Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,809
Erlang
36
GitHub Actions
31
Go
2,393
Maven
5,000+
npm
4,026
NuGet
720
pip
3,818
Pub
12
RubyGems
932
Rust
988
Swift
38
Unreviewed advisories
All unreviewed
5,000+

387 advisories

Loading
Malicious Package in m-backdoor Critical
GHSA-vv52-3mrp-455m was published for m-backdoor (npm) Sep 3, 2020
Malicious Package in maleficent Critical
GHSA-cr5w-6rv4-r2qg was published for maleficent (npm) Sep 3, 2020
Malicious Package in vue-backbone Critical
GHSA-5635-9mvj-r6hp was published for vue-backbone (npm) Sep 3, 2020
Malicious Package in font-scrubber Critical
GHSA-65j7-66p7-9xgf was published for font-scrubber (npm) Sep 2, 2020
Malicious Package in rimrafall Critical
GHSA-8hq2-fcqm-39hq was published for rimrafall (npm) Sep 2, 2020
Malicious Package in yeoman-genrator Critical
GHSA-fm7r-2pr7-rw2p was published for yeoman-genrator (npm) Sep 2, 2020
Malicious Package in uglyfi-js Critical
GHSA-9xww-fwh9-95c5 was published for uglyfi-js (npm) Sep 2, 2020
Malicious Package in tensorplow Critical
GHSA-m2fp-c79h-rr79 was published for tensorplow (npm) Sep 2, 2020
Malicious Package in require-ports Critical
GHSA-qj3g-wfr7-3cv7 was published for require-ports (npm) Sep 2, 2020
Malicious Package in logsymbles Critical
GHSA-vcg5-9xw6-r56c was published for logsymbles (npm) Sep 2, 2020
Malicious Package in jquerz Critical
GHSA-c6f3-3c98-2j2f was published for jquerz (npm) Sep 2, 2020
Malicious Package in jqeury Critical
GHSA-4964-cjrr-jg97 was published for jqeury (npm) Sep 2, 2020
Malicious Package in hulp Critical
GHSA-fqw7-8v6m-2f86 was published for hulp (npm) Sep 2, 2020
Malicious Package in froever Critical
GHSA-2r8f-2665-3gxq was published for froever (npm) Sep 2, 2020
Malicious Package in colour-string Critical
GHSA-8mmf-qp7j-2w24 was published for colour-string (npm) Sep 2, 2020
Malicious Package in colro-name Critical
GHSA-jp9g-5x75-ccp8 was published for colro-name (npm) Sep 2, 2020
Malicious Package in browserift Critical
GHSA-43vf-2x6g-p2m5 was published for browserift (npm) Sep 2, 2020
Malicious Package in bowe Critical
GHSA-xmmp-hrmx-x5g7 was published for bowe (npm) Sep 2, 2020
Malicious Package in whiteproject Critical
GHSA-8j7x-pr59-m5h8 was published for whiteproject (npm) Sep 2, 2020
Malicious Package in bowee Critical
GHSA-wgvj-6v57-wjh3 was published for bowee (npm) Sep 2, 2020
Malicious Package in saync Critical
GHSA-pm9v-325f-5g74 was published for saync (npm) Sep 2, 2020
Malicious Package in reqest Critical
GHSA-hg5q-rj62-c43g was published for reqest (npm) Sep 2, 2020
Malicious Package in destroyer-of-worlds Critical
GHSA-w3f3-4j22-2v3p was published for destroyer-of-worlds (npm) Sep 2, 2020
Malicious Package in donotinstallthis Critical
GHSA-73hr-6785-f5p8 was published for donotinstallthis (npm) Sep 2, 2020
Malicious Package in carloprojectdiscord Critical
GHSA-9rwj-8mh9-4876 was published for carloprojectdiscord (npm) Sep 2, 2020
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database