Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,726
Maven
5,000+
npm
4,331
NuGet
763
pip
4,107
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+

309 advisories

Loading
concrete5 vulnerable to Cross-site Scripting Low
CVE-2015-3989 was published for concrete5/concrete5 (Composer) May 17, 2022
phpMyAdmin cross-site scripting Vulnerability in Table or Column Names Low
CVE-2014-4986 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
phpMyAdmin Cross-site scripting (XSS) vulnerability via pageNumber value Low
CVE-2013-5002 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
Joomla! Cross-site Scripting vulnerability Low
CVE-2013-5583 was published for joomla/joomla-cms (Composer) May 17, 2022
phpMyAdmin cookie-attribute injection Low
CVE-2016-5702 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
typo3/cms-felogin Cross-site Scripting vulnerability Low
CVE-2008-5656 was published for typo3/cms-felogin (Composer) May 17, 2022
TYPO3 Cross-site scripting (XSS) vulnerability in the click enlarge functionality Low
CVE-2010-5097 was published for typo3/cms-frontend (Composer) May 17, 2022
TYPO3 Cross-Site Scripting vulnerability in the Install Tool Low
CVE-2010-5100 was published for typo3/cms-install (Composer) May 17, 2022
TYPO3 Cross-site scripting (XSS) vulnerability in the FORM content object Low
CVE-2010-5098 was published for typo3/cms-frontend (Composer) May 17, 2022
Symphony CMS vulnerable to Cross-site Scripting Low
CVE-2011-4340 was published for symphonycms/symphony-2 (Composer) May 17, 2022
phpMyAdmin Cross-site Scripting vulnerability Low
CVE-2011-4782 was published for phpmyadmin/phpmyadmin (Composer) May 17, 2022
Typo3 Backend XSS Vulnerability Low
CVE-2012-3528 was published for typo3/cms (Composer) May 17, 2022
Typo3 Backend Configuration XSS Vulnerability Low
CVE-2012-3529 was published for typo3/cms (Composer) May 17, 2022
Basic SEO Features (seo_basics) extension TYPO3 vulnerable to Cross-site Scripting Low
CVE-2012-5888 was published for b13/seo_basics (Composer) May 17, 2022
powermail extension for TYPO3 has Cross-site Scripting vulnerability Low
CVE-2012-5889 was published for in2code/powermail (Composer) May 17, 2022
Typo3 Backend API XSS Vulnerability Low
CVE-2012-6147 was published for typo3/cms (Composer) May 17, 2022
Typo3 Function Menu API XSS Vulnerability Low
CVE-2012-6148 was published for typo3/cms (Composer) May 17, 2022
Typo3 Backend History Module Vulnerable to XSS Low
CVE-2012-6145 was published for typo3/cms (Composer) May 17, 2022
Static Methods since 2007 (div2007) extension for TYPO3 vulnerable to Cross-site Scripting Low
CVE-2013-5100 was published for jambagecom/div2007 (Composer) May 17, 2022
Static Info Tables (static_info_tables) extension TYPO3 vulnerable to Cross-site Scripting Low
CVE-2013-5323 was published for sjbr/static-info-tables (Composer) May 17, 2022
TYPO3 Cross-Site Scripting (XSS) vulnerabilities in Content Editing Wizards component Low
CVE-2013-7074 was published for typo3/cms (Composer) May 17, 2022
TYPO3 Cross-site scripting (XSS) vulnerability in the Extbase Framework Low
CVE-2013-7078 was published for typo3/cms-core (Composer) May 17, 2022
Typo3 XSS Vulnerabilities Low
CVE-2014-3943 was published for typo3/cms (Composer) May 14, 2022
TYPO3 cross-site scripting (XSS) Low
CVE-2015-5956 was published for typo3/cms (Composer) May 14, 2022
Symfony Session Fixation Vulnerability Low
CVE-2015-8124 was published for symfony/security (Composer) May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database