Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,610 advisories

Loading
Directory Traversal in gaoxiaotingtingting High
CVE-2017-16108 was published for gaoxiaotingtingting (npm) Sep 1, 2020
Directory Traversal in wangguojing123 High
CVE-2017-16150 was published for wangguojing123 (npm) Sep 1, 2020
Directory Traversal in zwserver High
CVE-2017-16149 was published for zwserver (npm) Sep 1, 2020
Directory Traversal in serverliujiayi1 High
CVE-2017-16095 was published for serverliujiayi1 (npm) Sep 1, 2020
Directory Traversal in serverhuwenhui High
CVE-2017-16102 was published for serverhuwenhui (npm) Sep 1, 2020
Directory Traversal in serverlyr High
CVE-2017-16089 was published for serverlyr (npm) Sep 1, 2020
Directory Traversal in serverwg High
CVE-2017-16101 was published for serverwg (npm) Sep 1, 2020
Directory Traversal in serverwzl High
CVE-2017-16105 was published for serverwzl (npm) Sep 1, 2020
Directory Traversal in serveryaozeyan High
CVE-2017-16096 was published for serveryaozeyan (npm) Sep 1, 2020
Directory Traversal in serveryztyzt High
CVE-2017-16103 was published for serveryztyzt (npm) Sep 1, 2020
Directory Traversal in fsk-server High
CVE-2017-16090 was published for fsk-server (npm) Sep 1, 2020
Directory Traversal in tiny-http High
CVE-2017-16097 was published for tiny-http (npm) Sep 1, 2020
Directory Traversal in xtalk High
CVE-2017-16091 was published for xtalk (npm) Sep 1, 2020
fury-adapter-swagger allows arbitrary file read from system High
CVE-2016-1000249 was published for fury-adapter-swagger (npm) Sep 1, 2020
Downloads Resources over HTTP in pm2-kafka High
CVE-2016-10693 was published for pm2-kafka (npm) Sep 1, 2020
Downloads Resources over HTTP in npm-test-sqlite3-trunk High
CVE-2016-10695 was published for npm-test-sqlite3-trunk (npm) Sep 1, 2020
Downloads Resources over HTTP in windows-latestchromedriver High
CVE-2016-10696 was published for windows-latestchromedriver (npm) Sep 1, 2020
Downloads Resources over HTTP in roslib-socketio High
CVE-2016-10681 was published for roslib-socketio (npm) Sep 1, 2020
gfe-sass downloads Resources over HTTP High
CVE-2017-16040 was published for gfe-sass (npm) Sep 1, 2020
windows-selenium-chromedriver downloads Resources over HTTP High
CVE-2016-10687 was published for windows-selenium-chromedriver (npm) Sep 1, 2020
Downloads Resources over HTTP in node-air-sdk High
CVE-2016-10647 was published for node-air-sdk (npm) Sep 1, 2020
frames-compiler downloads Resources over HTTP High
CVE-2016-10649 was published for frames-compiler (npm) Sep 1, 2020
Downloads Resources over HTTP in apk-parser3 High
CVE-2016-10574 was published for apk-parser3 (npm) Sep 1, 2020
Downloads Resources over HTTP in apk-parser High
CVE-2016-10564 was published for apk-parser (npm) Sep 1, 2020
Denial of Service in uws High
CVE-2016-10544 was published for uws (npm) Sep 1, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database