Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
21
Go
2,003
Maven
5,000+
npm
3,714
NuGet
661
pip
3,387
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

333 advisories

Loading
Malicious Package in conistring Critical
GHSA-cfc5-x58f-869w was published for conistring (npm) Sep 3, 2020
Malicious Package in crpyto-js Critical
GHSA-73c6-vwjh-g3qh was published for crpyto-js (npm) Sep 3, 2020
Malicious Package in axios-http Critical
GHSA-r2rg-683g-ff96 was published for axios-http (npm) Sep 3, 2020
Malicious Package in crytpo-js Critical
GHSA-m4fq-xh7w-jhfm was published for crytpo-js (npm) Sep 3, 2020
Malicious Package in bb-builder Critical
GHSA-vm6v-w6q2-mrrq was published for bb-builder (npm) Sep 3, 2020
Malicious Package in zemen Critical
GHSA-377f-vvrc-9wgg was published for zemen (npm) Sep 3, 2020
Malicious Package in cal_rd Critical
GHSA-226w-6hhj-69hp was published for cal_rd (npm) Sep 3, 2020
Malicious Package in anarchy Critical
GHSA-jjhg-qw5v-r8xx was published for anarchy (npm) Sep 3, 2020
Malicious Package in fast-requests Critical
GHSA-wjf2-7f9g-86f5 was published for fast-requests (npm) Sep 3, 2020
Malicious Package in cage-js Critical
GHSA-jf8x-wg7f-p3w8 was published for cage-js (npm) Sep 3, 2020
Malicious Package in rate-map Critical
GHSA-x48m-gp6r-gp4v was published for rate-map (npm) Sep 3, 2020
Malicious Package in load-from-cwd-or-npm Critical
GHSA-jxf5-7x3j-8j9m was published for load-from-cwd-or-npm (npm) Sep 3, 2020
Malicious Package in nodes.js Critical
GHSA-38vq-cjh5-vw7x was published for nodes.js (npm) Sep 3, 2020
Malicious Package in deasyncp Critical
GHSA-qfc9-x7gv-27jr was published for deasyncp (npm) Sep 3, 2020
Malicious Package in sdfjghlkfjdshlkjdhsfg Critical
GHSA-gcfc-mgg3-8j2c was published for sdfjghlkfjdshlkjdhsfg (npm) Sep 3, 2020
Malicious Package in tiar Critical
GHSA-4hjg-w3ww-38c6 was published for tiar (npm) Sep 3, 2020
Malicious Package in secure_identity_login_module Critical
GHSA-59x8-7wx6-4hj9 was published for secure_identity_login_module (npm) Sep 3, 2020
Malicious Package in river-mock Critical
GHSA-2h3x-95c6-885r was published for river-mock (npm) Sep 3, 2020
Malicious Package in retcodelog Critical
GHSA-j8hw-49gg-vq3w was published for retcodelog (npm) Sep 3, 2020
Malicious Package in qingting Critical
GHSA-559q-92vx-xvjp was published for qingting (npm) Sep 3, 2020
Malicious Package in node-buc Critical
GHSA-x3m6-rprw-862w was published for node-buc (npm) Sep 3, 2020
Malicious Package in midway-dataproxy Critical
GHSA-mq9h-cwc2-6j5r was published for midway-dataproxy (npm) Sep 3, 2020
Malicious Package in midway-xtpl Critical
GHSA-w65v-hx54-xrqx was published for midway-xtpl (npm) Sep 3, 2020
Malicious Package in hsf-clients Critical
GHSA-g5q2-fcg9-j526 was published for hsf-clients (npm) Sep 3, 2020
Malicious Package in luna-mock Critical
GHSA-qm4q-f956-fg64 was published for luna-mock (npm) Sep 3, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database