Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,329 advisories

Loading
Typo3 Broken Access Control in Import Module Moderate
GHSA-f5rr-9r84-wwqf was published for typo3/cms (Composer) Jun 5, 2024
Typo3 Arbitrary Code Execution and Cross-Site Scripting in Backend API Moderate
GHSA-hww5-6x85-mc24 was published for typo3/cms (Composer) Jun 5, 2024
Typo3 Security Misconfiguration in Frontend Session Handling Moderate
GHSA-qr5f-6fcv-w69q was published for typo3/cms (Composer) Jun 5, 2024
Typo3 Security Misconfiguration in User Session Handling Moderate
GHSA-g9rv-6g56-65h8 was published for typo3/cms (Composer) Jun 5, 2024
Typo3 Information Disclosure in Backend User Interface Moderate
GHSA-q9c4-9v5m-597p was published for typo3/cms (Composer) Jun 5, 2024
Typo3 Information Disclosure in User Authentication Moderate
GHSA-m96r-7vqm-j95g was published for typo3/cms (Composer) Jun 5, 2024
Cross-Site Scripting in TYPO3 CMS Backend Moderate
GHSA-v4qr-8h2v-qpjx was published for typo3/cms (Composer) Jun 5, 2024
Cross-Site Scripting in TYPO3 CMS Moderate
GHSA-5gr6-97fv-52cc was published for typo3/cms (Composer) Jun 5, 2024
Insecure Unserialize in TYPO3 Backend Moderate
GHSA-c7rj-92xr-wprg was published for typo3/cms (Composer) Jun 5, 2024
Cache Flooding in TYPO3 Frontend Moderate
GHSA-pw2q-qwvj-gh43 was published for typo3/cms (Composer) Jun 5, 2024
Authentication Bypass in TYPO3 Frontend Moderate
GHSA-mh3r-6cp5-hc2j was published for typo3/cms (Composer) Jun 5, 2024
Authentication Bypass in TYPO3 CMS Moderate
GHSA-6f9m-v7mp-7jjq was published for typo3/cms (Composer) Jun 5, 2024
Information Disclosure in TYPO3 CMS Moderate
GHSA-g46h-v2cc-6c94 was published for typo3/cms (Composer) Jun 5, 2024
Cross-Site Scripting (XSS) vulnerability in typolinks Moderate
GHSA-p5c5-gmj4-g48f was published for typo3/cms (Composer) Jun 5, 2024
Cross-Site Scripting (XSS) in TYPO3 Backend Moderate
GHSA-hq37-rfjc-mr8h was published for typo3/cms (Composer) Jun 5, 2024
Cross-Site Scripting in third party library mso/idna-convert Moderate
GHSA-qmwf-j7g7-f5jw was published for typo3/cms (Composer) Jun 5, 2024
Information Disclosure in TYPO3 Backend Moderate
GHSA-vpr3-rc99-2wpr was published for typo3/cms (Composer) Jun 5, 2024
SQL Injection in TYPO3 Frontend Login Moderate
GHSA-j86x-pjmr-9m6w was published for typo3/cms (Composer) Jun 5, 2024
Insecure Unserialize in TYPO3 Import/Export Moderate
GHSA-xvcp-33rc-j8gq was published for typo3/cms (Composer) Jun 5, 2024
Cross-Site Scripting in TYPO3 Backend Moderate
GHSA-86r8-4g3w-7xjp was published for typo3/cms (Composer) Jun 5, 2024
Privilege Escalation in TYPO3 CMS Moderate
GHSA-v5jp-4h2p-j2p4 was published for typo3/cms (Composer) Jun 5, 2024
Cross-Site Scripting in TYPO3 Backend Moderate
GHSA-5wx6-xwxf-q8qj was published for typo3/cms (Composer) Jun 5, 2024
Authentication Bypass in TYPO3 CMS Moderate
GHSA-6xh8-8pfv-53vx was published for typo3/cms (Composer) Jun 5, 2024
Digital products download without proper payment status check Moderate
CVE-2024-37296 was published for aimeos/ai-client-html (Composer) Jun 5, 2024
ssshah2131
Vulnerable embedded jQuery Version Moderate
GHSA-jmh9-6rjq-gjh9 was published for pimcore/admin-ui-classic-bundle (Composer) Jun 5, 2024
hirakch
ProTip! Advisories are also available from the GraphQL API