Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,825
Erlang
36
GitHub Actions
32
Go
2,417
Maven
5,000+
npm
4,054
NuGet
723
pip
3,845
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

26,469 advisories

Loading
Malicious Package in maybemaliciouspackage Critical
GHSA-m9r7-q9fc-qwx5 was published for maybemaliciouspackage (npm) Sep 3, 2020
Malicious Package in node-buc Critical
GHSA-x3m6-rprw-862w was published for node-buc (npm) Sep 3, 2020
Malicious Package in cal_rd Critical
GHSA-226w-6hhj-69hp was published for cal_rd (npm) Sep 3, 2020
Malicious Package in asycn Critical
GHSA-h26f-j4mv-84g7 was published for asycn (npm) Sep 2, 2020
Malicious Package in aysnc Critical
GHSA-gfjr-xqhm-qvv3 was published for aysnc (npm) Sep 2, 2020
Malicious Package in exprss Critical
GHSA-6qc7-jgq7-34rf was published for exprss (npm) Sep 2, 2020
Malicious Package in calk Critical
GHSA-9mmw-3fmh-96g3 was published for calk (npm) Sep 2, 2020
Malicious Package in requuest Critical
GHSA-frxq-v7fm-m4pv was published for requuest (npm) Sep 2, 2020
Malicious Package in momen Critical
GHSA-h5vm-jhq7-w647 was published for momen (npm) Sep 2, 2020
Malicious Package in asymc Critical
GHSA-x6ch-c6rv-f7wh was published for asymc (npm) Sep 2, 2020
Malicious Package in asyync Critical
GHSA-rm7c-x424-g2mw was published for asyync (npm) Sep 2, 2020
Malicious Package in asnyc Critical
GHSA-v99v-xgjx-7m7g was published for asnyc (npm) Sep 2, 2020
Malicious Package in requestt Critical
GHSA-2563-83p7-f34p was published for requestt (npm) Sep 2, 2020
Malicious Package in reequest Critical
GHSA-rw4r-h883-8pf9 was published for reequest (npm) Sep 2, 2020
Malicious Package in rrequest Critical
GHSA-wc7q-qpm4-8pqv was published for rrequest (npm) Sep 2, 2020
Malicious Package in experss Critical
GHSA-mmph-wp49-r48h was published for experss (npm) Sep 2, 2020
Malicious Package in reqquest Critical
GHSA-4jfq-q299-g4cr was published for reqquest (npm) Sep 2, 2020
Malicious Package in reuest Critical
GHSA-r863-p739-275c was published for reuest (npm) Sep 11, 2020
Malicious Package in my-very-own-package Critical
GHSA-crr2-ph72-c52g was published for my-very-own-package (npm) Sep 3, 2020
Malicious Package in ali-contributor Critical
GHSA-h3m2-h22h-695r was published for ali-contributor (npm) Sep 3, 2020
Malicious Package in appx-compiler Critical
GHSA-8q2c-2396-hf7j was published for appx-compiler (npm) Sep 3, 2020
Malicious Package in hsf-clients Critical
GHSA-g5q2-fcg9-j526 was published for hsf-clients (npm) Sep 3, 2020
Malicious Package in qingting Critical
GHSA-559q-92vx-xvjp was published for qingting (npm) Sep 3, 2020
SQL Injection in Kylin Critical
CVE-2020-13926 was published for org.apache.kylin:kylin-server-base (Maven) Jul 27, 2020
Path Traversal in swagger-injector Critical
GHSA-v4x8-gw49-7hv4 was published for swagger-injector (npm) Sep 3, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database