GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License

Language support

About GitHub Advisory Database

137,129 advisories

Moderate

CVE-2018-1000160 was published for @risingstack/protect (npm) Apr 25, 2018

Moderate

CVE-2018-8023 was published for org.apache.mesos:mesos (Maven) Oct 17, 2018

Moderate

CVE-2018-11762 was published for org.apache.tika:tika-core (Maven) Oct 17, 2018

Moderate

CVE-2019-0224 was published for org.apache.jspwiki:jspwiki-main (Maven) Apr 2, 2019

Moderate

CVE-2018-13796 was published for mailman (pip) Sep 11, 2018

Moderate

CVE-2016-10683 was published for arcanist (npm) Feb 18, 2019

Moderate

GHSA-qc8j-m8j3-rjq6 was published for rails-html-sanitizer (RubyGems) Sep 17, 2018 • withdrawn

Moderate

GHSA-hxf5-mg84-pj4m was published for moment (npm) Jul 31, 2018 • withdrawn

Moderate

CVE-2014-3488 was published for io.netty:netty-handler (Maven) Jun 30, 2020

Moderate

GHSA-m8h6-m9p5-p2f8 was published for activerecord (RubyGems) Aug 13, 2018 • withdrawn

Moderate

GHSA-vxp4-25qp-86qh was published for ember (npm) Oct 24, 2017 • withdrawn

Moderate

CVE-2018-10912 was published for org.keycloak:keycloak-core (Maven) Oct 18, 2018

Moderate

GHSA-pgv6-jrvv-75jp was published for send (npm) Oct 9, 2018 • withdrawn

Moderate

GHSA-jmqm-f2gx-4fjv was published for npm-registry-fetch (npm) Jul 7, 2020

Moderate

GHSA-wwgf-3xp7-cxj4 was published for gos/web-socket-bundle (Composer) Jul 7, 2020

Moderate

CVE-2018-1332 was published for org.apache.storm:storm-core (Maven) Oct 17, 2018

Moderate

CVE-2013-7454 was published for validator (npm) Oct 24, 2017

Moderate

CVE-2019-9844 was published for simple-markdown (npm) Apr 9, 2019

Moderate

CVE-2017-7678 was published for org.apache.spark:spark-core_2.10 (Maven) Nov 9, 2018

Moderate

GHSA-mrhj-2g4v-39qx was published for rails-html-sanitizer (RubyGems) Sep 17, 2018 • withdrawn

Moderate

CVE-2017-1000500 was published for org.keycloak:keycloak-core (Maven) Oct 18, 2018 • withdrawn

Moderate

CVE-2017-15707 was published for org.apache.struts:struts2-rest-plugin (Maven) Oct 16, 2018

Moderate

CVE-2016-1000341 was published for org.bouncycastle:bcprov-jdk14 (Maven) Oct 17, 2018

Moderate

CVE-2016-5395 was published for org.apache.ranger:ranger (Maven) Oct 17, 2018

Moderate

CVE-2019-9142 was published for org.b3log:symphony (Maven) Mar 6, 2019

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

137,129 advisories

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

137,129 advisories

Uh oh!