Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,494
Maven
5,000+
npm
4,129
NuGet
735
pip
3,944
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

460 advisories

Loading
Prototype Pollution in confucious Critical
CVE-2020-7714 was published for confucious (npm) May 6, 2021
Prototype Pollution in deeps Critical
CVE-2020-7716 was published for deeps (npm) May 6, 2021
Prototype Pollution in swiper Critical
CVE-2021-23370 was published for swiper (npm) May 10, 2021
Prototype pollution in controlled-merge High
CVE-2020-28268 was published for controlled-merge (npm) May 18, 2021
Prototype Pollution in nodee-utils Critical
CVE-2020-7722 was published for nodee-utils (npm) May 6, 2021
Prototype Pollution in deep-get-set High
CVE-2020-7715 was published for deep-get-set (npm) May 6, 2021
Prototype Pollution in safe-object2 Critical
CVE-2020-7726 was published for safe-object2 (npm) May 6, 2021
Prototype Pollution in jquery-bbq High
CVE-2021-20086 was published for jquery-bbq (npm) May 24, 2021
Prototype pollution in safe-flat Critical
CVE-2021-25927 was published for safe-flat (npm) Jun 21, 2021
Prototype Pollution in deep-override Critical
CVE-2021-25941 was published for deep-override (npm) May 17, 2021
Prototype pollution in nconf-toml Critical
CVE-2021-25946 was published for nconf-toml (npm) Jun 7, 2021
Prototype Pollution in think-helper High
CVE-2021-32736 was published for think-helper (npm) Jul 1, 2021
yoshino-s
Prototype Pollution in GraphHopper Moderate
CVE-2021-23408 was published for com.graphhopper:graphhopper-web-bundle (Maven) Aug 2, 2021
Prototype pollution in safe-obj Critical
CVE-2021-25928 was published for safe-obj (npm) Jun 21, 2021
Prototype Pollution in putil-merge Critical
CVE-2021-25953 was published for putil-merge (npm) Dec 10, 2021
Prototype Pollution in mixme Critical
CVE-2021-28860 was published for mixme (npm) Feb 10, 2022
Prototype Pollution in deepmergefn Moderate
CVE-2021-23417 was published for deepmergefn (npm) Aug 10, 2021
Prototype Pollution in mootools Moderate
CVE-2021-23432 was published for mootools (npm) Sep 2, 2021
Prototype Pollution in jointjs Moderate
CVE-2021-23444 was published for jointjs (npm) Sep 22, 2021
Prototype pollution vulnerability in 'patchmerge' Critical
CVE-2021-25916 was published for patchmerge (npm) Oct 13, 2021
Prototype pollution in aurelia-path Critical
CVE-2021-41097 was published for aurelia-path (npm) Sep 27, 2021
msrkp
Prototype Pollution in json-ptr Moderate
CVE-2021-23509 was published for json-ptr (npm) Nov 8, 2021
Prototype pollution in object-hierarchy-access Critical
CVE-2020-28270 was published for object-hierarchy-access (npm) Oct 12, 2021
Prototype Pollution in vm2 Critical
CVE-2021-23449 was published for vm2 (npm) Oct 19, 2021
Prototype Pollution in Proto High
CVE-2021-23426 was published for Proto (npm) Sep 2, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database