GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License

Language support

About GitHub Advisory Database

1,014 advisories

Critical

CVE-2018-9206 was published for blueimp-file-upload (npm) Oct 22, 2018

Critical

CVE-2013-4660 was published for js-yaml (npm) Oct 24, 2017

Critical

GHSA-wxvm-fh75-mpgr was published for dns-sync (npm) Jul 26, 2018 • withdrawn

Critical

CVE-2016-1000282 was published for Haraka (npm) Feb 12, 2019

Critical

CVE-2016-10525 was published for hapi-auth-jwt2 (npm) Feb 18, 2019

Critical

CVE-2018-13797 was published for macaddress (npm) Sep 6, 2018

Critical

CVE-2018-3739 was published for https-proxy-agent (npm) Jul 27, 2018

Critical

CVE-2018-3752 was published for merge-options (npm) Oct 9, 2018

Critical

CVE-2017-16100 was published for dns-sync (npm) Jul 18, 2018

Critical

CVE-2018-3783 was published for flintcms (npm) Aug 21, 2018

Critical

GHSA-mwp6-j9wf-968c was published for generator-jhipster (npm) Sep 13, 2019 • withdrawn

Critical

CVE-2018-3753 was published for merge-object (npm) Sep 18, 2018

Critical

CVE-2016-10546 was published for pouchdb (npm) Jul 26, 2018

Critical

CVE-2016-10548 was published for reduce-css-calc (npm) Jun 7, 2018

Critical

CVE-2015-9235 was published for jsonwebtoken (npm) Oct 9, 2018

Critical

CVE-2014-3741 was published for printer (npm) Nov 28, 2017

Critical

GHSA-6jg8-7333-554w was published for realms-shim (npm) Oct 4, 2019

Critical

CVE-2019-16762 was published for slpjs (npm) Nov 15, 2019

Critical

GHSA-7cg8-pq9v-x98q was published for realms-shim (npm) Oct 21, 2019

Critical

CVE-2014-7205 was published for bassmaster (npm) Oct 24, 2017

Critical

CVE-2019-16761 was published for slp-validate (npm) Nov 15, 2019

Critical

CVE-2019-10781 was published for schema-inspector (npm) Jun 10, 2020

Critical

CVE-2019-10776 was published for git-diff-apply (npm) Feb 14, 2020

Critical

CVE-2019-10777 was published for aws-lambda (npm) Feb 14, 2020

Critical

CVE-2020-6836 was published for hot-formula-parser (npm) May 6, 2020

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,014 advisories

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,014 advisories

Uh oh!