GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,065
Maven
5,000+
npm
3,744
NuGet
668
pip
3,427
Pub
12
RubyGems
892
Rust
877
Swift
36
Unreviewed advisories
All unreviewed
5,000+
452 advisories
Filter by severity
Downloads Resources over HTTP in install-g-test
High
CVE-2016-10630
was published
for
install-g-test
(npm)
Feb 18, 2019
Downloads Resources over HTTP in limbus-buildgen
High
CVE-2016-10674
was published
for
limbus-buildgen
(npm)
Feb 18, 2019
Downloads Resources over HTTP in phantomjs-cheniu
High
CVE-2016-10661
was published
for
phantomjs-cheniu
(npm)
Feb 18, 2019
Downloads Resources over HTTP in mystem-wrapper
High
CVE-2016-10671
was published
for
mystem-wrapper
(npm)
Feb 18, 2019
Downloads Resources over HTTP in webdrvr
High
CVE-2016-10601
was published
for
webdrvr
(npm)
Feb 18, 2019
Downloads Resources over HTTP in pennyworth
High
CVE-2016-10619
was published
for
pennyworth
(npm)
Feb 18, 2019
Downloads Resources over HTTP in galenframework-cli
High
CVE-2016-10560
was published
for
galenframework-cli
(npm)
Feb 18, 2019
Downloads Resources over HTTP in cue-sdk-node
High
CVE-2016-10590
was published
for
cue-sdk-node
(npm)
Feb 18, 2019
Downloads Resources over HTTP in npm-test-sqlite3-trunk
High
CVE-2016-10695
was published
for
npm-test-sqlite3-trunk
(npm)
Sep 1, 2020
Downloads Resources over HTTP in apk-parser
High
CVE-2016-10564
was published
for
apk-parser
(npm)
Sep 1, 2020
Downloads Resources over HTTP in js-given
High
CVE-2016-10638
was published
for
js-given
(npm)
Feb 18, 2019
Downloads Resources over HTTP in aerospike
High
CVE-2016-10558
was published
for
aerospike
(npm)
Feb 18, 2019
Downloads Resources over HTTP in broccoli-closure
High
CVE-2016-10635
was published
for
broccoli-closure
(npm)
Feb 18, 2019
Downloads Resources over HTTP in adamvr-geoip-lite
Moderate
CVE-2016-10680
was published
for
adamvr-geoip-lite
(npm)
Sep 1, 2020
Downloads Resources over HTTP in roslib-socketio
High
CVE-2016-10681
was published
for
roslib-socketio
(npm)
Sep 1, 2020
Downloads Resources over HTTP in pm2-kafka
High
CVE-2016-10693
was published
for
pm2-kafka
(npm)
Sep 1, 2020
Downloads Resources over HTTP in windows-latestchromedriver
High
CVE-2016-10696
was published
for
windows-latestchromedriver
(npm)
Sep 1, 2020
Downloads Resources over HTTP in apk-parser3
High
CVE-2016-10574
was published
for
apk-parser3
(npm)
Sep 1, 2020
Downloads Resources over HTTP in node-air-sdk
High
CVE-2016-10647
was published
for
node-air-sdk
(npm)
Sep 1, 2020
selenium-binaries downloads resources over HTTP
High
CVE-2016-10589
was published
for
selenium-binaries
(npm)
Feb 18, 2019
steroids downloads resources over HTTP
High
CVE-2016-10581
was published
for
steroids
(npm)
Feb 18, 2019
Gradle Enterprise before 2021.4.3 relies on cleartext data transmission in some situations. It...
Moderate
Unreviewed
CVE-2022-27225
was published
Mar 17, 2022
Wokka Lokka Q50 devices through 2021-11-30 allow remote attackers (who know the SIM phone number...
High
Unreviewed
CVE-2021-44480
was published
Dec 2, 2021
Skyworth GN542VF Boa version 0.94.13 does not set the Secure flag for the session cookie in an...
High
Unreviewed
CVE-2020-26732
was published
May 24, 2022
Missing AES encryption in Corsair K63 Wireless 3.1.3 allows physically proximate attackers to...
Moderate
Unreviewed
CVE-2022-35860
was published
Oct 19, 2022
ProTip!
Advisories are also available from the
GraphQL API