GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
395 advisories
Filter by severity
Redwood is vulnerable to account takeover via dbAuth "forgot-password"
High
GHSA-3qmc-2r76-4rqp
was published
for
@redwoodjs/api
(npm)
Nov 10, 2022
Improper handling of multiline messages in node-irc
High
GHSA-52rh-5rpj-c3w6
was published
for
matrix-org-irc
(npm)
May 5, 2022
NoSQL Injection in loopback-connector-mongodb
High
GHSA-m734-r4g6-34f9
was published
for
loopback-connector-mongodb
(npm)
Jun 4, 2019
Downloads Resources over HTTP in rs-brightcove
High
CVE-2016-10676
was published
for
rs-brightcove
(npm)
Feb 18, 2019
Downloads Resources over HTTP in selenium-download
High
CVE-2016-10559
was published
for
selenium-download
(npm)
Feb 18, 2019
Downloads Resources over HTTP in alto-saxophone
High
CVE-2016-10694
was published
for
alto-saxophone
(npm)
Jul 31, 2018
Downloads Resources over HTTP in selenium-standalone-painful
High
CVE-2016-10679
was published
for
selenium-standalone-painful
(npm)
Feb 18, 2019
Downloads Resources over HTTP in cmake
High
CVE-2016-10642
was published
for
cmake
(npm)
Aug 15, 2018
Downloads Resources over HTTP in bkjs-wand
High
CVE-2016-10571
was published
for
bkjs-wand
(npm)
Feb 18, 2019
Downloads Resources over HTTP in grunt-webdriver-qunit
High
CVE-2016-10606
was published
for
grunt-webdriver-qunit
(npm)
Feb 18, 2019
Downloads Resources over HTTP in google-closure-tools-latest
High
CVE-2016-10677
was published
for
google-closure-tools-latest
(npm)
Feb 18, 2019
Downloads Resources over HTTP in selenium-portal
High
CVE-2016-10667
was published
for
selenium-portal
(npm)
Feb 18, 2019
Downloads Resources over HTTP in mystem3
High
CVE-2016-10626
was published
for
mystem3
(npm)
Feb 18, 2019
Downloads Resources over HTTP in scala-bin
High
CVE-2016-10627
was published
for
scala-bin
(npm)
Feb 18, 2019
Downloads Resources over HTTP in ntfserver
High
CVE-2016-10650
was published
for
ntfserver
(npm)
Feb 18, 2019
Downloads Resources over HTTP in massif
High
CVE-2016-10682
was published
for
massif
(npm)
Feb 18, 2019
Downloads Resources over HTTP in webdriver-launcher
High
CVE-2016-10651
was published
for
webdriver-launcher
(npm)
Feb 18, 2019
Downloads Resources over HTTP in haxe3
High
CVE-2016-10688
was published
for
haxe3
(npm)
Aug 17, 2018
Downloads Resources over HTTP in fibjs
High
CVE-2016-10621
was published
for
fibjs
(npm)
Feb 18, 2019
Downloads Resources over HTTP in windows-seleniumjar-mirror
High
CVE-2016-10670
was published
for
windows-seleniumjar-mirror
(npm)
Feb 18, 2019
Downloads Resources over HTTP in baryton-saxophone
High
CVE-2016-10573
was published
for
baryton-saxophone
(npm)
Feb 18, 2019
ProTip!
Advisories are also available from the
GraphQL API