GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
382 advisories
Filter by severity
Malicious Package in another-date-picker
Critical
GHSA-2p62-c4rm-mr72
was published
for
another-date-picker
(npm)
Sep 1, 2020
Malicious Package in another-date-range-picker
Critical
GHSA-8rxg-9g6f-vq9p
was published
for
another-date-range-picker
(npm)
Sep 1, 2020
Malicious Package in awesome_react_utility
Critical
GHSA-m25q-fwg4-9v2p
was published
for
awesome_react_utility
(npm)
Sep 1, 2020
Malicious Package in blingjs
Critical
GHSA-hfc6-79wv-5hpw
was published
for
blingjs
(npm)
Sep 1, 2020
Malicious Package in cordova-plugin-china-picker
Critical
GHSA-x9gm-qxhh-rf75
was published
for
cordova-plugin-china-picker
(npm)
Sep 1, 2020
Malicious Package in dynamo-schema
Critical
GHSA-vp8g-53fw-r9f2
was published
for
dynamo-schema
(npm)
Sep 1, 2020
Malicious Package in dossier
Critical
GHSA-c8h6-89q2-mgv8
was published
for
dossier
(npm)
Sep 1, 2020
Malicious Package in freshdom
Critical
GHSA-8qm2-24qc-c4qg
was published
for
freshdom
(npm)
Sep 1, 2020
Malicious Package in json-serializer
Critical
GHSA-7xfq-xh6v-4mrm
was published
for
json-serializer
(npm)
Sep 1, 2020
Malicious Package in nginxbeautifier
Critical
GHSA-28xx-8j99-m32j
was published
for
nginxbeautifier
(npm)
Sep 1, 2020
Malicious Package in getcookies
Critical
GHSA-3cjv-4phw-gvvv
was published
for
getcookies
(npm)
Sep 1, 2020
Malicious Package in nothing-js
Critical
GHSA-353r-3v84-9pjj
was published
for
nothing-js
(npm)
Sep 1, 2020
Malicious Package in ladder-text-js
Critical
GHSA-33gc-f8v9-v8hm
was published
for
ladder-text-js
(npm)
Sep 1, 2020
Malicious Package in eslint-config-airbnb-standard
Critical
GHSA-m852-866j-69j8
was published
for
eslint-config-airbnb-standard
(npm)
Sep 1, 2020
Malicious Package in boogeyman
Critical
GHSA-9hc2-w9gg-q6jw
was published
for
boogeyman
(npm)
Sep 1, 2020
Malicious Package in regenrator
Critical
GHSA-m5p4-7wf9-6w99
was published
for
regenrator
(npm)
Sep 1, 2020
Malicious Package in regenraotr
Critical
GHSA-5x7p-gm79-383m
was published
for
regenraotr
(npm)
Sep 1, 2020
Malicious Package in soket.io
Critical
GHSA-wp2p-q35g-3rjj
was published
for
soket.io
(npm)
Sep 1, 2020
Malicious Package in soket.js
Critical
GHSA-x6gq-467r-hwcc
was published
for
soket.js
(npm)
Sep 1, 2020
Malicious Package in flatmap-stream
Critical
GHSA-9x64-5r7x-2q53
was published
for
flatmap-stream
(npm)
Sep 1, 2020
Entropy Backdoor in text-qrcode
High
GHSA-h5vj-f7r9-w564
was published
for
text-qrcode
(npm)
Sep 1, 2020
ProTip!
Advisories are also available from the
GraphQL API