Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

26,862 advisories

Loading
Malicious Package in buffer-8or Critical
GHSA-4hm7-73ch-vm59 was published for buffer-8or (npm) Sep 3, 2020
Malicious Package in bufber-xor Critical
GHSA-p9g3-vpvp-hcj5 was published for bufber-xor (npm) Sep 3, 2020
Malicious Package in zs-sha3 Critical
GHSA-7696-qr5q-pg37 was published for zs-sha3 (npm) Sep 3, 2020
Malicious Package in jw-sha3 Critical
GHSA-8g3r-968r-c644 was published for jw-sha3 (npm) Sep 3, 2020
Malicious Package in ks-sha3 Critical
GHSA-563h-49v8-g7x4 was published for ks-sha3 (npm) Sep 3, 2020
Malicious Package in buffer-zor Critical
GHSA-f294-27fc-wgj7 was published for buffer-zor (npm) Sep 3, 2020
Malicious Package in jsmsha3 Critical
GHSA-657v-jjf8-83gh was published for jsmsha3 (npm) Sep 3, 2020
Malicious Package in bugfer-xor Critical
GHSA-8g64-9cm2-838j was published for bugfer-xor (npm) Sep 3, 2020
Malicious Package in buffermxor Critical
GHSA-536f-268f-6gxc was published for buffermxor (npm) Sep 3, 2020
Malicious Package in buffez-xor Critical
GHSA-7frr-c83r-fm22 was published for buffez-xor (npm) Sep 3, 2020
Malicious Package in bufger-xor Critical
GHSA-2w8q-69fh-9gq6 was published for bufger-xor (npm) Sep 3, 2020
Malicious Package in js-shc3 Critical
GHSA-69mf-2cw2-38m8 was published for js-shc3 (npm) Sep 3, 2020
Malicious Package in buffer-yor Critical
GHSA-g2c4-4m64-vxm3 was published for buffer-yor (npm) Sep 3, 2020
Malicious Package in bunfer-xor Critical
GHSA-6f93-xj8r-jp82 was published for bunfer-xor (npm) Sep 3, 2020
Malicious Package in babel-laoder Critical
GHSA-qp6m-jqfr-2f7v was published for babel-laoder (npm) Sep 4, 2020
Malicious Package in bitcoimd-rpc Critical
GHSA-rwmv-c7v8-v9vf was published for bitcoimd-rpc (npm) Sep 4, 2020
Malicious Package in bitcoimjs-lib Critical
GHSA-rv6q-p3x7-43fx was published for bitcoimjs-lib (npm) Sep 4, 2020
Malicious Package in bitcoijns-lib Critical
GHSA-37vc-gwvp-6cgv was published for bitcoijns-lib (npm) Sep 4, 2020
Malicious Package in sj-tw-sec Critical
GHSA-692h-g37c-qv44 was published for sj-tw-sec (npm) Sep 3, 2020
Malicious Package in superhappyfuntime Critical
GHSA-6qgx-f452-7699 was published for superhappyfuntime (npm) Sep 3, 2020
Sandbox Breakout / Arbitrary Code Execution in localeval Critical
GHSA-mmqv-m45h-q2hp was published for localeval (npm) Sep 4, 2020
Malicious Package in babel-loadre Critical
GHSA-vvfh-mvjv-w38q was published for babel-loadre (npm) Sep 4, 2020
Malicious Package in bitcoin-sweep Critical
GHSA-8hqw-qp6r-vqcm was published for bitcoin-sweep (npm) Sep 4, 2020
Malicious Package in bitcoin-osp Critical
GHSA-v8g7-9qv2-j865 was published for bitcoin-osp (npm) Sep 4, 2020
Malicious Package in commandre Critical
GHSA-r8hx-3qx6-hxq9 was published for commandre (npm) Sep 3, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database