Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,726
Maven
5,000+
npm
4,331
NuGet
763
pip
4,107
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,887 advisories

Loading
phpMyAdmin DoS Vulnerability Moderate
CVE-2016-6623 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
phpMyAdmin Local file exposure Moderate
CVE-2016-6612 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
phpMyAdmin Local file exposure through symlinks with UploadDir Moderate
CVE-2016-6613 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
phpMyAdmin IPv6 and proxy server IP-based authentication rule circumvention Moderate
CVE-2016-6624 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
phpMyAdmin Cross-site Scripting (XSS) Moderate
CVE-2016-6608 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
phpMyAdmin XSS Vulnerability Moderate
CVE-2016-5704 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
phpMyAdmin XSS Vulnerability Moderate
CVE-2016-5732 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
ADOdb Cross-site scripting vulnerability in old test script Moderate
CVE-2016-4855 was published for adodb/adodb-php (Composer) May 17, 2022
Laravel does not properly constrain the host portion of a password-reset URL Moderate
CVE-2017-9303 was published for illuminate/auth (Composer) May 17, 2022
Contao Core directory traversal vulnerability Moderate
CVE-2015-0269 was published for contao/core (Composer) May 17, 2022
admidio CSRF Vulnerability Moderate
CVE-2017-8382 was published for admidio/admidio (Composer) May 17, 2022
ViMbAdmin Cross-site Scripting Vulnerabilities Moderate
CVE-2017-5870 was published for opensolutions/vimbadmin (Composer) May 17, 2022
MODX Revolution XSS via HTTP Host header Moderate
CVE-2017-9071 was published for modx/revolution (Composer) May 17, 2022
MODX Revolution Reflected XSS Moderate
CVE-2017-9068 was published for modx/revolution (Composer) May 17, 2022
MODX Revolution cross-site scripting vulnerability Moderate
CVE-2017-9070 was published for modx/revolution (Composer) May 17, 2022
Moodle Cross-Site Request Forgery (CSRF) Moderate
CVE-2017-7491 was published for moodle/moodle (Composer) May 17, 2022
baserCMS Cross-site Scripting vulnerability Moderate
CVE-2016-4880 was published for baserproject/basercms (Composer) May 17, 2022
Dolibarr ERP and CRM contain XSS Vulnerability Moderate
CVE-2017-7887 was published for dolibarr/dolibarr (Composer) May 17, 2022
GeniXCMS Cross-site Scripting (XSS) Moderate
CVE-2017-8762 was published for genix/cms (Composer) May 17, 2022
GeniXCMS Cross-site Scripting Moderate
CVE-2017-8780 was published for genix/cms (Composer) May 17, 2022
Craft CMS XSS Vulnerability Moderate
CVE-2017-8384 was published for craftcms/cms (Composer) May 17, 2022
Craft CMS subject to URL forgery Moderate
CVE-2017-8385 was published for craftcms/cms (Composer) May 17, 2022
GeniXCMS Cross-site Scripting (XSS) Moderate
CVE-2017-8376 was published for genix/cms (Composer) May 17, 2022
Yii Framework Reflected XSS Moderate
CVE-2017-7271 was published for yiisoft/yii2 (Composer) May 17, 2022
Canvs Canvas Cross-site Scripting (XSS) via title and content fields Moderate
CVE-2017-8298 was published for austintoddj/canvas (Composer) May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database