Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,121
NuGet
735
pip
3,942
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,015 advisories

Loading
Malicious Package in j3-sha3 Critical
GHSA-p3jx-g34v-q56j was published for j3-sha3 (npm) Sep 3, 2020
Malicious Package in jq-sha3 Critical
GHSA-x8m7-cv39-xmg9 was published for jq-sha3 (npm) Sep 3, 2020
Malicious Package in buffep-xor Critical
GHSA-73wv-v82c-xmqv was published for buffep-xor (npm) Sep 3, 2020
Malicious Package in buffes-xor Critical
GHSA-28f4-mjfq-qrvf was published for buffes-xor (npm) Sep 3, 2020
Malicious Package in buffer-xob Critical
GHSA-gpg2-7r7j-4pm9 was published for buffer-xob (npm) Sep 3, 2020
Malicious Package in bwffer-xor Critical
GHSA-7qg7-6g3g-8vxg was published for bwffer-xor (npm) Sep 3, 2020
Malicious Package in sj-tw-test-security Critical
GHSA-rcv7-4w2m-gj9v was published for sj-tw-test-security (npm) Sep 3, 2020
Sandbox Breakout / Arbitrary Code Execution in sandbox Critical
GHSA-gc25-3vc5-2jf9 was published for sandbox (npm) Sep 4, 2020
Sandbox Breakout / Arbitrary Code Execution in veval Critical
GHSA-54qm-37qr-w5wq was published for veval (npm) Sep 4, 2020
Sandbox Breakout / Arbitrary Code Execution in lighter-vm Critical
GHSA-c3hq-7mxh-mqxf was published for lighter-vm (npm) Sep 4, 2020
Malicious Package in malicious-npm-package Critical
GHSA-49c6-3wr4-8jr4 was published for malicious-npm-package (npm) Sep 4, 2020
Malicious Package in bictoin-ops Critical
GHSA-xrrg-wfwc-c7r3 was published for bictoin-ops (npm) Sep 4, 2020
Malicious Package in bitconid-rpc Critical
GHSA-9298-m7jf-55h2 was published for bitconid-rpc (npm) Sep 4, 2020
Malicious Package in bictoinjs-lib Critical
GHSA-hwh3-fhf6-73x9 was published for bictoinjs-lib (npm) Sep 4, 2020
Malicious Package in coinstrig Critical
GHSA-4m3j-h8f2-4xh4 was published for coinstrig (npm) Sep 3, 2020
Malicious Package in bitconi-ops Critical
GHSA-w9hw-v97w-g5f5 was published for bitconi-ops (npm) Sep 4, 2020
Arbitrary File Write in iobroker.admin Critical
CVE-2019-10765 was published for iobroker.admin (npm) Sep 4, 2020
Malicious Package in bitcion-ops Critical
GHSA-85q4-v37c-wfpc was published for bitcion-ops (npm) Sep 4, 2020
Malicious Package in bitcoisnj-lib Critical
GHSA-629c-j867-3v45 was published for bitcoisnj-lib (npm) Sep 4, 2020
Malicious Package in bs58chek Critical
GHSA-3cpj-mj3q-82wr was published for bs58chek (npm) Sep 4, 2020
Malicious Package in awesome_react_utility Critical
GHSA-m25q-fwg4-9v2p was published for awesome_react_utility (npm) Sep 1, 2020
Malicious Package in json-serializer Critical
GHSA-7xfq-xh6v-4mrm was published for json-serializer (npm) Sep 1, 2020
Malicious Package in dynamo-schema Critical
GHSA-vp8g-53fw-r9f2 was published for dynamo-schema (npm) Sep 1, 2020
Malicious Package in singale Critical
GHSA-crfh-jmv2-2f9v was published for singale (npm) Sep 3, 2020
Malicious Package in degbu Critical
GHSA-xr3g-4gg5-w3wq was published for degbu (npm) Sep 3, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database