Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,330
Erlang
31
GitHub Actions
21
Go
2,091
Maven
5,000+
npm
3,756
NuGet
678
pip
3,443
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

174 advisories

Loading
The script '/adminui/error_details.php' in the Quest KACE System Management Appliance 8.0.318... High Unreviewed
CVE-2018-11135 was published May 13, 2022
Prototype Pollution in Dexie High
CVE-2022-21189 was published for dexie (npm) May 3, 2022
Prototype Pollution in jsgui-lang-essentials High
CVE-2022-25301 was published for jsgui-lang-essentials (npm) May 3, 2022
Prototype Pollution in convict High
CVE-2022-22143 was published for convict (npm) Apr 20, 2022
cristianstaicu arjunshibu
Prototype Pollution in madlib-object-utils High
CVE-2022-24279 was published for madlib-object-utils (npm) Apr 16, 2022
Prototype Pollution in nconf High
CVE-2022-21803 was published for nconf (npm) Apr 13, 2022
Prototype Pollution in fullpage.js High
CVE-2022-1295 was published for fullpage.js (npm) Apr 12, 2022
Prototype Pollution in async High
CVE-2021-43138 was published for async (npm) Apr 7, 2022
dargmuesli FrederikBolding
jomi-se azaleski morenol MaxLian11
Prototype Pollution in deepmerge-ts High
CVE-2022-24802 was published for deepmerge-ts (npm) Apr 1, 2022
Due to the formatting logic of the "console.table()" function it was not safe to allow user... High Unreviewed
CVE-2022-21824 was published Feb 25, 2022
Prototype Pollution in safetydance High
CVE-2020-7737 was published for safetydance (npm) Feb 10, 2022
Prototype pollution in pathval High
CVE-2020-7751 was published for pathval (npm) Feb 10, 2022
Prototype Pollution in mout High
CVE-2020-7792 was published for mout (npm) Feb 9, 2022
Validation bypass in frourio-express High
CVE-2022-23624 was published for frourio-express (npm) Feb 7, 2022
SegaraRai LumaKernel
Validation bypass in frourio High
CVE-2022-23623 was published for frourio (npm) Feb 7, 2022
SegaraRai LumaKernel
Prototype Pollution in object-path-set High
CVE-2021-23507 was published for object-path-set (npm) Feb 5, 2022
Prototype Pollution in putil-merge High
CVE-2021-23470 was published for putil-merge (npm) Feb 5, 2022
Prototype Pollution in @strikeentco/set High
CVE-2021-23497 was published for @strikeentco/set (npm) Feb 5, 2022
Prototype Pollution in bmoor High
CVE-2021-23558 was published for bmoor (npm) Feb 1, 2022
Prototype pollution in min-dash < 3.8.1 High
GHSA-2m53-83f3-562j was published for min-dash (npm) Feb 1, 2022
cristianstaicu
Prototype Pollution in cached-path-relative High
CVE-2021-23518 was published for cached-path-relative (npm) Jan 27, 2022
Prototype Pollution in min-dash High
CVE-2021-23460 was published for min-dash (npm) Jan 27, 2022
Prototype Pollution in extend2 High
CVE-2021-23568 was published for extend2 (npm) Jan 12, 2022
Prototype Pollution in copy-props High
CVE-2020-28503 was published for copy-props (npm) Jan 6, 2022
Prototype Pollution in dojo High
CVE-2021-23450 was published for dojo (npm) Jan 5, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database