Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,890
Erlang
37
GitHub Actions
38
Go
2,548
Maven
5,000+
npm
4,218
NuGet
745
pip
3,998
Pub
12
RubyGems
953
Rust
1,038
Swift
45
Unreviewed advisories
All unreviewed
5,000+

5 advisories

Loading
Mastra Docs MCP Server `@mastra/mcp-docs-server` Leads to Information Exposure Moderate
GHSA-xh92-rqrq-227v was published for @mastra/mcp-docs-server (npm) Sep 24, 2025
lirantal
Credited to lirantal
@saltcorn/server arbitrary file and directory listing when accessing build mobile app results Moderate
GHSA-cfqx-f43m-vfh7 was published for @saltcorn/server (npm) Oct 3, 2024
dellalibera
Credited to dellalibera
Unauthorized File Access in harp Moderate
CVE-2019-5437 was published for harp (npm) Jun 13, 2019
Path Traversal in serve High
CVE-2019-5415 was published for serve (npm) Mar 25, 2019
shivakumar-loginsoft
Credited to shivakumar-loginsoft
Path Traversal in simplehttpserver High
CVE-2018-16493 was published for static-resource-server (npm) Feb 7, 2019
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database