Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,121
NuGet
735
pip
3,942
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,015 advisories

Loading
Malicious Package in bictoind-rpc Critical
GHSA-jqvv-r4w3-8f7w was published for bictoind-rpc (npm) Sep 4, 2020
Malicious Package in bitcionjslib Critical
GHSA-p4mf-4qvh-w8g5 was published for bitcionjslib (npm) Sep 4, 2020
Malicious Package in bp66 Critical
GHSA-8gc6-65mm-xr6r was published for bp66 (npm) Sep 4, 2020
Malicious Package in baes-x Critical
GHSA-2jm5-2cqf-6vw9 was published for baes-x (npm) Sep 4, 2020
Sandbox Breakout / Arbitrary Code Execution in pitboss-ng Critical
GHSA-3gpc-w23c-w59w was published for pitboss-ng (npm) Sep 4, 2020
Malicious Package in bitcroe-lib Critical
GHSA-4m3p-x2hp-2pgx was published for bitcroe-lib (npm) Sep 4, 2020
Malicious Package in bcion Critical
GHSA-2fwq-wx47-hm6x was published for bcion (npm) Sep 4, 2020
Malicious Package in bitcionjs Critical
GHSA-qmgf-fp85-55gr was published for bitcionjs (npm) Sep 4, 2020
Malicious Package in bitconijs-lib Critical
GHSA-74hh-4rcv-pp27 was published for bitconijs-lib (npm) Sep 4, 2020
Malicious Package in buffer-xop Critical
GHSA-jqjg-v355-hr9q was published for buffer-xop (npm) Sep 3, 2020
Malicious Package in js-qha3 Critical
GHSA-vf5m-q45w-8mh9 was published for js-qha3 (npm) Sep 3, 2020
Malicious Package in js-shi3 Critical
GHSA-g37j-v5gh-g25c was published for js-shi3 (npm) Sep 3, 2020
Malicious Package in js-sha7 Critical
GHSA-hvgc-mggg-pxr2 was published for js-sha7 (npm) Sep 3, 2020
Malicious Package in js-sia3 Critical
GHSA-3mhm-jvqj-fvhg was published for js-sia3 (npm) Sep 3, 2020
Malicious Package in ns-sha3 Critical
GHSA-j67m-jg9p-ppg4 was published for ns-sha3 (npm) Sep 3, 2020
Malicious Package in sj-tw-abc Critical
GHSA-4hfc-fv33-ph9p was published for sj-tw-abc (npm) Sep 3, 2020
Malicious Package in sj-labc Critical
GHSA-4fqg-89cc-5pv5 was published for sj-labc (npm) Sep 4, 2020
Malicious Package in cuffer-xor Critical
GHSA-6xm4-p6r2-mwrc was published for cuffer-xor (npm) Sep 3, 2020
Malicious Package in js-shas Critical
GHSA-5wq6-v5cw-jvfr was published for js-shas (npm) Sep 3, 2020
Malicious Package in js-cha3 Critical
GHSA-7xf9-74cp-8hx3 was published for js-cha3 (npm) Sep 3, 2020
Malicious Package in js-3ha3 Critical
GHSA-52c9-458g-whrf was published for js-3ha3 (npm) Sep 3, 2020
Malicious Package in ruffer-xor Critical
GHSA-2mxc-m4c3-wqhq was published for ruffer-xor (npm) Sep 3, 2020
Malicious Package in js-she3 Critical
GHSA-f8jj-45fj-44r6 was published for js-she3 (npm) Sep 3, 2020
Malicious Package in bubfer-xor Critical
GHSA-vm67-mh96-95mq was published for bubfer-xor (npm) Sep 3, 2020
Malicious Package in buffar-xor Critical
GHSA-f64g-whxf-w8f2 was published for buffar-xor (npm) Sep 3, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database