GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+
5,992 advisories
Filter by severity
Arbitrary File Write in adm-zip
Moderate
CVE-2018-1002204
was published
for
adm-zip
(npm)
Jul 27, 2018
Arbitrary File Write via Archive Extraction in unzipper
Moderate
CVE-2018-1002203
was published
for
unzipper
(npm)
Jul 27, 2018
Remote Code Execution in markdown-pdf
Moderate
CVE-2018-3770
was published
for
markdown-pdf
(npm)
Jul 27, 2018
Path Traversal in general-file-server
High
CVE-2018-3724
was published
for
general-file-server
(npm)
Jul 26, 2018
Path Traversal in angular-http-server
Moderate
CVE-2018-3713
was published
for
angular-http-server
(npm)
Jul 26, 2018
Path Traversal in localhost-now
High
CVE-2018-3729
was published
for
localhost-now
(npm)
Jul 25, 2018
Directory Traversal in node-simple-router
High
CVE-2017-16083
was published
for
node-simple-router
(npm)
Jul 24, 2018
Directory Traversal in f2e-server
High
CVE-2017-16038
was published
for
f2e-server
(npm)
Jul 24, 2018
Directory Traversal in gomeplus-h5-proxy
High
CVE-2017-16037
was published
for
gomeplus-h5-proxy
(npm)
Jul 24, 2018
Directory Traversal in badjs-sourcemap-server
High
CVE-2017-16036
was published
for
badjs-sourcemap-server
(npm)
Jul 24, 2018
Directory Traversal in tinyserver2
High
CVE-2017-16085
was published
for
tinyserver2
(npm)
Jul 24, 2018
Directory Traversal in list-n-stream
High
CVE-2017-16084
was published
for
list-n-stream
(npm)
Jul 24, 2018
ProTip!
Advisories are also available from the
GraphQL API