022
XXE vulnerability in Jenkins Code Coverage API Plugin
High
CVE-2020-2172
was published
for
io.jenkins.plugins:code-coverage-api
(Maven)
May 24, 2022
XXE vulnerability in Jenkins RapidDeploy Plugin
High
CVE-2020-2171
was published
for
org.jenkins-ci.plugins:rapiddeploy-jenkins
(Maven)
May 24, 2022
XXE vulnerability in Jenkins Cobertura Plugin
High
CVE-2020-2138
was published
for
org.jenkins-ci.plugins:cobertura
(Maven)
May 24, 2022
XXE vulnerability in Rundeck Plugin
High
CVE-2020-2144
was published
for
org.jenkins-ci.plugins:rundeck
(Maven)
May 24, 2022
XXE vulnerability in FitNesse Plugin
High
CVE-2020-2120
was published
for
org.jenkins-ci.plugins:fitnesse
(Maven)
May 24, 2022
XXE vulnerability in NUnit Plugin
High
CVE-2020-2115
was published
for
org.jenkins-ci.plugins:nunit
(Maven)
May 24, 2022
XXE vulnerability in Jenkins WebSphere Deployer Plugin
High
CVE-2020-2108
was published
for
org.jenkins-ci.plugins:websphere-deployer
(Maven)
May 24, 2022
XXE vulnerability in Jenkins Robot Framework Plugin
High
CVE-2020-2092
was published
for
org.jenkins-ci.plugins:robot
(Maven)
May 24, 2022
XML external entity (XXE) vulnerability in Jenkins
High
CVE-2015-1809
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 24, 2022
Jenkins Maven Release Plug-in Plugin XXE vulnerability
High
CVE-2019-16549
was published
for
org.jenkins-ci.plugins.m2release:m2release
(Maven)
May 24, 2022
Jenkins 360 FireLine Plugin vulnerable to XML External Entity Reference
High
CVE-2019-10466
was published
for
org.jenkins-ci.plugins.plugin:fireline
(Maven)
May 24, 2022
Improper Restriction of XML External Entity Reference Jenkins Token Macro Plugin
High
CVE-2019-10337
was published
for
org.jenkins-ci.plugins:token-macro
(Maven)
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API