Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,680
Maven
5,000+
npm
4,300
NuGet
760
pip
4,078
Pub
12
RubyGems
958
Rust
1,061
Swift
45
Unreviewed advisories
All unreviewed
5,000+

176 advisories

Loading
Moodle Information Disclosure Moderate
CVE-2017-7531 was published for moodle/moodle (Composer) May 13, 2022
Moodle sensitive information disclosure Moderate
CVE-2015-5340 was published for moodle/moodle (Composer) May 13, 2022
decsecre583
Credited to decsecre583
Moodle allows attackers to obtain sensitive course-structure information Moderate
CVE-2015-3180 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Credited to MarkLee131
Moodle allows attackers to obtain sensitive personal-contact and unread-message-count information Moderate
CVE-2015-2266 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Credited to MarkLee131
Moodle allows attackers obtain full-name information Moderate
CVE-2015-3176 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Credited to MarkLee131
Moodle allows attacks to obtain sensitive information Moderate
CVE-2014-7848 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Credited to MarkLee131
Moodle allows attackers to obtain sensitive information Moderate
CVE-2015-0211 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Credited to MarkLee131
Moodle allows attackers to obtain sensitive calendar-event information Moderate
CVE-2015-0215 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Credited to MarkLee131
Moodle exposes hidden grades to students Moderate
CVE-2014-7831 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Credited to MarkLee131
Moodle allows attackers to obtain sensitive information Moderate
CVE-2014-7833 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Credited to MarkLee131
Moodle sensitive information disclosure Moderate
CVE-2016-5014 was published for moodle/moodle (Composer) May 13, 2022
Moodle allows remote attackers to read arbitrary files Moderate
CVE-2014-3542 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Credited to MarkLee131
Moodle sensitive information disclosure Moderate
CVE-2016-0724 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Credited to MarkLee131
Moodle sensitive information disclosure Moderate
CVE-2016-3732 was published for moodle/moodle (Composer) May 13, 2022
Moodle allows attackers to discover student e-mail addresses Moderate
CVE-2016-2151 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Credited to MarkLee131
Moodle allows attackers to discover hidden course names Moderate
CVE-2016-2154 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Credited to MarkLee131
Moodle provides calendar-event data without considering whether an activity is hidden Moderate
CVE-2016-2156 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Credited to MarkLee131
Moodle allows attackers to obtain sensitive category-detail information Moderate
CVE-2016-2158 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Credited to MarkLee131
Sensitive Data Exposure in elFinder Moderate
CVE-2019-5884 was published for studio-42/elfinder (Composer) May 13, 2022
TYPO3 Simple Download-System with Counter and Categories Vulnerable to Information Disclosure Moderate
CVE-2009-4160 was published for jweiland/kk-downloader (Composer) May 2, 2022
TYPO3 Backend Discloses Encryption Key Moderate
CVE-2009-3628 was published for typo3/cms-backend (Composer) May 2, 2022
TYPO3 leaks a hash secret in an error message Moderate
CVE-2009-0815 was published for typo3/cms (Composer) May 2, 2022
Moodle included private user files in course backups Moderate
CVE-2012-1159 was published for moodle/moodle (Composer) Apr 23, 2022
Typo3 Arbitrary Information Disclosure Moderate
CVE-2011-4901 was published for typo3/cms (Composer) Apr 22, 2022
Typo3 Information Disclosure Moderate
CVE-2011-4900 was published for typo3/cms (Composer) Apr 22, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database