Security Overview · freeCodeCamp/freeCodeCamp · GitHub

Security

Report a vulnerability

SECURITY.md

Our security policy is available here.

ProfileUI User Document Abuse
GHSA-f69g-q6v2-rhjp published Oct 31, 2023 by raisedadead

Low
Clickjacking with social links - users Profile
GHSA-6c37-r62q-7xf4 published Jul 18, 2023 by raisedadead

Moderate
Mass Assignment of User Model Allows for Acquisition of Unearned Certifications
GHSA-cc3r-grh4-27gj published Apr 14, 2022 by raisedadead

Moderate
[CSRF] Missing validation on API requests
GHSA-qvm6-c326-w8px published Mar 17, 2020 by raisedadead

Low
[XSS] Client application messages parameter
GHSA-6f55-fqxx-v7mw published Mar 17, 2020 by raisedadead

Low

Learn more about advisories related to freeCodeCamp/freeCodeCamp in the GitHub Advisory Database