Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,015 advisories

Loading
Malicious Package in angluar-cli Critical
GHSA-8mm3-2mcj-cx6r was published for angluar-cli (npm) Sep 11, 2020
Malicious Package in antd-cloud Critical
GHSA-j4vm-hg8g-g9qv was published for antd-cloud (npm) Sep 3, 2020
Malicious Package in cicada-render Critical
GHSA-6m6m-j2hm-pxrg was published for cicada-render (npm) Sep 3, 2020
Malicious Package in only-test-not-install Critical
GHSA-g9wf-393q-4w38 was published for only-test-not-install (npm) Sep 3, 2020
Malicious Package in hpmm Critical
GHSA-vxfp-qmpq-6826 was published for hpmm (npm) Sep 3, 2020
Malicious Package in commqnder Critical
GHSA-4xgp-xrg3-c73w was published for commqnder (npm) Sep 11, 2020
Malicious Package in shrugging-logging Critical
GHSA-qv78-398w-cxp7 was published for shrugging-logging (npm) Sep 11, 2020
Malicious Package in test-module-a Critical
GHSA-76xq-58hj-vwm2 was published for test-module-a (npm) Sep 11, 2020
Malicious Package in epress Critical
GHSA-vf8q-pw7h-r2x2 was published for epress (npm) Sep 11, 2020
Malicious Package in motiv.scss Critical
GHSA-2vqq-jgxx-fxjc was published for motiv.scss (npm) Sep 11, 2020
Malicious Package in ng-ui-library Critical
GHSA-2xw5-3767-qxvm was published for ng-ui-library (npm) Sep 11, 2020
Malicious Package in rqeuest Critical
GHSA-pj97-j597-ppm7 was published for rqeuest (npm) Sep 2, 2020
Malicious Package in logsymbles Critical
GHSA-vcg5-9xw6-r56c was published for logsymbles (npm) Sep 2, 2020
Malicious Package in aasync Critical
GHSA-9mjp-gv34-3jcf was published for aasync (npm) Sep 2, 2020
Malicious Package in requeest Critical
GHSA-8vj3-jgcf-77jv was published for requeest (npm) Sep 2, 2020
Malicious Package in chak Critical
GHSA-9q9m-m2f6-jr5q was published for chak (npm) Sep 2, 2020
Malicious Package in requet Critical
GHSA-h44f-769q-j6px was published for requet (npm) Sep 2, 2020
Malicious Package in bowee Critical
GHSA-wgvj-6v57-wjh3 was published for bowee (npm) Sep 2, 2020
Malicious Package in discord_debug_log Critical
GHSA-5x8q-gj67-rhf2 was published for discord_debug_log (npm) Sep 2, 2020
Command Injection in priest-runner Critical
GHSA-9px9-f7jw-fwhj was published for priest-runner (npm) Sep 3, 2020
Malicious Package in boogeyman Critical
GHSA-9hc2-w9gg-q6jw was published for boogeyman (npm) Sep 1, 2020
Malicious Package in regenraotr Critical
GHSA-5x7p-gm79-383m was published for regenraotr (npm) Sep 1, 2020
Command Injection in pdf-image Critical
CVE-2018-3757 was published for pdf-image (npm) Sep 1, 2020
Command Injection in meta-git Critical
GHSA-qcff-ffx3-m25c was published for meta-git (npm) Sep 4, 2020
Command Injection in traceroute Critical
GHSA-rjvj-673q-4hfw was published for traceroute (npm) Sep 4, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database