github.com/goharbor/harbor vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
GHSA-PRH4-VHFH-24MJMediumgithub.com/goharbor/harbor: Harbor: LDAP password and OIDC secret are not redacted in the audit logCVE-2026-4404Criticalgithub.com/goharbor/harbor: Harbor allows the use of the default password for web UI loginCVE-2025-30086Mediumgithub.com/goharbor/harbor: Possible ORM Leak Vulnerability in the HarborCVE-2025-32019Mediumgithub.com/goharbor/harbor: Harbor repository description page has Cross-site Scripting vulnerabilityCVE-2022-31668Highgithub.com/goharbor/harbor: Harbor fails to validate the user permissions when updating p2p preheat policiesCVE-2024-22278Highgithub.com/goharbor/harbor: Harbor fails to validate the user permissions when updating project configurationsCVE-2024-22261Lowgithub.com/goharbor/harbor: SQL Injection in Harbor scan log APICVE-2024-22244Mediumgithub.com/goharbor/harbor: Open Redirect URL in HarborCVE-2023-20902Mediumgithub.com/goharbor/harbor: Harbor timing attack riskCVE-2022-31667Mediumgithub.com/goharbor/harbor: Harbor fails to validate the user permissions when updating a robot accountCVE-2022-31669Mediumgithub.com/goharbor/harbor: Harbor fails to validate the user permissions when updating tag immutability policiesCVE-2022-31666Highgithub.com/goharbor/harbor: Harbor fails to validate the user permissions when viewing Webhook policiesCVE-2022-31670Highgithub.com/goharbor/harbor: Harbor fails to validate the user permissions when updating tag retention policiesCVE-2022-31671Mediumgithub.com/goharbor/harbor: Harbor fails to validate the user permissions when reading job execution logs through the P2P…CVE-2019-16097Mediumgithub.com/goharbor/harbor: Missing Authorization in HarborCVE-2020-29662Mediumgithub.com/goharbor/harbor: "catalog's registry v2 api exposed on unauthenticated path in Harbor"CVE-2019-19030Mediumgithub.com/goharbor/harbor: Unauthenticated users can exploit an enumeration vulnerability in Harbor (CVE-2019-19030)CVE-2020-13788Lowgithub.com/goharbor/harbor: Harbor is vulnerable to a limited Server-Side Request Forgery (SSRF) (CVE-2020-13788)CVE-2020-13794Mediumgithub.com/goharbor/harbor: Authenticated users can exploit an enumeration vulnerability in HarborCVE-2019-19025Highgithub.com/goharbor/harbor: Cross-site Request Forgery (CSRF) in Cloud Native Computing Foundation HarborCVE-2019-19026Mediumgithub.com/goharbor/harbor: SQL Injection in Cloud Native Computing Foundation HarborCVE-2019-19029Highgithub.com/goharbor/harbor: SQL Injection in Cloud Native Computing Foundation HarborCVE-2019-19023Mediumgithub.com/goharbor/harbor: Privilege Escalation in Cloud Native Computing Foundation Harbor

Stop the waste.
Protect your environment with Kodem.