GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,329 advisories
Filter by severity
Typo3 Broken Access Control in Import Module
Moderate
GHSA-f5rr-9r84-wwqf
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Typo3 Arbitrary Code Execution and Cross-Site Scripting in Backend API
Moderate
GHSA-hww5-6x85-mc24
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Typo3 Security Misconfiguration in Frontend Session Handling
Moderate
GHSA-qr5f-6fcv-w69q
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Typo3 Security Misconfiguration in User Session Handling
Moderate
GHSA-g9rv-6g56-65h8
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Typo3 Information Disclosure in Backend User Interface
Moderate
GHSA-q9c4-9v5m-597p
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Typo3 Information Disclosure in User Authentication
Moderate
GHSA-m96r-7vqm-j95g
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Cross-Site Scripting in TYPO3 CMS Backend
Moderate
GHSA-v4qr-8h2v-qpjx
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Cross-Site Scripting in TYPO3 CMS
Moderate
GHSA-5gr6-97fv-52cc
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Insecure Unserialize in TYPO3 Backend
Moderate
GHSA-c7rj-92xr-wprg
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Cache Flooding in TYPO3 Frontend
Moderate
GHSA-pw2q-qwvj-gh43
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Authentication Bypass in TYPO3 Frontend
Moderate
GHSA-mh3r-6cp5-hc2j
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Authentication Bypass in TYPO3 CMS
Moderate
GHSA-6f9m-v7mp-7jjq
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Information Disclosure in TYPO3 CMS
Moderate
GHSA-g46h-v2cc-6c94
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Cross-Site Scripting (XSS) vulnerability in typolinks
Moderate
GHSA-p5c5-gmj4-g48f
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Cross-Site Scripting (XSS) in TYPO3 Backend
Moderate
GHSA-hq37-rfjc-mr8h
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Cross-Site Scripting in third party library mso/idna-convert
Moderate
GHSA-qmwf-j7g7-f5jw
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Information Disclosure in TYPO3 Backend
Moderate
GHSA-vpr3-rc99-2wpr
was published
for
typo3/cms
(Composer)
Jun 5, 2024
SQL Injection in TYPO3 Frontend Login
Moderate
GHSA-j86x-pjmr-9m6w
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Insecure Unserialize in TYPO3 Import/Export
Moderate
GHSA-xvcp-33rc-j8gq
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Cross-Site Scripting in TYPO3 Backend
Moderate
GHSA-86r8-4g3w-7xjp
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Privilege Escalation in TYPO3 CMS
Moderate
GHSA-v5jp-4h2p-j2p4
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Cross-Site Scripting in TYPO3 Backend
Moderate
GHSA-5wx6-xwxf-q8qj
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Authentication Bypass in TYPO3 CMS
Moderate
GHSA-6xh8-8pfv-53vx
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Digital products download without proper payment status check
Moderate
CVE-2024-37296
was published
for
aimeos/ai-client-html
(Composer)
Jun 5, 2024
Vulnerable embedded jQuery Version
Moderate
GHSA-jmh9-6rjq-gjh9
was published
for
pimcore/admin-ui-classic-bundle
(Composer)
Jun 5, 2024
ProTip!
Advisories are also available from the
GraphQL API