GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 19,370
Composer 3,968
Erlang 29
GitHub Actions 16
Go 1,749
Maven 4,978
npm 3,509
NuGet 609
pip 3,084
Pub 10
RubyGems 832
Rust 782
Swift 34

Unreviewed advisories

All unreviewed 221,313

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

4 advisories

Filter by severity

Sort by

Least recently updated

javascript-deobfuscator crafted payload can lead to code execution High

CVE-2024-36120 was published for js-deobfuscator (npm) Jun 4, 2024

pymatgen vulnerable to arbitrary code execution when parsing a maliciously crafted JonesFaithfulTransformation transformation_string Critical

CVE-2024-23346 was published for pymatgen (pip) Feb 21, 2024

Synchrony deobfuscator prototype pollution vulnerability leading to arbitrary code execution High

CVE-2023-45811 was published for deobfuscator (npm) Oct 18, 2023

Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code Critical

CVE-2023-45133 was published for @babel/traverse (npm) Oct 16, 2023

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4 advisories