Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,714
NuGet
661
pip
3,386
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

333 advisories

Loading
Malicious Package in bufder-xor Critical
GHSA-w9q5-mvc6-5cw3 was published for bufder-xor (npm) Sep 3, 2020
Malicious Package in buffar-xor Critical
GHSA-f64g-whxf-w8f2 was published for buffar-xor (npm) Sep 3, 2020
Malicious Package in budfer-xor Critical
GHSA-6584-gfwm-3vc3 was published for budfer-xor (npm) Sep 3, 2020
Malicious Package in bufber-xor Critical
GHSA-p9g3-vpvp-hcj5 was published for bufber-xor (npm) Sep 3, 2020
Malicious Package in bubfer-xor Critical
GHSA-vm67-mh96-95mq was published for bubfer-xor (npm) Sep 3, 2020
Malicious Package in btffer-xor Critical
GHSA-8hrq-9wm7-v3jw was published for btffer-xor (npm) Sep 3, 2020
Malicious Package in bqffer-xor Critical
GHSA-pxqp-mv67-g528 was published for bqffer-xor (npm) Sep 3, 2020
Malicious Package in beffer-xor Critical
GHSA-7cvf-p83w-48q6 was published for beffer-xor (npm) Sep 3, 2020
mprpic
Malicious Package in b5ffer-xor Critical
GHSA-jvfv-jhw9-jmpp was published for b5ffer-xor (npm) Sep 3, 2020
Malicious Package in uglyfi.js Critical
GHSA-8jf2-cq6v-w234 was published for uglyfi.js (npm) Sep 3, 2020
Malicious Package in 8.9.4 Critical
GHSA-725f-3pw7-rq6x was published for 8.9.4 (npm) Sep 3, 2020
Malicious Package in ember_cli_babe Critical
GHSA-vm7j-4rj6-mw2p was published for ember_cli_babe (npm) Sep 3, 2020
Malicious Package in harmlesspackage Critical
GHSA-8hmr-w35f-3qgj was published for harmlesspackage (npm) Sep 3, 2020
Malicious Package in yeoman-genrator Critical
GHSA-f7g4-fm4c-54m9 was published for yeoman-genrator (npm) Sep 3, 2020
Malicious Package in require-port Critical
GHSA-rrvm-gqq8-q2wx was published for require-port (npm) Sep 3, 2020
Malicious Package in pizza-pasta Critical
GHSA-wxrm-2h86-v95f was published for pizza-pasta (npm) Sep 3, 2020
Malicious Package in log-symboles Critical
GHSA-h232-fpqx-mqgr was published for log-symboles (npm) Sep 3, 2020
Malicious Package in comander Critical
GHSA-4xg9-g7qj-jhg4 was published for comander (npm) Sep 3, 2020
Malicious Package in bmap Critical
GHSA-p59g-6cqr-m73w was published for bmap (npm) Sep 3, 2020
Malicious Package in discord.js-user Critical
GHSA-69r6-7h4f-9p7q was published for discord.js-user (npm) Sep 3, 2020
Malicious Package in evil-package Critical
GHSA-p62r-jf56-h429 was published for evil-package (npm) Sep 3, 2020
Malicious Package in sparkies Critical
GHSA-c4fm-46gm-4469 was published for sparkies (npm) Sep 3, 2020
Malicious Package in serilize Critical
GHSA-fw76-p9p2-6pvf was published for serilize (npm) Sep 3, 2020
Malicious Package in serializes Critical
GHSA-j899-348x-h3rq was published for serializes (npm) Sep 3, 2020
Malicious Package in node-spdy Critical
GHSA-wfjh-3hq2-r276 was published for node-spdy (npm) Sep 3, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database