GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
154 advisories
Filter by severity
Prototype Pollution in @apollo/gateway
High
GHSA-74cr-77xc-8g6r
was published
for
@apollo/gateway
(npm)
Jun 13, 2019
Prototype Pollution in lodash.defaultsdeep
High
GHSA-h5mp-5q4p-ggf5
was published
for
lodash.defaultsdeep
(npm)
Sep 3, 2020
Prototype Pollution in lodash.merge
High
GHSA-2m96-9w4j-wgv7
was published
for
lodash.merge
(npm)
Sep 3, 2020
Prototype Pollution in handlebars
High
GHSA-g9r4-xpmj-mj65
was published
for
handlebars
(npm)
Sep 4, 2020
Prototype Pollution in get-setter
High
GHSA-ch82-gqh6-9xj9
was published
for
get-setter
(npm)
Sep 4, 2020
Prototype Pollution in getsetdeep
High
GHSA-8j49-49jq-vwcq
was published
for
getsetdeep
(npm)
Sep 4, 2020
Prototype Pollution in @hapi/subtext
High
GHSA-g9cg-h3jm-cwrc
was published
for
@hapi/subtext
(npm)
Sep 3, 2020
Prototype Pollution in lodash.defaultsdeep
High
GHSA-46fh-8fc5-xcwx
was published
for
lodash.defaultsdeep
(npm)
Sep 3, 2020
Prototype Pollution in unflatten
High
GHSA-6fh5-8wq8-w3wr
was published
for
unflatten
(npm)
Sep 4, 2020
Prototype Pollution in deep-setter
High
GHSA-9qrg-h9g8-c65q
was published
for
deep-setter
(npm)
Sep 4, 2020
Prototype Pollution in safe-object2
High
GHSA-qccf-q7p4-3q3j
was published
for
safe-object2
(npm)
Sep 4, 2020
Prototype Pollution in flat-wrap
High
GHSA-g7h8-p22m-2rvx
was published
for
flat-wrap
(npm)
Sep 4, 2020
Prototype Pollution in lodash.mergewith
High
GHSA-779f-wgxg-qr8f
was published
for
lodash.mergewith
(npm)
Sep 3, 2020
Prototype Pollution in lodash.merge
High
GHSA-h726-x36v-rx45
was published
for
lodash.merge
(npm)
Sep 3, 2020
Prototype Pollution in lodash.mergewith
High
GHSA-5947-m4fg-xhqg
was published
for
lodash.mergewith
(npm)
Sep 3, 2020
Prototype Pollution in @commercial/subtext
High
GHSA-36c4-4r89-6whg
was published
for
@commercial/subtext
(npm)
Sep 3, 2020
Improperly Controlled Modification of Object Prototype Attributes
High
GHSA-6cj2-92m5-7mvp
was published
for
think-config
(npm)
Aug 3, 2021
Prototype pollution in min-dash < 3.8.1
High
GHSA-2m53-83f3-562j
was published
for
min-dash
(npm)
Feb 1, 2022
ProTip!
Advisories are also available from the
GraphQL API