GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Critical

CVE-2015-9235 was published for jsonwebtoken (npm) Oct 9, 2018

Critical

CVE-2017-18239 was published for com.jason-goodwin:authentikat-jwt_2.12 (Maven) Nov 9, 2018

High

CVE-2022-23529 was published for jsonwebtoken (npm) Dec 22, 2022 • withdrawn

Critical

CVE-2022-39366 was published for acryl-datahub (pip) Oct 31, 2022

Moderate

CVE-2024-31033 was published for io.jsonwebtoken:jjwt-impl (Maven) Apr 1, 2024 • withdrawn

Critical

GHSA-h533-5v22-8vcp was published for firebase/php-jwt (Composer) May 15, 2024

Critical

GHSA-9gxv-x7rp-r2hc was published for gree/jose (Composer) May 15, 2024

Critical

GHSA-4rr6-gf59-ggw5 was published for namshi/jose (Composer) May 17, 2024

High

CVE-2022-23539 was published for jsonwebtoken (npm) Dec 22, 2022

ProTip! Advisories are also available from the GraphQL API