GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,667
Maven
5,000+
npm
4,294
NuGet
760
pip
4,073
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+
2,862 advisories
Filter by severity
Denial of Service (DoS) attack possibility in TYPO3 component Indexed Search
Moderate
GHSA-pmxp-7224-h794
was published
for
typo3/cms
(Composer)
Jun 4, 2024
Typo3 Arbitrary File Disclosure in Form Component
Moderate
GHSA-wrpf-2x8h-82gr
was published
for
typo3/cms
(Composer)
Jun 4, 2024
Cross-Site Scripting (XSS) in TYPO3 component CSS styled content
Moderate
GHSA-8j9v-4hhh-x43c
was published
for
typo3/cms
(Composer)
Jun 4, 2024
Cross-Site Scripting (XSS) in TYPO3 component Backend
Moderate
GHSA-3jxq-5xhh-9jr3
was published
for
typo3/cms
(Composer)
Jun 4, 2024
TYPO3 Cross-Site Scripting (XSS) in form component
Moderate
GHSA-5j86-5xvg-7q93
was published
for
typo3/cms
(Composer)
Jun 3, 2024
TYPO3 Cross-Site Scripting in legacy form component
Moderate
GHSA-vgm8-r9gm-fw59
was published
for
typo3/cms
(Composer)
Jun 3, 2024
Cross-site Scripting vulnerability in Kitodo.Presentation
Moderate
CVE-2020-16095
was published
for
kitodo/presentation
(Composer)
Jul 31, 2020
TYPO3 Cross-Site Scripting in link validator component
Moderate
GHSA-cg4m-qjjp-7497
was published
for
typo3/cms
(Composer)
Jun 3, 2024
TYPO3 Multiple Cross-Site Scripting vulnerabilities in frontend
Moderate
GHSA-6fc6-cj2j-h22x
was published
for
typo3/cms
(Composer)
Jun 3, 2024
Cross-Site Scripting in TYPO3 component Indexed Search
Moderate
GHSA-wh8q-72cp-p5wf
was published
for
typo3/cms
(Composer)
Jun 3, 2024
TYPO3 is susceptible to Cross-Site Flashing
Moderate
GHSA-qrxh-46mr-pr7q
was published
for
typo3/cms
(Composer)
Jun 3, 2024
Multiple Cross-Site Scripting vulnerabilities in TYPO3 backend
Moderate
GHSA-5cxf-xx9j-54jc
was published
for
typo3/cms
(Composer)
Jun 3, 2024
TYPO3 Cross-Site Scripting vulnerability in typolinks
Moderate
GHSA-75mx-chcf-2q32
was published
for
typo3/cms
(Composer)
May 30, 2024
TYPO3 Frontend vulnerable to Unauthenticated Path Disclosure
Moderate
GHSA-pqfv-97hj-g97g
was published
for
typo3/cms
(Composer)
May 30, 2024
TYPO3 Brute Force Protection Bypass in backend login
Moderate
GHSA-jqr8-q455-xx45
was published
for
typo3/cms
(Composer)
May 30, 2024
TYPO3 Information Disclosure Vulnerability Exploitable by Editors
Moderate
GHSA-r287-hc8j-w56h
was published
for
typo3/cms
(Composer)
May 30, 2024
TYPO3 Cross-Site Scripting Vulnerability Exploitable by Editors
Moderate
GHSA-wp8j-c736-c5r3
was published
for
typo3/cms
(Composer)
May 30, 2024
ExtJS JavaScript framework used in TYPO3 vulnerable to Cross-site Scripting
Moderate
GHSA-mxjf-hc9v-xgv2
was published
for
typo3/cms
(Composer)
May 30, 2024
TYPO3 Cross-Site Scripting in Filelist Module
Moderate
GHSA-6xwf-7rfm-4gwc
was published
for
typo3/cms-core
(Composer)
May 30, 2024
TYPO3 Cross-Site Scripting in Link Handling
Moderate
GHSA-4ppr-jw47-9qm5
was published
for
typo3/cms-core
(Composer)
May 30, 2024
TYPO3 Cross-Site Scripting in Form Framework validation handling
Moderate
GHSA-95qm-3xp7-vfj5
was published
for
typo3/cms-core
(Composer)
May 30, 2024
TYPO3 Broken Access Control in Import Module
Moderate
GHSA-g776-759r-pf6x
was published
for
typo3/cms-core
(Composer)
May 30, 2024
TYPO3 Information Disclosure in Backend User Interface
Moderate
GHSA-rv8r-8mh5-5376
was published
for
typo3/cms-core
(Composer)
May 30, 2024
TYPO3 Information Disclosure in User Authentication
Moderate
GHSA-wj85-rg5g-v8jm
was published
for
typo3/cms-core
(Composer)
May 30, 2024
TYPO3 Disclosure of Information about Installed Extensions
Moderate
GHSA-p2h4-7fp3-cmh8
was published
for
typo3/cms-core
(Composer)
May 30, 2024
ProTip!
Advisories are also available from the
GraphQL API