Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,750
Maven
5,000+
npm
4,353
NuGet
765
pip
4,114
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,887 advisories

Loading
TYPO3 Improper Session Invalidation Moderate
CVE-2014-3944 was published for typo3/cms (Composer) May 17, 2022
Typo3 Information Disclosure Moderate
CVE-2014-3946 was published for typo3/cms (Composer) May 17, 2022
TYPO3 Improper Access Management in the File Abstraction Layer Moderate
CVE-2013-4320 was published for typo3/cms-core (Composer) May 17, 2022
Typo3 Backend History Module Vulnerable to XSS Moderate
CVE-2012-6146 was published for typo3/cms (Composer) May 17, 2022
CiviCRM SQL injection vulnerability via Quick Search API Moderate
CVE-2013-4662 was published for civicrm/civicrm-core (Composer) May 17, 2022
EC-CUBE vulnerable to authorization bypass Moderate
CVE-2014-0808 was published for ec-cube/ec-cube (Composer) May 17, 2022
TYPO3 Improper Access Control vulnerability Moderate
CVE-2013-7081 was published for typo3/cms-core (Composer) May 17, 2022
TYPO3 is vulnerable to Mass Assignment in the Extension table administration library Moderate
CVE-2013-7080 was published for typo3/cms-core (Composer) May 17, 2022
TYPO3 vulnerable to Insecure Unserialize via Content Editing Wizards component Moderate
CVE-2013-7075 was published for typo3/cms (Composer) May 17, 2022
Drupal improper access restrictions Moderate
CVE-2012-2153 was published for drupal/drupal (Composer) May 17, 2022
Drupal Open Redirect Moderate
CVE-2012-1589 was published for drupal/drupal (Composer) May 17, 2022
Tiki Wiki CMS Groupware Cross-site scripting (XSS) vulnerability Moderate
CVE-2013-4714 was published for tikiwiki/tiki-manager (Composer) May 17, 2022
Apache Solr for TYPO3 (solr) extension is vulnerable to Cross-site scripting (XSS) Moderate
CVE-2013-6289 was published for apache-solr-for-typo3/solr (Composer) May 17, 2022
FriendsOfSymfony FOSUserBundle denial of service via login form Moderate
CVE-2013-5750 was published for friendsofsymfony/user-bundle (Composer) May 17, 2022
phpMyAdmin Multiple cross-site scripting (XSS) vulnerabilities Moderate
CVE-2013-4997 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
phpMyAdmin Global variables scope injection vulnerability Moderate
CVE-2013-4729 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
TYPO3 Open redirect vulnerability in the Access tracking mechanism Moderate
CVE-2013-1843 was published for typo3/cms-core (Composer) May 17, 2022
Zend Framework XEE Vulnerability Moderate
CVE-2012-6532 was published for zendframework/zendframework1 (Composer) May 17, 2022
Zend Framework XXE Vulnerability Moderate
CVE-2012-5657 was published for zendframework/zendframework1 (Composer) May 17, 2022
Zend Framework XEE Vulnerability Moderate
CVE-2012-6531 was published for zendframework/zendframework1 (Composer) May 17, 2022
phpMyAdmin Unsafe Fetching of Javascript Code Moderate
CVE-2012-5368 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
Symfony Allows URI Restrictions Bypass Via Double-Encoded String Moderate
CVE-2012-6431 was published for symfony/http-foundation (Composer) May 17, 2022
Symfony Access Control Vulnerability Moderate
CVE-2012-6432 was published for symfony/symfony (Composer) May 17, 2022
Silverstripe CMS Arbitrary Code Execution Moderate
CVE-2011-4962 was published for silverstripe/cms (Composer) May 17, 2022
Silverstripe XSS Vulnerabilities Moderate
CVE-2012-4968 was published for silverstripe/framework (Composer) May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database