Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,313
Erlang
31
GitHub Actions
21
Go
2,072
Maven
5,000+
npm
3,744
NuGet
674
pip
3,433
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+

382 advisories

Loading
Malicious Package in pizza-pasta Critical
GHSA-wxrm-2h86-v95f was published for pizza-pasta (npm) Sep 3, 2020
Malicious Package in k0a_multer Critical
GHSA-v95x-h953-x7fg was published for k0a_multer (npm) Sep 3, 2020
Malicious Package in mogodb Critical
GHSA-w3pp-wp5v-fjvp was published for mogodb (npm) Sep 3, 2020
Malicious Package in node-ftp Critical
GHSA-5jgp-pg4f-q8vj was published for node-ftp (npm) Sep 3, 2020
Malicious Package in buffer-xkr Critical
GHSA-rw53-q8x7-ccx8 was published for buffer-xkr (npm) Sep 3, 2020
Malicious Package in buffdr-xor Critical
GHSA-8549-p68h-m9mc was published for buffdr-xor (npm) Sep 3, 2020
Malicious Package in buffer-8or Critical
GHSA-4hm7-73ch-vm59 was published for buffer-8or (npm) Sep 3, 2020
Malicious Package in bqffer-xor Critical
GHSA-pxqp-mv67-g528 was published for bqffer-xor (npm) Sep 3, 2020
Malicious Package in uglyfi.js Critical
GHSA-8jf2-cq6v-w234 was published for uglyfi.js (npm) Sep 3, 2020
Malicious Package in buffer-xoz Critical
GHSA-j6x7-42x2-hpcf was published for buffer-xoz (npm) Sep 3, 2020
Malicious Package in buffev-xor Critical
GHSA-x3w4-mrmv-cw2x was published for buffev-xor (npm) Sep 3, 2020
Malicious Package in bufber-xor Critical
GHSA-p9g3-vpvp-hcj5 was published for bufber-xor (npm) Sep 3, 2020
Malicious Package in bufder-xor Critical
GHSA-w9q5-mvc6-5cw3 was published for bufder-xor (npm) Sep 3, 2020
Malicious Package in harmlesspackage Critical
GHSA-8hmr-w35f-3qgj was published for harmlesspackage (npm) Sep 3, 2020
Malicious Package in buffe2-xor Critical
GHSA-3f97-rj68-2pjf was published for buffe2-xor (npm) Sep 3, 2020
Malicious Package in zs-sha3 Critical
GHSA-7696-qr5q-pg37 was published for zs-sha3 (npm) Sep 3, 2020
Malicious Package in jw-sha3 Critical
GHSA-8g3r-968r-c644 was published for jw-sha3 (npm) Sep 3, 2020
Malicious Package in js-shc3 Critical
GHSA-69mf-2cw2-38m8 was published for js-shc3 (npm) Sep 3, 2020
Malicious Package in buffer-yor Critical
GHSA-g2c4-4m64-vxm3 was published for buffer-yor (npm) Sep 3, 2020
Malicious Package in buffermxor Critical
GHSA-536f-268f-6gxc was published for buffermxor (npm) Sep 3, 2020
Malicious Package in buffez-xor Critical
GHSA-7frr-c83r-fm22 was published for buffez-xor (npm) Sep 3, 2020
Malicious Package in ks-sha3 Critical
GHSA-563h-49v8-g7x4 was published for ks-sha3 (npm) Sep 3, 2020
Malicious Package in bufger-xor Critical
GHSA-2w8q-69fh-9gq6 was published for bufger-xor (npm) Sep 3, 2020
Malicious Package in jsmsha3 Critical
GHSA-657v-jjf8-83gh was published for jsmsha3 (npm) Sep 3, 2020
Malicious Package in buffer-zor Critical
GHSA-f294-27fc-wgj7 was published for buffer-zor (npm) Sep 3, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database