GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
412 advisories
Filter by severity
Prototype pollution in controlled-merge
High
CVE-2020-28268
was published
for
controlled-merge
(npm)
May 18, 2021
Improperly Controlled Modification of Dynamically-Determined Object Attributes in casperjs
High
CVE-2020-7679
was published
for
casperjs
(npm)
May 17, 2021
Prototype Pollution in deep-override
Critical
CVE-2021-25941
was published
for
deep-override
(npm)
May 17, 2021
Autobinding vulnerability in MITREid Connect
Critical
CVE-2021-27582
was published
for
org.mitre:openid-connect-parent
(Maven)
May 13, 2021
Prototype Pollution in doc-path
Critical
CVE-2020-7772
was published
for
doc-path
(npm)
May 10, 2021
Prototype pollution in json8-merge-patch
High
CVE-2020-8268
was published
for
json8-merge-patch
(npm)
May 10, 2021
Prototype pollution in grpc and @grpc/grpc-js
High
CVE-2020-7768
was published
for
@grpc/grpc-js
(npm)
May 10, 2021
Arbitrary Code Execution in json-ptr
High
CVE-2020-7766
was published
for
json-ptr
(npm)
May 10, 2021
Prototype pollution in @tsed/core
Moderate
CVE-2020-7748
was published
for
@tsed/core
(npm)
May 10, 2021
Prototype Pollution in simpl-schema
High
CVE-2020-7742
was published
for
simpl-schema
(npm)
May 10, 2021
Prototype pollution in json-pointer
Moderate
CVE-2020-7709
was published
for
json-pointer
(npm)
May 10, 2021
Prototype Pollution in tiny-conf
Critical
CVE-2020-7724
was published
for
tiny-conf
(npm)
May 10, 2021
TypeORM vulnerable to MAID and Prototype Pollution
Critical
CVE-2020-8158
was published
for
typeorm
(npm)
May 7, 2021
Improperly Controlled Modification of Dynamically-Determined Object Attributes in vega-util
Moderate
CVE-2019-10806
was published
for
vega-util
(npm)
May 7, 2021
Improperly Controlled Modification of Dynamically-Determined Object Attributes in utilitify
High
CVE-2019-10808
was published
for
utilitify
(npm)
May 7, 2021
Improperly Controlled Modification of Dynamically-Determined Object Attributes in querymen
Moderate
CVE-2020-7600
was published
for
querymen
(npm)
May 7, 2021
Prototype Pollution in safe-object2
Critical
CVE-2020-7726
was published
for
safe-object2
(npm)
May 6, 2021
Prototype Pollution in worksmith
Critical
CVE-2020-7725
was published
for
worksmith
(npm)
May 6, 2021
Prototype Pollution in nodee-utils
Critical
CVE-2020-7722
was published
for
nodee-utils
(npm)
May 6, 2021
Prototype Pollution in gammautils
Critical
CVE-2020-7718
was published
for
gammautils
(npm)
May 6, 2021
ProTip!
Advisories are also available from the
GraphQL API