GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
382 advisories
Filter by severity
Malicious Package in bitcoijns-lib
Critical
GHSA-37vc-gwvp-6cgv
was published
for
bitcoijns-lib
(npm)
Sep 4, 2020
Malicious Package in sj-tw-sec
Critical
GHSA-692h-g37c-qv44
was published
for
sj-tw-sec
(npm)
Sep 3, 2020
Malicious Package in babel-loadre
Critical
GHSA-vvfh-mvjv-w38q
was published
for
babel-loadre
(npm)
Sep 4, 2020
Malicious Package in bitcoin-sweep
Critical
GHSA-8hqw-qp6r-vqcm
was published
for
bitcoin-sweep
(npm)
Sep 4, 2020
Malicious Package in superhappyfuntime
Critical
GHSA-6qgx-f452-7699
was published
for
superhappyfuntime
(npm)
Sep 3, 2020
Malicious Package in buffer-yor
Critical
GHSA-g2c4-4m64-vxm3
was published
for
buffer-yor
(npm)
Sep 3, 2020
Malicious Package in buffez-xor
Critical
GHSA-7frr-c83r-fm22
was published
for
buffez-xor
(npm)
Sep 3, 2020
Malicious Package in jsmsha3
Critical
GHSA-657v-jjf8-83gh
was published
for
jsmsha3
(npm)
Sep 3, 2020
Malicious Package in buffer-zor
Critical
GHSA-f294-27fc-wgj7
was published
for
buffer-zor
(npm)
Sep 3, 2020
Malicious Package in buffermxor
Critical
GHSA-536f-268f-6gxc
was published
for
buffermxor
(npm)
Sep 3, 2020
Malicious Package in jw-sha3
Critical
GHSA-8g3r-968r-c644
was published
for
jw-sha3
(npm)
Sep 3, 2020
Malicious Package in ks-sha3
Critical
GHSA-563h-49v8-g7x4
was published
for
ks-sha3
(npm)
Sep 3, 2020
Malicious Package in bufger-xor
Critical
GHSA-2w8q-69fh-9gq6
was published
for
bufger-xor
(npm)
Sep 3, 2020
Malicious Package in js-shc3
Critical
GHSA-69mf-2cw2-38m8
was published
for
js-shc3
(npm)
Sep 3, 2020
Malicious Package in bugfer-xor
Critical
GHSA-8g64-9cm2-838j
was published
for
bugfer-xor
(npm)
Sep 3, 2020
Malicious Package in bunfer-xor
Critical
GHSA-6f93-xj8r-jp82
was published
for
bunfer-xor
(npm)
Sep 3, 2020
Malicious Package in zs-sha3
Critical
GHSA-7696-qr5q-pg37
was published
for
zs-sha3
(npm)
Sep 3, 2020
Malicious Package in harmlesspackage
Critical
GHSA-8hmr-w35f-3qgj
was published
for
harmlesspackage
(npm)
Sep 3, 2020
Malicious Package in bqffer-xor
Critical
GHSA-pxqp-mv67-g528
was published
for
bqffer-xor
(npm)
Sep 3, 2020
Malicious Package in bufber-xor
Critical
GHSA-p9g3-vpvp-hcj5
was published
for
bufber-xor
(npm)
Sep 3, 2020
Malicious Package in buffer-xkr
Critical
GHSA-rw53-q8x7-ccx8
was published
for
buffer-xkr
(npm)
Sep 3, 2020
Malicious Package in buffer-xoz
Critical
GHSA-j6x7-42x2-hpcf
was published
for
buffer-xoz
(npm)
Sep 3, 2020
Malicious Package in bufder-xor
Critical
GHSA-w9q5-mvc6-5cw3
was published
for
bufder-xor
(npm)
Sep 3, 2020
Malicious Package in buffe2-xor
Critical
GHSA-3f97-rj68-2pjf
was published
for
buffe2-xor
(npm)
Sep 3, 2020
Malicious Package in buffdr-xor
Critical
GHSA-8549-p68h-m9mc
was published
for
buffdr-xor
(npm)
Sep 3, 2020
ProTip!
Advisories are also available from the
GraphQL API