Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,766
Maven
5,000+
npm
4,371
NuGet
767
pip
4,144
Pub
12
RubyGems
962
Rust
1,070
Swift
45
Unreviewed advisories
All unreviewed
5,000+

25,113 advisories

Loading
OpenSearch has time discrepancy in authentication responses Moderate
CVE-2023-25806 was published for org.opensearch.plugin:opensearch-security (Maven) Mar 7, 2023
SQL Injection in Funadmin Critical
CVE-2023-24781 was published for funadmin/funadmin (Composer) Mar 7, 2023
Withdrawn Advisory: Pimcore vulnerable to Cross-site Scripting Moderate
CVE-2023-1247 was published for pimcore/pimcore (Composer) Mar 7, 2023 withdrawn
valantic-cx-alps
Credited to valantic-cx-alps
Answer vulnerable to Cross-site Scripting Moderate
CVE-2023-1238 was published for github.com/answerdev/answer (Go) Mar 7, 2023
Answer vulnerable to Cross-site Scripting Moderate
CVE-2023-1237 was published for github.com/answerdev/answer (Go) Mar 7, 2023
Answer vulnerable to Cross-site Scripting Moderate
CVE-2023-1242 was published for github.com/answerdev/answer (Go) Mar 7, 2023
Answer vulnerable to Cross-site Scripting Moderate
CVE-2023-1243 was published for github.com/answerdev/answer (Go) Mar 7, 2023
Answer vulnerable to Cross-site Scripting Moderate
CVE-2023-1240 was published for github.com/answerdev/answer (Go) Mar 7, 2023
Answer vulnerable to Cross-site Scripting Moderate
CVE-2023-1241 was published for github.com/answerdev/answer (Go) Mar 7, 2023
Answer vulnerable to Cross-site Scripting Moderate
CVE-2023-1239 was published for github.com/answerdev/answer (Go) Mar 7, 2023
Answer vulnerable to Cross-site Scripting Moderate
CVE-2023-1244 was published for github.com/answerdev/answer (Go) Mar 7, 2023
Answer vulnerable to Cross-site Scripting Moderate
CVE-2023-1245 was published for github.com/answerdev/answer (Go) Mar 7, 2023
Moodle Cross-site Scripting vulnerability Moderate
CVE-2021-36399 was published for moodle/moodle (Composer) Mar 7, 2023
Moodle Cross-site Scripting vulnerability Moderate
CVE-2021-36398 was published for moodle/moodle (Composer) Mar 7, 2023
Moodle has Incorrect Default Permissions Moderate
CVE-2021-36397 was published for moodle/moodle (Composer) Mar 7, 2023
openstack-neutron uncontrolled resource consumption flaw Moderate
CVE-2022-3277 was published for neutron (pip) Mar 7, 2023
Moodle vulnerable to Stored Cross-site Scripting Moderate
CVE-2021-36401 was published for moodle/moodle (Composer) Mar 7, 2023
Moodle has a Hidden Functionality vulnerability Moderate
CVE-2021-36403 was published for moodle/moodle (Composer) Mar 7, 2023
Moodle Improper Input Validation vulnerability Moderate
CVE-2021-36402 was published for moodle/moodle (Composer) Mar 7, 2023
Moodle has Incorrect Default Permissions Moderate
CVE-2021-36400 was published for moodle/moodle (Composer) Mar 7, 2023
Insufficient Session Expiration in pretix High
CVE-2023-27891 was published for pretix (pip) Mar 7, 2023
OpenStack Glance Inclusion of Functionality from Untrusted Control Sphere vulnerability Low
CVE-2022-4134 was published for glance (pip) Mar 7, 2023
Remote code execution in Funadmin Critical
CVE-2023-24776 was published for funadmin/funadmin (Composer) Mar 6, 2023
Moodle vulnerable to Server-Side Request Forgery High
CVE-2021-36396 was published for moodle/moodle (Composer) Mar 6, 2023
Moodle Session Fixation vulnerability Critical
CVE-2021-36394 was published for moodle/moodle (Composer) Mar 6, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database