Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

382 advisories

Loading
Malicious Package in alipayjsapi Critical
GHSA-rjhc-w3fj-j6x9 was published for alipayjsapi (npm) Sep 3, 2020
Malicious Package in alico Critical
GHSA-jfx5-7mr2-g8hg was published for alico (npm) Sep 3, 2020
Malicious Package in cage-js Critical
GHSA-jf8x-wg7f-p3w8 was published for cage-js (npm) Sep 3, 2020
Malicious Package in nodes.js Critical
GHSA-38vq-cjh5-vw7x was published for nodes.js (npm) Sep 3, 2020
Malicious Package in deasyncp Critical
GHSA-qfc9-x7gv-27jr was published for deasyncp (npm) Sep 3, 2020
Malicious Package in comander Critical
GHSA-4xg9-g7qj-jhg4 was published for comander (npm) Sep 3, 2020
Malicious Package in btffer-xor Critical
GHSA-8hrq-9wm7-v3jw was published for btffer-xor (npm) Sep 3, 2020
Malicious Package in file-logging Critical
GHSA-wwwg-6r7f-9c9h was published for file-logging (npm) Sep 3, 2020
Malicious Package in mysql-koa Critical
GHSA-x45v-pvpg-hcrh was published for mysql-koa (npm) Sep 3, 2020
Malicious Package in 8.9.4 Critical
GHSA-725f-3pw7-rq6x was published for 8.9.4 (npm) Sep 3, 2020
Malicious Package in buffer-xob Critical
GHSA-gpg2-7r7j-4pm9 was published for buffer-xob (npm) Sep 3, 2020
Malicious Package in buffes-xor Critical
GHSA-28f4-mjfq-qrvf was published for buffes-xor (npm) Sep 3, 2020
Malicious Package in buvfer-xor Critical
GHSA-wjpj-gmc3-5w56 was published for buvfer-xor (npm) Sep 3, 2020
Malicious Package in bwffer-xor Critical
GHSA-7qg7-6g3g-8vxg was published for bwffer-xor (npm) Sep 3, 2020
Malicious Package in sj-tw-test-security Critical
GHSA-rcv7-4w2m-gj9v was published for sj-tw-test-security (npm) Sep 3, 2020
Malicious Package in arsenic-tabasco-cyborg-peanut-butter Critical
GHSA-r742-7j4h-hjr8 was published for arsenic-tabasco-cyborg-peanut-butter (npm) Sep 3, 2020
Malicious Package in jq-sha3 Critical
GHSA-x8m7-cv39-xmg9 was published for jq-sha3 (npm) Sep 3, 2020
Malicious Package in buffmr-xor Critical
GHSA-wv39-cgmm-cq29 was published for buffmr-xor (npm) Sep 3, 2020
Malicious Package in j3-sha3 Critical
GHSA-p3jx-g34v-q56j was published for j3-sha3 (npm) Sep 3, 2020
Malicious Package in buffep-xor Critical
GHSA-73wv-v82c-xmqv was published for buffep-xor (npm) Sep 3, 2020
Malicious Package in bs58chek Critical
GHSA-3cpj-mj3q-82wr was published for bs58chek (npm) Sep 4, 2020
Malicious Package in coinstrig Critical
GHSA-4m3j-h8f2-4xh4 was published for coinstrig (npm) Sep 3, 2020
Malicious Package in bictoin-ops Critical
GHSA-xrrg-wfwc-c7r3 was published for bictoin-ops (npm) Sep 4, 2020
Malicious Package in malicious-npm-package Critical
GHSA-49c6-3wr4-8jr4 was published for malicious-npm-package (npm) Sep 4, 2020
Malicious Package in bitcoisnj-lib Critical
GHSA-629c-j867-3v45 was published for bitcoisnj-lib (npm) Sep 4, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database