GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License

Language support

About GitHub Advisory Database

69 advisories

High

CVE-2017-1000048 was published for qs (npm) Apr 30, 2020

High

CVE-2018-7560 was published for aws-lambda-multipart-parser (npm) Mar 5, 2018

High

CVE-2017-15879 was published for keystone (npm) Nov 16, 2017

High

CVE-2018-14732 was published for webpack-dev-server (npm) Jan 4, 2019

High

GHSA-9wjh-jr2j-6r4x was published for pi_video_recording (npm) Sep 2, 2020

High

GHSA-6495-8jvh-f28x was published for socket.io-file (npm) Oct 2, 2020

High

GHSA-9p64-h5q4-phpm was published for office-converter (npm) Sep 2, 2020

High

GHSA-m5ch-gx8g-rg73 was published for pomelo-monitor (npm) Sep 2, 2020

High

GHSA-5vj8-3v2h-h38v was published for next (npm) Sep 4, 2020

High

CVE-2023-22491 was published for gatsby-transformer-remark (npm) Jan 11, 2023

High

CVE-2021-21267 was published for schema-inspector (npm) Mar 19, 2021

High

CVE-2022-31172 was published for @openzeppelin/contracts (npm) Jul 21, 2022

High

CVE-2019-10768 was published for angular (npm) Nov 20, 2019

High

CVE-2019-10745 was published for assign-deep (npm) Aug 21, 2019

High

CVE-2022-23529 was published for jsonwebtoken (npm) Dec 22, 2022 • withdrawn

High

CVE-2021-29486 was published for cumulative-distribution-function (npm) May 4, 2021

High

CVE-2015-9545 was published for xdLocalStorage (npm) Dec 9, 2021

High

CVE-2022-31170 was published for @openzeppelin/contracts (npm) Jul 21, 2022

High

CVE-2021-39187 was published for parse-server (npm) Sep 2, 2021

High

CVE-2019-10790 was published for taffy (npm) Feb 19, 2020

High

CVE-2018-20835 was published for tar-fs (npm) May 1, 2019

High

CVE-2019-17592 was published for csv-parse (npm) Oct 15, 2019

High

CVE-2018-21036 was published for sails-hook-sockets (npm) Jul 24, 2020

High

CVE-2020-15174 was published for electron (npm) Oct 6, 2020

High

CVE-2021-26814 was published for wazuh (npm) Mar 18, 2021

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

69 advisories