GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,355
Composer 4,134
Erlang 30
GitHub Actions 19
Go 1,941
Maven 5,135
npm 3,683
NuGet 650
pip 3,299
Pub 11
RubyGems 878
Rust 830
Swift 35

Unreviewed advisories

All unreviewed 231,554

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

4,135 advisories

Filter by severity

Sort by

Least recently updated

Unsafe deserialization in Yii 2 High

CVE-2020-15148 was published for yiisoft/yii2 (Composer) Sep 15, 2020

Potential XSS injection In PrestaShop contactform High

CVE-2020-15178 was published for prestashop/contactform (Composer) Sep 15, 2020

personnummer/php vulnerable to Improper Input Validation Low

GHSA-2p6g-gjp8-ggg9 was published for personnummer/personnummer (Composer) Sep 9, 2020

Information Disclosure in TYPO3 extension sf_event_mgt Moderate

CVE-2020-25026 was published for derhansen/sf_event_mgt (Composer) Sep 2, 2020

RCE in Symfony High

CVE-2020-15094 was published for symfony/http-kernel (Composer) Sep 2, 2020

DataTable Vulnerable to Cross-Site Scripting High

CVE-2015-6584 was published for datatables (Composer) Aug 31, 2020

Cross Site Scripting and RCE in baserCMS Low

CVE-2020-15159 was published for baserproject/basercms (Composer) Aug 28, 2020

Cross Site Scripting(XSS) Vulnerability in Latest Release 4.3.6 Site basic settings Low

CVE-2020-15155 was published for baserproject/basercms (Composer) Aug 28, 2020

Cross Site Scripting in baserCMS Low

CVE-2020-15154 was published for baserproject/basercms (Composer) Aug 28, 2020

Remote Code Execution in SyliusResourceBundle High

CVE-2020-15143 was published for sylius/resource-bundle (Composer) Aug 19, 2020

Remote Code Execution in SyliusResourceBundle Critical

CVE-2020-15146 was published for sylius/resource-bundle (Composer) Aug 19, 2020

Observable Timing Discrepancy in OpenMage LTS High

CVE-2020-15151 was published for openmage/magento-lts (Composer) Aug 19, 2020

Reset Password / Login vulnerability in Sulu Moderate

CVE-2020-15132 was published for sulu/sulu (Composer) Aug 5, 2020

Reliance on Cookies without validation in OctoberCMS Moderate

CVE-2020-15128 was published for october/rain (Composer) Aug 5, 2020

Stored XSS in October Low

CVE-2020-11083 was published for october/backend (Composer) Aug 5, 2020

Cross-site Scripting vulnerability in Kitodo.Presentation Moderate

CVE-2020-16095 was published for kitodo/presentation (Composer) Jul 31, 2020

Remote code execution in turn extension for TYPO3 High

CVE-2020-15515 was published for marcwillmann/turn (Composer) Jul 29, 2020

Incorrect access control in typo3_forum Moderate

CVE-2020-15513 was published for mittwald/typo3_forum (Composer) Jul 29, 2020

Exposure of Sensitive Information to an Unauthorized Actor in TYPO3 CMS High

CVE-2020-15099 was published for typo3/cms (Composer) Jul 29, 2020

Missing Required Cryptographic Step Leading to Sensitive Information Disclosure in TYPO3 CMS High

CVE-2020-15098 was published for typo3/cms (Composer) Jul 29, 2020

Potential Remote Code Execution in TYPO3 with mediace extension Critical

CVE-2020-15086 was published for friendsoftypo3/mediace (Composer) Jul 29, 2020

Broken access control on files Moderate

CVE-2019-14273 was published for silverstripe/framework (Composer) Jul 15, 2020

Potentially sensitive data exposure in Symfony Web Socket Bundle Moderate

GHSA-wwgf-3xp7-cxj4 was published for gos/web-socket-bundle (Composer) Jul 7, 2020

Cross-site Scripting in October Low

CVE-2020-4061 was published for october/backend (Composer) Jul 2, 2020

Phar unserialization vulnerability in phpMussel High

CVE-2020-4043 was published for Maikuolan/phpMussel (Composer) Jun 10, 2020

Previous 1 2 … 159 160 161 162 163 164 165 166 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,135 advisories