Essential vulnerability data for your ecosystem
Advisories is a comprehensive open API service that provides professional-quality security vulnerability metadata for numerous open source software ecosystems for free
Comprehensive vulnerability database
Access unified vulnerability data from multiple sources including package registries, software repositories, and vulnerability databases, giving you a comprehensive view of security threats across your entire open source stack.
Latest vulnerabilities
View allMCP Atlassian has an arbitrary file write leading to arbitrary code execution via unconstrained download_path in confluence_download_attachment
MCP Atlassian has SSRF via unvalidated X-Atlassian-Jira-Url / X-Atlassian-Confluence-Url headers
simple-git has blockUnsafeOperationsPlugin bypass via case-insensitive protocol.allow config key enables RCE
Envoy's global rate limit may crash when the response phase limit is enabled and the response phase request is failed directly
Get complete security visibility
Access unified vulnerability data from multiple sources including package registries, software repositories, and vulnerability databases, giving you a comprehensive view of security threats across your entire open source stack.
Stay ahead of security risks
Identify which packages and projects in your dependencies are affected by security advisories, empowering you to make informed decisions and address vulnerabilities before they become critical threats to your systems.
Integrate seamlessly into your workflow
Enjoy 5,000 requests per hour rate limits and comprehensive REST API documentation, allowing you to easily incorporate security intelligence into your development and security management processes.
Get started
Find a project and see it in our dashboard, with statistics on responsiveness, productivity, finance and more available to compare over time.