github/advisory-database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
CC-BY-4.0
Issues
- 4
Extend GitHub's CNA scope
#2718 opened by Marcono1234 - 3
gen-mapping is listed as malware
#3280 opened by markcrivera - 0
nuget: different package names fo same packages
#4440 opened by DmitriyLewen - 0
Incorrect security adivsory credit count
#4439 opened by JafarAkhondali - 0
A taks
#4346 opened by yves-furusho - 0
Version range of GHSA-95mg-jgfx-54v9
#4388 opened by raboof - 3
Haskell security advisory database (Hackage packages)
#4224 opened by MathiasSM - 1
- 0
Request to review GHSA-gwr8-m965-83p4
#4336 opened by spack-vendavo - 0
Request to review GHSA-7jmm-gqgx-fq9m
#4328 opened by diogoraposo - 1
- 1
GHSA-cqhr-jqvc-qw9p has an invalid CVE id and appears to be a duplicate of GHSA-g66q-grxc-64j3
#3940 opened by warkentyne - 6
- 0
- 1
Add C/C++ ecosystem like conan.
#3946 opened by sunSUNQ - 3
include advisories from Snyk
#3449 opened by alex-at-cascade - 8
List Perl as an environment
#3536 opened by briandfoy - 3
GHSA-5mwm-wccq-xqcp contains an incorrect reference
#3636 opened by sethmlarson - 13
arduino-ide-extension marked as malware
#3487 opened by rhaidiz - 1
Inconsistent package identifier format for vulnerabilities in the Swift ecosystem
#3333 opened by fviernau - 2
NPM IP package warning overstates danger
#3537 opened by matkoniecz - 1
- 1
nogot
#3720 opened by MDKABIRHossai - 0
www.google.com
#3660 opened by KaliforniaShell - 3
- 1
- 2
- 1
- 8
Unable to improve advisory database for C / C++ packages
#2963 opened by mswilson - 3
Missing CVE-2023-44487 advisory for Apache Tomcat
#3108 opened by biehl1 - 0
advise
#3076 opened by UKKZAW-N3970 - 2
cve-2023-44487
#3023 opened by khaledgithubwl - 1
GHSA-679j-53p9-4q59
#3049 opened by achebrol - 2
Credit Claim
#2991 opened by SCH227 - 5
- 5
GHSA-gwjw-ph82-w683 - Malware in duo_web_sdk
#2701 opened by pidydx - 4
Exclude the severity completely when it's empty
#2885 opened by nulls - 1
Empty affected function in crates.io Rust advisories
#2665 opened by amousset - 2
Fix GHSA-jpcm-4485-69p7
#2703 opened by alejolagosm - 3
Need CVE auto-linking disambiguation to CVEs that belong to more than 1 project
#2869 opened by joakime - 3
- 0
Feature: Profile Achievement Versatile
#2916 opened by kauaneiras - 1
GHSA-pc5p-h8pf-mvwp typo in CVSS score value
#2904 opened by Michal-Kubricht - 1
[GHSA-5888-ffcr-r425] Please sync the CVE with the advisory entry
#2887 opened by paul-gerste-sonarsource - 7
GHSA-7fh5-64p2-3v2j contains no security impact
#2820 opened by DCKcode - 1
- 2
GHSA-9jfq-54vc-9rr2 is incorrect
#2761 opened by G-Rath - 6
CVE-2023-5129 vs. CVE-2023-4863
#2759 opened by delroth - 5
False positives since latest change for GHSA-82hx-w2r5-c2wq / CVE-2020-8552
#2745 opened by chrischdi - 2
Screwed up PR merge
#2646 opened by daniel-beck