GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,330
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
142 advisories
Filter by severity
Downloads Resources over HTTP in pm2-kafka
High
CVE-2016-10693
was published
for
pm2-kafka
(npm)
Sep 1, 2020
Downloads Resources over HTTP in npm-test-sqlite3-trunk
High
CVE-2016-10695
was published
for
npm-test-sqlite3-trunk
(npm)
Sep 1, 2020
Downloads Resources over HTTP in windows-latestchromedriver
High
CVE-2016-10696
was published
for
windows-latestchromedriver
(npm)
Sep 1, 2020
Downloads Resources over HTTP in roslib-socketio
High
CVE-2016-10681
was published
for
roslib-socketio
(npm)
Sep 1, 2020
gfe-sass downloads Resources over HTTP
High
CVE-2017-16040
was published
for
gfe-sass
(npm)
Sep 1, 2020
windows-selenium-chromedriver downloads Resources over HTTP
High
CVE-2016-10687
was published
for
windows-selenium-chromedriver
(npm)
Sep 1, 2020
Downloads Resources over HTTP in node-air-sdk
High
CVE-2016-10647
was published
for
node-air-sdk
(npm)
Sep 1, 2020
frames-compiler downloads Resources over HTTP
High
CVE-2016-10649
was published
for
frames-compiler
(npm)
Sep 1, 2020
Downloads Resources over HTTP in apk-parser3
High
CVE-2016-10574
was published
for
apk-parser3
(npm)
Sep 1, 2020
Downloads Resources over HTTP in apk-parser
High
CVE-2016-10564
was published
for
apk-parser
(npm)
Sep 1, 2020
Missing Encryption of Sensitive Data in yarn
High
CVE-2019-5448
was published
for
yarn
(npm)
Jul 31, 2019
Downloads Resources over HTTP in chromedriver
High
CVE-2016-10579
was published
for
chromedriver
(npm)
Feb 18, 2019
closure-util downloads Resources over HTTP
High
CVE-2016-10583
was published
for
closure-util
(npm)
Feb 18, 2019
Downloads Resources over HTTP in broccoli-closure
High
CVE-2016-10635
was published
for
broccoli-closure
(npm)
Feb 18, 2019
dwebp-bin downloads Resources over HTTP
High
CVE-2016-10633
was published
for
dwebp-bin
(npm)
Feb 18, 2019
Downloads Resources over HTTP in jvminstall
High
CVE-2016-10631
was published
for
jvminstall
(npm)
Feb 18, 2019
nw-with-arm downloads Resources over HTTP
High
CVE-2016-10629
was published
for
nw-with-arm
(npm)
Feb 18, 2019
Downloads Resources over HTTP in scala-bin
High
CVE-2016-10627
was published
for
scala-bin
(npm)
Feb 18, 2019
headless-browser-lite downloads Resources over HTTP
High
CVE-2016-10625
was published
for
headless-browser-lite
(npm)
Feb 18, 2019
Downloads Resources over HTTP in macaca-chromedriver-zxa
High
CVE-2016-10623
was published
for
macaca-chromedriver-zxa
(npm)
Feb 18, 2019
Downloads Resources over HTTP in fibjs
High
CVE-2016-10621
was published
for
fibjs
(npm)
Feb 18, 2019
Downloads Resources over HTTP in atom-node-module-installer
High
CVE-2016-10620
was published
for
atom-node-module-installer
(npm)
Feb 18, 2019
Downloads Resources over HTTP in pennyworth
High
CVE-2016-10619
was published
for
pennyworth
(npm)
Feb 18, 2019
node-browser downloads Resources over HTTP
High
CVE-2016-10618
was published
for
node-browser
(npm)
Feb 18, 2019
Downloads Resources over HTTP in box2d-native
High
CVE-2016-10617
was published
for
box2d-native
(npm)
Feb 18, 2019
ProTip!
Advisories are also available from the
GraphQL API