GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License

Language support

About GitHub Advisory Database

972 advisories

Critical

CVE-2018-16486 was published for defaults-deep (npm) Feb 7, 2019

Critical

CVE-2018-9207 was published for jquery-file-upload (npm) Dec 19, 2018

Critical

GHSA-mh6f-8j2x-4483 was published for event-stream (npm) Nov 26, 2018

Critical

CVE-2016-10555 was published for jwt-simple (npm) Nov 6, 2018

Critical

CVE-2018-16462 was published for apex-publish-static-files (npm) Nov 1, 2018

Critical

CVE-2018-9206 was published for blueimp-file-upload (npm) Oct 22, 2018

Critical

CVE-2018-15494 was published for dojox (npm) Oct 15, 2018

Critical

CVE-2018-3767 was published for memjs (npm) Oct 10, 2018

Critical

CVE-2018-3745 was published for atob (npm) Oct 9, 2018

Critical

CVE-2018-3750 was published for deep-extend (npm) Oct 9, 2018

Critical

CVE-2015-9235 was published for jsonwebtoken (npm) Oct 9, 2018

Critical

CVE-2018-3752 was published for merge-options (npm) Oct 9, 2018

Critical

CVE-2018-3753 was published for merge-object (npm) Sep 18, 2018

Critical

CVE-2018-3751 was published for merge-recursive (npm) Sep 18, 2018

Critical

CVE-2018-3744 was published for html-pages (npm) Sep 18, 2018

Critical

CVE-2018-16460 was published for ps (npm) Sep 17, 2018

Critical

CVE-2018-3786 was published for egg-scripts (npm) Sep 17, 2018

Critical

CVE-2018-1000620 was published for cryptiles (npm) Sep 11, 2018

Critical

CVE-2018-8319 was published for msrcrypto (npm) Sep 10, 2018

Critical

CVE-2018-13797 was published for macaddress (npm) Sep 6, 2018

Critical

CVE-2018-3783 was published for flintcms (npm) Aug 21, 2018

Critical

CVE-2018-3785 was published for git-dummy-commit (npm) Aug 21, 2018

Critical

CVE-2018-3784 was published for cryo (npm) Aug 21, 2018

Critical

CVE-2018-3774 was published for url-parse (npm) Aug 13, 2018

Critical

CVE-2018-3772 was published for whereis (npm) Jul 31, 2018

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

972 advisories