Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

3,707 advisories

Loading
Directory Traversal in serverabc High
CVE-2017-16180 was published for serverabc (npm) Jul 23, 2018
Directory Traversal in serverxxx High
CVE-2017-16182 was published for serverxxx (npm) Jul 23, 2018
Directory Traversal in open-device High
CVE-2017-16187 was published for open-device (npm) Jul 23, 2018
Directory Traversal in reecerver High
CVE-2017-16188 was published for reecerver (npm) Jul 23, 2018
Directory Traversal in sly07 High
CVE-2017-16189 was published for sly07 (npm) Jul 23, 2018
Directory Traversal in getcityapi.yoehoehne High
CVE-2017-16192 was published for getcityapi.yoehoehne (npm) Jul 23, 2018
Directory Traversal in picard High
CVE-2017-16194 was published for picard (npm) Jul 23, 2018
Directory Traversal in quickserver High
CVE-2017-16196 was published for quickserver (npm) Jul 23, 2018
Directory Traversal in jn_jj_server High
CVE-2017-16210 was published for jn_jj_server (npm) Jul 23, 2018
Directory Traversal in ltt High
CVE-2017-16212 was published for ltt (npm) Jul 23, 2018
Directory Traversal in fbr-client High
CVE-2017-16217 was published for fbr-client (npm) Jul 23, 2018
Directory Traversal in dgard8.lab6 High
CVE-2017-16218 was published for dgard8.lab6 (npm) Jul 23, 2018
Directory Traversal in nodeaaaaa High
CVE-2017-16223 was published for nodeaaaaa (npm) Jul 23, 2018
Invalid Curve Attack in node-jose Moderate
CVE-2017-16007 was published for node-jose (npm) Jul 20, 2018
tdunlap607
mime Regular Expression Denial of Service when MIME lookup performed on untrusted user input High
CVE-2017-16138 was published for mime (npm) Jul 20, 2018
rsalvo77 tdunlap607
Denial of Service vulnerability with large JSON payloads in fastify High
CVE-2018-3711 was published for fastify (npm) Jul 18, 2018
RDIL
Path Traversal in public High
CVE-2018-3731 was published for public (npm) Jul 18, 2018
Path Traversal in resolve-path High
CVE-2018-3732 was published for resolve-path (npm) Jul 18, 2018
Path Traversal in crud-file-server High
CVE-2018-3733 was published for crud-file-server (npm) Jul 18, 2018
Path Traversal in stattic High
CVE-2018-3734 was published for stattic (npm) Jul 18, 2018
Open Redirect in hekto Moderate
CVE-2018-3743 was published for hekto (npm) Jul 18, 2018
Cross-site Scripting (XSS) - Stored in crud-file-server Moderate
CVE-2018-3726 was published for crud-file-server (npm) Jul 18, 2018
Information Exposure on Case Insensitive File Systems in serve Moderate
CVE-2018-3809 was published for serve (npm) Jul 18, 2018
Withdrawn Advisory: mariadb was malware High
CVE-2017-16046 was published for mariadb (npm) Jul 18, 2018 withdrawn
Sandbox Breakout in safe-eval Critical
CVE-2017-16088 was published for safe-eval (npm) Jul 18, 2018
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database