Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

5 advisories

Loading
NodeBB vulnerable to account takeover via prototype vulnerability Critical
CVE-2022-46164 was published for nodebb (npm) Dec 5, 2022
stephenbradshaw
Improper Initialization in OpenZeppelin High
CVE-2021-46320 was published for @openzeppelin/contracts (npm) Feb 5, 2022
Resource Exhaustion Denial of Service in http-proxy-agent Moderate
CVE-2019-10196 was published for http-proxy-agent (npm) Jan 6, 2022
OpenZeppelin Contracts initializer reentrancy may lead to double initialization Moderate
CVE-2022-39384 was published for @openzeppelin/contracts (npm) Dec 14, 2021
UUPSUpgradeable vulnerability in @openzeppelin/contracts Critical
CVE-2021-41264 was published for @openzeppelin/contracts (npm) Sep 15, 2021
ProTip! Advisories are also available from the GraphQL API