Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

412 advisories

Loading
Prototype Pollution in get-setter High
GHSA-ch82-gqh6-9xj9 was published for get-setter (npm) Sep 4, 2020
Prototype Pollution in lodash.merge High
GHSA-2m96-9w4j-wgv7 was published for lodash.merge (npm) Sep 3, 2020
Prototype Pollution in smart-extend Moderate
GHSA-f8h3-rqrm-47v9 was published for smart-extend (npm) Sep 2, 2020
Prototype Pollution in @hapi/hoek Low
GHSA-22h7-7wwg-qmgg was published for @hapi/hoek (npm) Sep 4, 2020
Prototype Pollution in subtext High
GHSA-g64q-3vg8-8f93 was published for subtext (npm) Sep 3, 2020
Prototype Pollution in klona High
GHSA-4r97-78gf-q24v was published for klona (npm) Sep 4, 2020
Sandbox Breakout / Prototype Pollution in notevil Moderate
GHSA-9gxr-rhx6-4jgv was published for notevil (npm) Sep 4, 2020
Prototype Pollution in sahmat High
GHSA-83pq-466j-fc6j was published for sahmat (npm) Sep 4, 2020
Prototype Pollution in lodash.defaultsdeep High
GHSA-h5mp-5q4p-ggf5 was published for lodash.defaultsdeep (npm) Sep 3, 2020
Prototype Pollution in merge-objects Low
GHSA-992f-wf4w-x36v was published for merge-objects (npm) Sep 1, 2020
Prototype Pollution in async merge-object Critical
CVE-2018-3753 was published for merge-object (npm) Sep 18, 2018
Prototype Pollution in @apollo/gateway High
GHSA-74cr-77xc-8g6r was published for @apollo/gateway (npm) Jun 13, 2019
ProTip! Advisories are also available from the GraphQL API