GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
60 advisories
Filter by severity
assign-deep Vulnerable to Prototype Pollution
High
CVE-2019-10745
was published
for
assign-deep
(npm)
Aug 21, 2019
Prototype pollution in class-transformer
Moderate
CVE-2020-7637
was published
for
class-transformer
(npm)
Apr 7, 2020
confinit vulnerable to prototype pollution
Moderate
CVE-2020-7638
was published
for
confinit
(npm)
Apr 7, 2020
Prototype Pollution in ini-parser
Critical
CVE-2020-7617
was published
for
ini-parser
(npm)
Jun 10, 2020
Prototype Pollution in express-fileupload
Critical
CVE-2020-7699
was published
for
express-fileupload
(npm)
Aug 5, 2020
yargs-parser Vulnerable to Prototype Pollution
Moderate
CVE-2020-7608
was published
for
yargs-parser
(npm)
Sep 4, 2020
Prototype Pollution in node-forge
High
CVE-2020-7720
was published
for
node-forge
(npm)
Sep 14, 2020
Prototype Pollution in Node-Red
High
CVE-2021-21297
was published
for
@node-red/runtime
(npm)
Feb 26, 2021
Prototype Pollution in madlib-object-utils
Critical
CVE-2020-7701
was published
for
madlib-object-utils
(npm)
May 6, 2021
Prototype Pollution in nis-utils
Critical
CVE-2020-7703
was published
for
nis-utils
(npm)
May 6, 2021
Prototype Pollution in irrelon-path and @irrelon/path
Critical
CVE-2020-7708
was published
for
@irrelon/path
(npm)
May 6, 2021
Prototype Pollution in connie-lang
Critical
CVE-2020-7706
was published
for
connie-lang
(npm)
May 6, 2021
Prototype Pollution in property-expr
Critical
CVE-2020-7707
was published
for
property-expr
(npm)
May 6, 2021
Improperly Controlled Modification of Dynamically-Determined Object Attributes in querymen
Moderate
CVE-2020-7600
was published
for
querymen
(npm)
May 7, 2021
Improperly Controlled Modification of Dynamically-Determined Object Attributes in utilitify
High
CVE-2019-10808
was published
for
utilitify
(npm)
May 7, 2021
Improperly Controlled Modification of Dynamically-Determined Object Attributes in vega-util
Moderate
CVE-2019-10806
was published
for
vega-util
(npm)
May 7, 2021
ProTip!
Advisories are also available from the
GraphQL API