Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,607
NuGet
638
pip
3,208
Pub
10
RubyGems
852
Rust
816
Swift
35
Unreviewed advisories
All unreviewed
5,000+

3,608 advisories

Loading
nodesqlite is malware High
CVE-2017-16049 was published for nodesqlite (npm) Jul 23, 2018
fabric-js is malware High
CVE-2017-16053 was published for fabric-js (npm) Jul 23, 2018
node-fabric is malware High
CVE-2017-16052 was published for node-fabric (npm) Jul 23, 2018
sqliter is malware High
CVE-2017-16051 was published for sqliter (npm) Jul 23, 2018
nodefabric is malware High
CVE-2017-16054 was published for nodefabric (npm) Jul 23, 2018
Directory Traversal in unicorn-list High
CVE-2017-16131 was published for unicorn-list (npm) Jul 23, 2018
Directory Traversal in simple-npm-registry High
CVE-2017-16132 was published for simple-npm-registry (npm) Jul 23, 2018
Directory Traversal in goserv High
CVE-2017-16133 was published for goserv (npm) Jul 23, 2018
Directory Traversal in lab6.brit95 High
CVE-2017-16140 was published for lab6.brit95 (npm) Jul 23, 2018
Directory Traversal in lab6drewfusbyu High
CVE-2017-16141 was published for lab6drewfusbyu (npm) Jul 23, 2018
Directory Traversal in infraserver High
CVE-2017-16142 was published for infraserver (npm) Jul 23, 2018
Directory Traversal in commentapp.stetsonwood High
CVE-2017-16143 was published for commentapp.stetsonwood (npm) Jul 23, 2018
Directory Traversal in myserver.alexcthomas18 High
CVE-2017-16144 was published for myserver.alexcthomas18 (npm) Jul 23, 2018
Directory Traversal in sspa High
CVE-2017-16145 was published for sspa (npm) Jul 23, 2018
Directory Traversal in mockserve High
CVE-2017-16146 was published for mockserve (npm) Jul 23, 2018
Directory Traversal in static-html-server High
CVE-2017-16152 was published for static-html-server (npm) Jul 23, 2018
Directory Traversal in fast-http-cli High
CVE-2017-16155 was published for fast-http-cli (npm) Jul 23, 2018
Directory Traversal in censorify.tanisjr High
CVE-2017-16157 was published for censorify.tanisjr (npm) Jul 23, 2018
Directory Traversal in 22lixian High
CVE-2017-16162 was published for 22lixian (npm) Jul 23, 2018
Directory Traversal in calmquist.static-server High
CVE-2017-16165 was published for calmquist.static-server (npm) Jul 23, 2018
Directory Traversal in byucslabsix High
CVE-2017-16166 was published for byucslabsix (npm) Jul 23, 2018
Directory Traversal in looppake High
CVE-2017-16169 was published for looppake (npm) Jul 23, 2018
Directory Traversal in utahcityfinder High
CVE-2017-16173 was published for utahcityfinder (npm) Jul 23, 2018
Directory Traversal in whispercast High
CVE-2017-16174 was published for whispercast (npm) Jul 23, 2018
Directory Traversal in ewgaddis.lab6 High
CVE-2017-16175 was published for ewgaddis.lab6 (npm) Jul 23, 2018
ProTip! Advisories are also available from the GraphQL API