Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,247
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

56 advisories

Loading
Cross-Site Scripting in ternary conditional operator Moderate
CVE-2020-15241 was published for typo3/cms (Composer) Oct 8, 2020
billdagou NamelessCoder
Open Redirection in Login Handling Moderate
CVE-2021-21338 was published for typo3/cms (Composer) Mar 23, 2021
einpraegsam derhansen
Open redirect in direct_mail Moderate
CVE-2020-12699 was published for directmailteam/direct-mail (Composer) May 24, 2021
Open Redirect in firefly-iii Moderate
CVE-2021-3851 was published for grumpydictator/firefly-iii (Composer) Oct 21, 2021
showdoc is vulnerable to URL Redirection to Untrusted Site Moderate
CVE-2021-3989 was published for showdoc/showdoc (Composer) Dec 3, 2021
Open Redirect in showdoc Moderate
CVE-2021-4000 was published for showdoc/showdoc (Composer) Dec 16, 2021
Open redirect in shopware Moderate
CVE-2022-21651 was published for shopware/shopware (Composer) Jan 6, 2022
Open Redirect in Grav Moderate
CVE-2020-11529 was published for getgrav/grav (Composer) Jan 7, 2022
Open redirect in microweber Moderate
CVE-2022-0560 was published for microweber/microweber (Composer) Feb 12, 2022
Open redirect in microweber Moderate
CVE-2022-0597 was published for microweber/microweber (Composer) Feb 16, 2022
Open Redirect in AllTube Moderate
CVE-2022-0692 was published for rudloff/alltube (Composer) Feb 23, 2022
hitisec
Open Redirect Moderate
CVE-2021-32645 was published for hyn/multi-tenant (Composer) Mar 18, 2022
JaZo
Open redirect in wwbn/avideo Moderate
CVE-2022-27463 was published for wwbn/avideo (Composer) Apr 6, 2022
TYPO3 Open Redirection vulnerability on the backend Moderate
CVE-2010-3661 was published for typo3/cms-backend (Composer) Apr 21, 2022
Joomla! Open Redirect vulnerability Moderate
CVE-2008-4104 was published for joomla/framework (Composer) May 2, 2022
Moodle Arbitrary Redirect Moderate
CVE-2015-3175 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Moodle Open Redirect Via Error Messages Moderate
CVE-2011-4294 was published for moodle/moodle (Composer) May 13, 2022
Moodle Open Redirect in Calendar Set Page Moderate
CVE-2011-4582 was published for moodle/moodle (Composer) May 13, 2022
Moodle Stored HTML in assignment submission comments allowed links to be opened directly Moderate
CVE-2019-3850 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Symfony Open Redirect Moderate
CVE-2018-19790 was published for symfony/security (Composer) May 14, 2022
Elgg open redirect Moderate
CVE-2019-11016 was published for elgg/elgg (Composer) May 14, 2022
phpMyAdmin Open Redirect Moderate
CVE-2017-1000013 was published for phpmyadmin/phpmyadmin (Composer) May 14, 2022
Symfony Open Redirect Moderate
CVE-2018-11408 was published for symfony/security-bundle (Composer) May 14, 2022
Symfony Open Redirect Moderate
CVE-2017-16652 was published for symfony/security (Composer) May 14, 2022
EC-CUBE Open redirect vulnerability Moderate
CVE-2018-16191 was published for ec-cube/ec-cube (Composer) May 14, 2022
xnuinside
ProTip! Advisories are also available from the GraphQL API