GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
9 advisories
Citizen Short Description stored XSS vulnerability through wikitext
High
CVE-2025-53369
was published
for
starcitizentools/short-description
(Composer)
Jul 3, 2025
Citizen vulnerable to Stored XSS through short descriptions
High
CVE-2025-53370
was published
for
starcitizentools/citizen-skin
(Composer)
Jul 3, 2025
starcitizentools/citizen-skin is vulnerable to Stored XSS attack in the legacy search bar through page descriptions
High
CVE-2025-53368
was published
for
starcitizentools/citizen-skin
(Composer)
Jul 3, 2025
TabberNeue vulnerable to Stored XSS through wikitext
High
CVE-2025-53093
was published
for
starcitizentools/tabber-neue
(Composer)
Jun 27, 2025
starcitizentools/citizen-skin allows stored XSS in user registration date message
Moderate
CVE-2025-49578
was published
for
starcitizentools/citizen-skin
(Composer)
Jun 13, 2025
starcitizentools/citizen-skin allows stored XSS in menu heading message
Moderate
CVE-2025-49579
was published
for
starcitizentools/citizen-skin
(Composer)
Jun 13, 2025
starcitizentools/citizen-skin allows stored XSS in preference menu heading messages
Moderate
CVE-2025-49577
was published
for
starcitizentools/citizen-skin
(Composer)
Jun 13, 2025
starcitizentools/citizen-skin allows stored XSS in search no result messages
Moderate
CVE-2025-49576
was published
for
starcitizentools/citizen-skin
(Composer)
Jun 13, 2025
Citizen skin vulnerable to stored XSS through multiple system messages
Moderate
CVE-2025-49575
was published
for
starcitizentools/citizen-skin
(Composer)
Jun 11, 2025
ProTip!
Advisories are also available from the
GraphQL API