Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,015 advisories

Loading
Malicious Package in ember_cli_babe Critical
GHSA-vm7j-4rj6-mw2p was published for ember_cli_babe (npm) Sep 3, 2020
Malicious Package in buffeb-xor Critical
GHSA-5ggx-g294-qj3q was published for buffeb-xor (npm) Sep 3, 2020
Cross-Site Scripting in dompurify Critical
GHSA-mjjq-c88q-qhr6 was published for dompurify (npm) Sep 3, 2020
Malicious Package in buffer-xgr Critical
GHSA-mp55-2274-4pj8 was published for buffer-xgr (npm) Sep 3, 2020
Malicious Package in leetlog Critical
GHSA-gfm8-g3vm-53jh was published for leetlog (npm) Sep 3, 2020
Malicious Package in b5ffer-xor Critical
GHSA-jvfv-jhw9-jmpp was published for b5ffer-xor (npm) Sep 3, 2020
Malicious Package in buffer-xnr Critical
GHSA-c4hh-fg8x-6h9p was published for buffer-xnr (npm) Sep 3, 2020
Undefined Behavior in zencashjs Critical
GHSA-xfrc-7mj2-5xh9 was published for zencashjs (npm) Sep 3, 2020
Malicious Package in malicious-do-not-install Critical
GHSA-6879-xr95-5gf4 was published for malicious-do-not-install (npm) Sep 3, 2020
Sandbox Breakout / Arbitrary Code Execution in safer-eval Critical
GHSA-876r-hj45-fw7g was published for safer-eval (npm) Sep 3, 2020
Malicious Package in buffer-por Critical
GHSA-6xg2-cf6h-x4v8 was published for buffer-por (npm) Sep 3, 2020
Malicious Package in bs-sha3 Critical
GHSA-88xx-23mf-rcj2 was published for bs-sha3 (npm) Sep 3, 2020
Malicious Package in buffur-xor Critical
GHSA-p7qp-3fh7-pv4p was published for buffur-xor (npm) Sep 3, 2020
Malicious Package in js-rha3 Critical
GHSA-95cg-3r4g-7w6j was published for js-rha3 (npm) Sep 3, 2020
Malicious Package in fuffer-xor Critical
GHSA-c2g6-57fp-22wp was published for fuffer-xor (npm) Sep 3, 2020
Malicious Package in jc-sha3 Critical
GHSA-gfj6-p24g-6hpm was published for jc-sha3 (npm) Sep 3, 2020
Malicious Package in js-sja3 Critical
GHSA-6343-m2qr-66gf was published for js-sja3 (npm) Sep 3, 2020
Malicious Package in buffgr-xor Critical
GHSA-r9cj-xj33-4q42 was published for buffgr-xor (npm) Sep 3, 2020
Malicious Package in js-shq3 Critical
GHSA-766v-7gjx-55hf was published for js-shq3 (npm) Sep 3, 2020
Malicious Package in buffer-xov Critical
GHSA-3h9m-9g3g-5wqx was published for buffer-xov (npm) Sep 3, 2020
Malicious Package in juffer-xor Critical
GHSA-gqq4-937c-2282 was published for juffer-xor (npm) Sep 3, 2020
Malicious Package in jr-sha3 Critical
GHSA-67mp-pcv9-vvq6 was published for jr-sha3 (npm) Sep 3, 2020
Malicious Package in bufner-xor Critical
GHSA-7xf6-cpxm-5mx9 was published for bufner-xor (npm) Sep 3, 2020
Malicious Package in bufver-xor Critical
GHSA-cr4x-w2v7-4mmf was published for bufver-xor (npm) Sep 3, 2020
Malicious Package in hs-sha3 Critical
GHSA-6mrq-7r7m-hh4p was published for hs-sha3 (npm) Sep 3, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database