GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,016
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
91 advisories
Filter by severity
Multiple format string vulnerabilities in isns.c in (1) Linux SCSI target framework (aka tgt or...
Moderate
Unreviewed
CVE-2010-0743
was published
May 2, 2022
Format string vulnerability in War FTP Daemon (warftpd) 1.82 RC 12 allows remote authenticated...
Moderate
Unreviewed
CVE-2009-5141
was published
May 2, 2022
VMware Authentication Daemon 1.0 in vmware-authd.exe in the VMware Authorization Service in...
Moderate
Unreviewed
CVE-2009-4811
was published
May 2, 2022
Format string vulnerability in Ipswitch WS_FTP Professional 12 before 12.2 allows remote...
Moderate
Unreviewed
CVE-2009-4775
was published
May 2, 2022
VMware Authentication Daemon 1.0 in vmware-authd.exe in the VMware Authorization Service in...
Moderate
Unreviewed
CVE-2009-3707
was published
May 2, 2022
The popen API function in TSRM/tsrm_win32.c in PHP before 5.2.11 and 5.3.x before 5.3.1, when...
Moderate
Unreviewed
CVE-2009-3294
was published
May 2, 2022
Blocks/Common/Src/Configuration/Manageability/Adm/AdmContentBuilder.cs in Microsoft patterns &...
Moderate
Unreviewed
CVE-2009-3275
was published
May 2, 2022
Format string vulnerability in Symantec pcAnywhere before 12.5 SP1 allows local users to read and...
Moderate
Unreviewed
CVE-2009-0538
was published
May 2, 2022
MySQL 5.0 before 5.0.66, 5.1 before 5.1.26, and 6.0 before 6.0.6 does not properly handle a b'' ...
Moderate
Unreviewed
CVE-2008-3963
was published
May 2, 2022
Format string vulnerability in the finger client in HP TCP/IP Services for OpenVMS 5.x allows...
Moderate
Unreviewed
CVE-2008-3940
was published
May 2, 2022
Format string vulnerability in c++filt in Apple Mac OS X 10.5 before 10.5.4 allows user-assisted...
Moderate
Unreviewed
CVE-2008-2310
was published
May 1, 2022
Format string vulnerability in the logging function in IBM solidDB 06.00.1018 and earlier allows...
Moderate
Unreviewed
CVE-2008-1705
was published
May 1, 2022
Format string vulnerability in the grant helper (polkit-grant-helper.c) in PolicyKit 0.7 and...
Moderate
Unreviewed
CVE-2008-1658
was published
May 1, 2022
Format string vulnerability in the Net Inspector HTTP server (mghttpd) in MG-SOFT Net Inspector 6...
Moderate
Unreviewed
CVE-2008-1401
was published
May 1, 2022
Format string vulnerability in the logDetail function of applib.dll in McAfee Common Management...
Moderate
Unreviewed
CVE-2008-1357
was published
May 1, 2022
Format string vulnerability in Asterisk Open Source 1.6.x before 1.6.0-beta6 might allow remote...
Moderate
Unreviewed
CVE-2008-1333
was published
May 1, 2022
Format string vulnerability in the log_message function in lks.c in Linux Kiss Server 1.2, when...
Moderate
Unreviewed
CVE-2008-1206
was published
May 1, 2022
Format string vulnerability in the cryactio function in Crysis 1.1.1.5879 allows remote...
Moderate
Unreviewed
CVE-2008-1127
was published
May 1, 2022
Format string vulnerability in mDNSResponderHelper in Apple Mac OS X 10.5.2 allows local users to...
Moderate
Unreviewed
CVE-2008-0989
was published
May 1, 2022
Format string vulnerability in the emf_multipart_encrypted function in mail/em-format.c in...
Moderate
Unreviewed
CVE-2008-0072
was published
May 1, 2022
The Platform Service Process (asampsp) in Fan-Out Driver Platform Services for Novell Identity...
Moderate
Unreviewed
CVE-2007-6625
was published
May 1, 2022
Format string vulnerability in the ext_yahoo_contact_added function in yahoo.c in Miranda IM 0.7...
Moderate
Unreviewed
CVE-2007-5396
was published
May 1, 2022
Format string vulnerability in ALPass 2.7 English and 3.02 Korean might allow user-assisted...
Moderate
Unreviewed
CVE-2007-4550
was published
May 1, 2022
IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local users to create arbitrary...
Moderate
Unreviewed
CVE-2007-4273
was published
May 1, 2022
Untrusted search path vulnerability in the add_filename_to_string function in intl/gettext...
Moderate
Unreviewed
CVE-2007-2027
was published
May 1, 2022
ProTip!
Advisories are also available from the
GraphQL API