Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,121
NuGet
735
pip
3,942
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,015 advisories

Loading
Insecure Cryptography Algorithm in parsel Critical
GHSA-wqgx-4q47-j2w5 was published for parsel (npm) Sep 4, 2020
Insufficient Entropy in parsel Critical
GHSA-vjvw-wcmw-pr26 was published for parsel (npm) Sep 4, 2020
Malicious Package in impala Critical
GHSA-92px-q4w8-hrr5 was published for impala (npm) Sep 1, 2020
Malicious Package in getcookies Critical
GHSA-3cjv-4phw-gvvv was published for getcookies (npm) Sep 1, 2020
Malicious Package in codify Critical
GHSA-2q6w-rxf3-4wc9 was published for codify (npm) Sep 1, 2020
Malicious Package in nothing-js Critical
GHSA-353r-3v84-9pjj was published for nothing-js (npm) Sep 1, 2020
Malicious Package in hdeky Critical
GHSA-255r-pghp-r5wh was published for hdeky (npm) Sep 3, 2020
Malicious Package in scryptys Critical
GHSA-vrxj-4qhw-5vwq was published for scryptys (npm) Sep 3, 2020
Malicious Package in we3b Critical
GHSA-36r8-9qq7-mh43 was published for we3b (npm) Sep 3, 2020
Malicious Package in awesome_react_utility Critical
GHSA-m25q-fwg4-9v2p was published for awesome_react_utility (npm) Sep 1, 2020
Malicious Package in json-serializer Critical
GHSA-7xfq-xh6v-4mrm was published for json-serializer (npm) Sep 1, 2020
Malicious Package in dynamo-schema Critical
GHSA-vp8g-53fw-r9f2 was published for dynamo-schema (npm) Sep 1, 2020
Malicious Package in degbu Critical
GHSA-xr3g-4gg5-w3wq was published for degbu (npm) Sep 3, 2020
Malicious Package in cionstring Critical
GHSA-xh8g-j88w-6v59 was published for cionstring (npm) Sep 3, 2020
Malicious Package in dhkey Critical
GHSA-qxrj-x7rm-2h49 was published for dhkey (npm) Sep 3, 2020
Malicious Package in singale Critical
GHSA-crfh-jmv2-2f9v was published for singale (npm) Sep 3, 2020
Malicious Package in wbe3 Critical
GHSA-hg7w-2pf7-mxm2 was published for wbe3 (npm) Sep 3, 2020
Malicious Package in commanedr Critical
GHSA-xcgx-27q5-7634 was published for commanedr (npm) Sep 3, 2020
Malicious Package in coinpayment Critical
GHSA-3h99-v4qw-p2h5 was published for coinpayment (npm) Sep 3, 2020
Malicious Package in cxt Critical
GHSA-fpgg-r39h-3x5x was published for cxt (npm) Sep 3, 2020
Malicious Package in bitconi-ops Critical
GHSA-w9hw-v97w-g5f5 was published for bitconi-ops (npm) Sep 4, 2020
Malicious Package in bictoinjs-lib Critical
GHSA-hwh3-fhf6-73x9 was published for bictoinjs-lib (npm) Sep 4, 2020
Malicious Package in coinstrig Critical
GHSA-4m3j-h8f2-4xh4 was published for coinstrig (npm) Sep 3, 2020
Arbitrary File Write in iobroker.admin Critical
CVE-2019-10765 was published for iobroker.admin (npm) Sep 4, 2020
Malicious Package in malicious-npm-package Critical
GHSA-49c6-3wr4-8jr4 was published for malicious-npm-package (npm) Sep 4, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database