Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,685
Maven
5,000+
npm
4,318
NuGet
760
pip
4,092
Pub
12
RubyGems
958
Rust
1,063
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,879 advisories

Loading
Pimcore Cross-site Scripting (XSS) vulnerability Moderate
CVE-2019-18982 was published for pimcore/pimcore (Composer) May 24, 2022
Pimcore Cross-site Scripting (XSS) Moderate
CVE-2022-2796 was published for pimcore/pimcore (Composer) Aug 24, 2022
phpMyAdmin Cross-site scripting (XSS) vulnerability in SQL parser Moderate
CVE-2016-2559 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
phpMyAdmin Improper Input Validation Moderate
CVE-2016-2562 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
phpMyAdmin Local file exposure through symlinks with UploadDir Moderate
CVE-2016-6613 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
phpMyAdmin Local file exposure Moderate
CVE-2016-6612 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
phpMyAdmin Reflected File Download attack Moderate
CVE-2016-6628 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
phpMyAdmin Denial of Service (DoS) Moderate
CVE-2016-9860 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
phpMyAdmin Cross-site scripting (XSS) vulnerability in central columns feature Moderate
CVE-2018-7260 was published for phpmyadmin/phpmyadmin (Composer) May 14, 2022
phpMyAdmin full path disclosure vulnerability Moderate
CVE-2016-5730 was published for phpmyadmin/phpmyadmin (Composer) May 14, 2022
phpMyAdmin Cross-site scripting (XSS) vulnerability Moderate
CVE-2016-5731 was published for phpmyadmin/phpmyadmin (Composer) May 14, 2022
phpMyAdmin Cross-site Scripting (XSS) Moderate
CVE-2020-26934 was published for phpmyadmin/phpmyadmin (Composer) May 24, 2022
phpMyAdmin Cross-Site Request Forgery (CSRF) Moderate
CVE-2019-12922 was published for phpmyadmin/phpmyadmin (Composer) May 24, 2022
Moodle Cross-site Scripting Moderate
CVE-2018-1136 was published for moodle/moodle (Composer) May 13, 2022
Moodle stored-XSS vulnerability in some "social" user profile fields Moderate
CVE-2022-45151 was published for moodle/moodle (Composer) Nov 23, 2022
Moodle reflected cross-site scripting vulnerability in policy tool Moderate
CVE-2022-45150 was published for moodle/moodle (Composer) Nov 23, 2022
Moodle No groups filtering in H5P activity attempts report Moderate
CVE-2022-40316 was published for moodle/moodle (Composer) Oct 1, 2022
Moodle User fullname disclosure on user preferences page Moderate
CVE-2017-2642 was published for moodle/moodle (Composer) May 17, 2022
Moodle Exposure of Sensitive Information to an Unauthorized Actor Moderate
CVE-2017-15110 was published for moodle/moodle (Composer) May 17, 2022
Moodle Privilege escalation in quiz web services Moderate
CVE-2018-1044 was published for moodle/moodle (Composer) May 14, 2022
Moodle Portfolio forum caller class allows a user to download any file Moderate
CVE-2018-1135 was published for moodle/moodle (Composer) May 14, 2022
Moodle Logged in users could view all calendar events Moderate
CVE-2019-3848 was published for moodle/moodle (Composer) May 13, 2022
Moodle Improper Privilege Management Moderate
CVE-2018-1134 was published for moodle/moodle (Composer) May 13, 2022
Moodle Setting for blocked hosts list can be bypassed with multiple A record hostnames Moderate
CVE-2018-1043 was published for moodle/moodle (Composer) May 13, 2022
Moodle Exposure of Sensitive Information to an Unauthorized Actor Moderate
CVE-2018-10890 was published for moodle/moodle (Composer) May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database