GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
1,466 advisories
Filter by severity
Regular Expression Denial of Service in tough-cookie
High
CVE-2017-15010
was published
for
tough-cookie
(npm)
Jul 24, 2018
Regular Expression Denial of Service in parsejson
High
CVE-2017-16113
was published
for
parsejson
(npm)
Jul 24, 2018
Regular Expression Denial of Service in marked
High
CVE-2017-16114
was published
for
marked
(npm)
Jul 24, 2018
method-override ReDoS when untrusted user input passed into X-HTTP-Method-Override header
High
CVE-2017-16136
was published
for
method-override
(npm)
Jul 24, 2018
Regular Expression Denial of Service in decamelize
High
CVE-2017-16023
was published
for
decamelize
(npm)
Jul 24, 2018
ReDoS via long UserAgent header in useragent
High
CVE-2017-16030
was published
for
useragent
(npm)
Jul 24, 2018
Regular Expression Denial of Service in content
High
CVE-2017-16111
was published
for
content
(npm)
Jul 24, 2018
Regular Expression Denial of Service in no-case
High
CVE-2017-16099
was published
for
no-case
(npm)
Jul 24, 2018
ReDoS via long UserAgent header in ua-parser
High
CVE-2017-16086
was published
for
ua-parser
(npm)
Jul 24, 2018
Directory Traversal in node-simple-router
High
CVE-2017-16083
was published
for
node-simple-router
(npm)
Jul 24, 2018
Directory Traversal in f2e-server
High
CVE-2017-16038
was published
for
f2e-server
(npm)
Jul 24, 2018
Directory Traversal in gomeplus-h5-proxy
High
CVE-2017-16037
was published
for
gomeplus-h5-proxy
(npm)
Jul 24, 2018
Directory Traversal in badjs-sourcemap-server
High
CVE-2017-16036
was published
for
badjs-sourcemap-server
(npm)
Jul 24, 2018
hubl-server downloads resources over HTTP
High
CVE-2017-16035
was published
for
hubl-server
(npm)
Jul 24, 2018
Directory Traversal in tinyserver2
High
CVE-2017-16085
was published
for
tinyserver2
(npm)
Jul 24, 2018
Directory Traversal in list-n-stream
High
CVE-2017-16084
was published
for
list-n-stream
(npm)
Jul 24, 2018
Directory traversal in pooledwebsocket
High
CVE-2017-16107
was published
for
pooledwebsocket
(npm)
Jul 24, 2018
Directory Traversal in citypredict.whauwiller
High
CVE-2017-16104
was published
for
citypredict.whauwiller
(npm)
Jul 24, 2018
ProTip!
Advisories are also available from the
GraphQL API