Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

382 advisories

Loading
Malicious Package in sparkies Critical
GHSA-c4fm-46gm-4469 was published for sparkies (npm) Sep 3, 2020
Malicious Package in serilize Critical
GHSA-fw76-p9p2-6pvf was published for serilize (npm) Sep 3, 2020
Malicious Package in serializes Critical
GHSA-j899-348x-h3rq was published for serializes (npm) Sep 3, 2020
Malicious Package in node-spdy Critical
GHSA-wfjh-3hq2-r276 was published for node-spdy (npm) Sep 3, 2020
Malicious Package in node-ftp Critical
GHSA-5jgp-pg4f-q8vj was published for node-ftp (npm) Sep 3, 2020
Malicious Package in mysql-koa Critical
GHSA-x45v-pvpg-hcrh was published for mysql-koa (npm) Sep 3, 2020
Malicious Package in mogoose Critical
GHSA-5mm9-55c9-p5r7 was published for mogoose (npm) Sep 3, 2020
Malicious Package in mogodb-core Critical
GHSA-g4m3-rpxr-h7vg was published for mogodb-core (npm) Sep 3, 2020
Malicious Package in mogodb Critical
GHSA-w3pp-wp5v-fjvp was published for mogodb (npm) Sep 3, 2020
Malicious Package in mogobd Critical
GHSA-jchg-g94r-64qg was published for mogobd (npm) Sep 3, 2020
Malicious Package in koa-body-parse Critical
GHSA-wqgq-mfvj-6qxp was published for koa-body-parse (npm) Sep 3, 2020
Malicious Package in k0a_multer Critical
GHSA-v95x-h953-x7fg was published for k0a_multer (npm) Sep 3, 2020
Malicious Package in js-regular Critical
GHSA-qcc9-q247-3m2m was published for js-regular (npm) Sep 3, 2020
Malicious Package in js-base64-int Critical
GHSA-76qf-6mvw-c5hm was published for js-base64-int (npm) Sep 3, 2020
Malicious Package in import-mysql Critical
GHSA-whjr-jj69-7prm was published for import-mysql (npm) Sep 3, 2020
Malicious Package in file-logging Critical
GHSA-wwwg-6r7f-9c9h was published for file-logging (npm) Sep 3, 2020
Malicious Package in bs85 Critical
GHSA-gvm7-8fq3-qjj2 was published for bs85 (npm) Sep 3, 2020
Malicious Package in bs58chekc Critical
GHSA-fwvq-x4j9-hr5f was published for bs58chekc (npm) Sep 3, 2020
Malicious Package in bsae-x Critical
GHSA-mgff-xpg3-3gwc was published for bsae-x (npm) Sep 3, 2020
Malicious Package in body-parse-xml Critical
GHSA-jcmh-9fvm-j39w was published for body-parse-xml (npm) Sep 3, 2020
Malicious Package in cionstring Critical
GHSA-xh8g-j88w-6v59 was published for cionstring (npm) Sep 3, 2020
Malicious Package in coinstirng Critical
GHSA-ff6g-gm92-rf32 was published for coinstirng (npm) Sep 3, 2020
Malicious Package in coinpayment Critical
GHSA-3h99-v4qw-p2h5 was published for coinpayment (npm) Sep 3, 2020
Malicious Package in coinstrng Critical
GHSA-hj5w-xgw9-w4rj was published for coinstrng (npm) Sep 3, 2020
Malicious Package in coinstrig Critical
GHSA-4m3j-h8f2-4xh4 was published for coinstrig (npm) Sep 3, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database