Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

395 advisories

Loading
Directory Traversal in sspa High
CVE-2017-16145 was published for sspa (npm) Jul 23, 2018
Directory traversal in pooledwebsocket High
CVE-2017-16107 was published for pooledwebsocket (npm) Jul 24, 2018
closurecompiler downloads Resources over HTTP High
CVE-2016-10582 was published for closurecompiler (npm) Feb 18, 2019
grunt-images downloads Resources over HTTP High
CVE-2016-10645 was published for grunt-images (npm) Aug 15, 2018
frames-compiler downloads Resources over HTTP High
CVE-2016-10649 was published for frames-compiler (npm) Sep 1, 2020
poco downloads Resources over HTTP High
CVE-2016-10659 was published for poco (npm) Feb 18, 2019
windows-build-tools downloads Resources over HTTP High
CVE-2017-16003 was published for windows-build-tools (npm) Nov 9, 2018
herbivore downloads Resources over HTTP High
CVE-2016-10665 was published for herbivore (npm) Feb 18, 2019
Directory Traversal in exxxxxxxxxxx High
CVE-2017-16130 was published for exxxxxxxxxxx (npm) Jul 23, 2018
Directory Traversal in dylmomo High
CVE-2017-16163 was published for dylmomo (npm) Sep 1, 2020
Directory Traversal in wind-mvc High
CVE-2017-16220 was published for wind-mvc (npm) Sep 1, 2020
Directory Traversal in pytservce High
CVE-2017-16195 was published for pytservce (npm) Sep 1, 2020
Directory Traversal in yttivy High
CVE-2017-16219 was published for yttivy (npm) Sep 1, 2020
Directory Traversal in scott-blanch-weather-app High
CVE-2017-16184 was published for scott-blanch-weather-app (npm) Sep 1, 2020
Directory Traversal in f2e-server High
CVE-2017-16038 was published for f2e-server (npm) Jul 24, 2018
Prototype Pollution in hoek High
CVE-2018-3728 was published for hoek (npm) Apr 26, 2018
headless-browser-lite downloads Resources over HTTP High
CVE-2016-10625 was published for headless-browser-lite (npm) Feb 18, 2019
fuseki downloads Resources over HTTP High
CVE-2016-10576 was published for fuseki (npm) Feb 18, 2019
slimerjs-edge downloads Resources over HTTP High
CVE-2016-10644 was published for slimerjs-edge (npm) Aug 15, 2018
jdf-sass downloads Resources over HTTP High
CVE-2016-10595 was published for jdf-sass (npm) Feb 18, 2019
Directory Traversal in enserver High
CVE-2017-16209 was published for enserver (npm) Sep 1, 2020
Directory Traversal in susu-sum High
CVE-2017-16199 was published for susu-sum (npm) Sep 1, 2020
Directory Traversal in fbr-client High
CVE-2017-16217 was published for fbr-client (npm) Jul 23, 2018
windows-selenium-chromedriver downloads Resources over HTTP High
CVE-2016-10687 was published for windows-selenium-chromedriver (npm) Sep 1, 2020
xd-testing Downloads Resources over HTTP High
CVE-2016-10653 was published for xd-testing (npm) Feb 18, 2019
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database