GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
3 advisories
DOMPurify is vulnerable to mutation-XSS via Re-Contextualization
Moderate
GHSA-h8r8-wccr-v5f2
was published
for
dompurify
(npm)
Mar 27, 2026
svelte vulnerable to Cross-site Scripting
Moderate
CVE-2025-15265
was published
for
svelte
(npm)
Jan 15, 2026
Linkify Allows Prototype Pollution & HTML Attribute Injection (XSS)
High
CVE-2025-8101
was published
for
linkifyjs
(npm)
Jul 26, 2025
ProTip!
Advisories are also available from the
GraphQL API