GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License

Language support

About GitHub Advisory Database

583 advisories

Moderate

GHSA-mxjr-xmcg-fg7w was published for mobile-icon-resizer (npm) Jun 27, 2019

High

GHSA-pm52-wwrw-c282 was published for wiki-plugin-datalog (npm) Jun 13, 2019

High

GHSA-j9f8-8h89-j69x was published for node-os-utils (npm) Jun 11, 2019

Critical

CVE-2020-6836 was published for hot-formula-parser (npm) May 6, 2020

Low

CVE-2020-5259 was published for dojox (npm) Mar 10, 2020

Critical

CVE-2014-7205 was published for bassmaster (npm) Oct 24, 2017

High

CVE-2014-7192 was published for syntax-error (npm) Oct 24, 2017

Critical

CVE-2016-10548 was published for reduce-css-calc (npm) Jun 7, 2018

Critical

CVE-2016-10546 was published for pouchdb (npm) Jul 26, 2018

Critical

CVE-2017-16100 was published for dns-sync (npm) Jul 18, 2018

High

GHSA-x9hc-rw35-f44h was published for static-eval (npm) Sep 2, 2020

Critical

CVE-2017-1001002 was published for mathjs (npm) Dec 18, 2017

High

CVE-2017-1001004 was published for typed-function (npm) Sep 2, 2020

Critical

GHSA-4wv4-mgfq-598v was published for nobelprizeparser (npm) Mar 12, 2021

Moderate

CVE-2020-35149 was published for mquery (npm) Dec 18, 2020

Moderate

CVE-2019-16774 was published for phpfastcache/phpfastcache (Composer) Dec 12, 2019

Critical

CVE-2017-16042 was published for growl (npm) Jun 8, 2018

High

CVE-2021-35514 was published for narou (RubyGems) Jul 2, 2021

Critical

CVE-2023-22731 was published for shopware/core (Composer) Jan 17, 2023

Critical

CVE-2023-23619 was published for @asyncapi/modelina (npm) Sep 21, 2021

High

CVE-2021-44618 was published for nystudio107/craft-seomatic (Composer) Mar 12, 2022

High

CVE-2022-0895 was published for microweber/microweber (Composer) Mar 11, 2022

High

CVE-2022-0811 was published for github.com/cri-o/cri-o (Go) Mar 15, 2022

Critical

CVE-2022-23812 was published for node-ipc (npm) Mar 16, 2022

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

583 advisories