close
The Wayback Machine - https://web.archive.org/web/20200902195654/https://github.com/advisories
Skip to content
Image

GitHub Advisory Database

2,356 advisories

Information Disclosure and Broken Access Control in Backend Module
CVE-2020-25026 (Moderate severity) was published Sep 2, 2020 derhansen/sf_event_mgt (Composer)
Prevent RCE when calling untrusted remote with CachingHttpClient
CVE-2020-15094 (High severity) was published Sep 2, 2020 symfony/http-kernel (Composer)
Remote Memory Exposure in bl
CVE-2020-8244 (High severity) was published Sep 2, 2020 bl (npm)
Command Injection in bestzip
GHSA-4qqc-mp5f-ccv4 (Critical severity) was published Sep 2, 2020 bestzip (npm)
Malicious Package in asnyc
GHSA-v99v-xgjx-7m7g (Critical severity) was published Sep 2, 2020 asnyc (npm)
Malicious Package in asycn
GHSA-h26f-j4mv-84g7 (Critical severity) was published Sep 2, 2020 asycn (npm)
Malicious Package in asnc
GHSA-2p99-6f47-8x9j (Critical severity) was published Sep 2, 2020 asnc (npm)
Malicious Package in aasync
GHSA-9mjp-gv34-3jcf (Critical severity) was published Sep 2, 2020 aasync (npm)
Malicious Package in asyync
GHSA-rm7c-x424-g2mw (Critical severity) was published Sep 2, 2020 asyync (npm)
Malicious Package in asynnc
GHSA-5fm9-jmv7-fcx5 (Critical severity) was published Sep 2, 2020 asynnc (npm)
Malicious Package in asymc
GHSA-x6ch-c6rv-f7wh (Critical severity) was published Sep 2, 2020 asymc (npm)
Malicious Package in asinc
GHSA-87qw-7v97-w34r (Critical severity) was published Sep 2, 2020 asinc (npm)
Malicious Package in wepack-cli
GHSA-fpw3-x4xq-6vxq (Critical severity) was published Sep 2, 2020 wepack-cli (npm)
Malicious Package in jajajejejiji
GHSA-rggq-f2wf-m6cp (Critical severity) was published Sep 2, 2020 jajajejejiji (npm)
Malicious Package in 4equest
GHSA-p33q-w45h-2hcj (Critical severity) was published Sep 2, 2020 4equest (npm)
HTML Injection in preact
GHSA-cg48-9hh2-x6mx (Moderate severity) was published Sep 2, 2020 preact (npm)
Insecure Default Configuration in graphql-code-generator
GHSA-9w87-4j72-gcv7 (High severity) was published Sep 2, 2020 graphql-code-generator (npm)
Command Injection in cocos-utils
GHSA-rffp-mc78-wjf7 (High severity) was published Sep 2, 2020 cocos-utils (npm)
Use-After-Free in puppeteer
CVE-2019-5786 (High severity) was published Sep 2, 2020 puppeteer (npm)
Arbitrary JavaScript Execution in typed-function
CVE-2017-1001004 (High severity) was published Sep 2, 2020 typed-function (npm)
Cross-Site Scripting in buttle
GHSA-pqpp-2363-649v (Moderate severity) was published Sep 2, 2020 buttle (npm)
Unauthorized File Access in glance
GHSA-vw7g-jq9m-3q9v (Moderate severity) was published Sep 2, 2020 glance (npm)
Cross-Site Scripting in express-cart
GHSA-9pr3-7449-977r (Low severity) was published Sep 2, 2020 express-cart (npm)
Cross-Site Scripting in harp
GHSA-cx7r-634m-2q2h (Moderate severity) was published Sep 2, 2020 harp (npm)
Prototype Pollution in smart-extend
GHSA-f8h3-rqrm-47v9 (Moderate severity) was published Sep 2, 2020 smart-extend (npm)
ProTip! Advisories are also available from the GraphQL API.
You can’t perform that action at this time.