advisory-database
advisory-database copied to clipboard
github
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Hello, Please find the next batch of .NET CVEs for backfill below. //cc @leecow, @jondouglas CVE | Announcement date | CVE URL | Announcement URL | GitHub Advisory | Vulnerable...
Hello, Please find below vulnerable NuGet packages list for CVE-2022-24512. //cc @leecow /@jondouglas CVE | Announcement date | CVE URL | Announcement URL | GitHub Advisory | Vulnerable package id...
Hello, Please find the next batch of .NET CVEs for backfill below. //cc @leecow, @jondouglas CVE | Title | Announcement date | CVE URL | Announcement URL | Vulnerable package...
Should re-packagings of software artifacts from other ecosystems be supported for automatic inclusion in security advisories? As a specific example, there exists the [webjars](https://www.webjars.org/) project which packages javascript packages up...
**Updates** - Description **Comments** .
For many science applications, python environments are added via `conda`, rather than directly from the pypi registry. Support for the `defaults` and `conda-forge` channels would greatly increase the applicability of...
**Updates** - Affected products **Comments** This package no longer exists in npmjs.com, and this advisory should be removed.
**Updates** - Affected products **Comments** Package already not in npmjs.com, this advisory should be removed.
As of 7 October 2021 with the [`npm audit` shift to GAD][1], all listings previously found at npmjs.com/advisories [now redirect to the matching listing in GAD][2]. All npmjs.com/advisories links should...
Hi, my Windows 10 security system alarmed about a PHP backdoor in one of the files from your archive. Detected: Backdoor:PHP/Remoteshell.V Details: This program provides remote access to the computer...
