Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

9 advisories

Loading
Cross-site Scripting (XSS) in Document Types Moderate
CVE-2023-1429 was published for pimcore/pimcore (Composer) Mar 16, 2023
khanhchauminh
Reflected XSS in Application Logger module Moderate
GHSA-2xpm-cmvw-3jcc was published for pimcore/pimcore (Composer) Mar 16, 2023
khanhchauminh
Pimcore has Cross site Scripting vulnerability in Schedule tab of Documents Moderate
CVE-2023-1517 was published for pimcore/pimcore (Composer) Mar 20, 2023
khanhchauminh
Pimcore vulnerable to Cross-site Scripting (XSS) in Redirects Moderate
CVE-2023-1515 was published for pimcore/pimcore (Composer) Mar 20, 2023
khanhchauminh
Cross-site Scripting (XSS) in DataObject Classification Store Moderate
CVE-2023-2343 was published for pimcore/pimcore (Composer) Apr 27, 2023
khanhchauminh
Cross-site Scripting (XSS) in Website Settings name field Moderate
CVE-2023-2342 was published for pimcore/pimcore (Composer) Apr 27, 2023
khanhchauminh
Cross-site Scripting (XSS) in pimcore via DataObject Class date fields Moderate
CVE-2023-2327 was published for pimcore/pimcore (Composer) Apr 27, 2023
khanhchauminh
Cross-site Scripting (XSS) in DataObjects QuantityValue Unit Definition Moderate
CVE-2023-2328 was published for pimcore/pimcore (Composer) Apr 27, 2023
khanhchauminh
Pimcore vulnerable to Business Logic Errors via Customer automation rules Moderate
CVE-2023-32075 was published for pimcore/customer-management-framework-bundle (Composer) May 11, 2023
khanhchauminh
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database