Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,017
Maven
5,000+
npm
3,722
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+

91 advisories

Loading
Format string vulnerability in Dia 0.94 allows user-assisted attackers to cause a denial of... Moderate Unreviewed
CVE-2006-2480 was published May 1, 2022
Format string vulnerability in time.cc in MySQL Server 4.1 before 4.1.21 and 5.0 before 1 April... Moderate Unreviewed
CVE-2006-3469 was published May 1, 2022
Format string vulnerability in Apple iPhoto 6.0.5 (316), and other versions before 6.0.6, allows... Moderate Unreviewed
CVE-2007-0051 was published May 1, 2022
Format string vulnerability in XM Easy Personal FTP Server 5.2.1 allows remote attackers to cause... Moderate Unreviewed
CVE-2006-6751 was published May 1, 2022
Multiple format string vulnerabilities in (1) the cdio_log_handler function in modules/access... Moderate Unreviewed
CVE-2007-0017 was published May 1, 2022
Untrusted search path vulnerability in the add_filename_to_string function in intl/gettext... Moderate Unreviewed
CVE-2007-2027 was published May 1, 2022
IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local users to create arbitrary... Moderate Unreviewed
CVE-2007-4273 was published May 1, 2022
Format string vulnerability in the ext_yahoo_contact_added function in yahoo.c in Miranda IM 0.7... Moderate Unreviewed
CVE-2007-5396 was published May 1, 2022
Format string vulnerability in ALPass 2.7 English and 3.02 Korean might allow user-assisted... Moderate Unreviewed
CVE-2007-4550 was published May 1, 2022
The Platform Service Process (asampsp) in Fan-Out Driver Platform Services for Novell Identity... Moderate Unreviewed
CVE-2007-6625 was published May 1, 2022
Format string vulnerability in the logging function in IBM solidDB 06.00.1018 and earlier allows... Moderate Unreviewed
CVE-2008-1705 was published May 1, 2022
Format string vulnerability in mDNSResponderHelper in Apple Mac OS X 10.5.2 allows local users to... Moderate Unreviewed
CVE-2008-0989 was published May 1, 2022
Format string vulnerability in the emf_multipart_encrypted function in mail/em-format.c in... Moderate Unreviewed
CVE-2008-0072 was published May 1, 2022
Format string vulnerability in the cryactio function in Crysis 1.1.1.5879 allows remote... Moderate Unreviewed
CVE-2008-1127 was published May 1, 2022
Format string vulnerability in Asterisk Open Source 1.6.x before 1.6.0-beta6 might allow remote... Moderate Unreviewed
CVE-2008-1333 was published May 1, 2022
Format string vulnerability in the grant helper (polkit-grant-helper.c) in PolicyKit 0.7 and... Moderate Unreviewed
CVE-2008-1658 was published May 1, 2022
Format string vulnerability in the log_message function in lks.c in Linux Kiss Server 1.2, when... Moderate Unreviewed
CVE-2008-1206 was published May 1, 2022
Format string vulnerability in the finger client in HP TCP/IP Services for OpenVMS 5.x allows... Moderate Unreviewed
CVE-2008-3940 was published May 2, 2022
Format string vulnerability in c++filt in Apple Mac OS X 10.5 before 10.5.4 allows user-assisted... Moderate Unreviewed
CVE-2008-2310 was published May 1, 2022
Format string vulnerability in the logDetail function of applib.dll in McAfee Common Management... Moderate Unreviewed
CVE-2008-1357 was published May 1, 2022
Format string vulnerability in the Net Inspector HTTP server (mghttpd) in MG-SOFT Net Inspector 6... Moderate Unreviewed
CVE-2008-1401 was published May 1, 2022
MySQL 5.0 before 5.0.66, 5.1 before 5.1.26, and 6.0 before 6.0.6 does not properly handle a b'' ... Moderate Unreviewed
CVE-2008-3963 was published May 2, 2022
Format string vulnerability in Symantec pcAnywhere before 12.5 SP1 allows local users to read and... Moderate Unreviewed
CVE-2009-0538 was published May 2, 2022
The popen API function in TSRM/tsrm_win32.c in PHP before 5.2.11 and 5.3.x before 5.3.1, when... Moderate Unreviewed
CVE-2009-3294 was published May 2, 2022
Blocks/Common/Src/Configuration/Manageability/Adm/AdmContentBuilder.cs in Microsoft patterns &... Moderate Unreviewed
CVE-2009-3275 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database