GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,786
Composer 4,248
Erlang 31
GitHub Actions 21
Go 2,015
Maven 5,202
npm 3,721
NuGet 662
pip 3,400
Pub 11
RubyGems 890
Rust 852
Swift 36

Unreviewed advisories

All unreviewed 236,197

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

309 advisories

Filter by severity

Sort by

Least recently updated

Multiple format string vulnerabilities in the phar extension in PHP 5.3 before 5.3.2 allow... Moderate Unreviewed

CVE-2010-2094 was published May 17, 2022

Multiple format string vulnerabilities in AppleScript in Apple Mac OS X before 10.6.7 allow... Moderate Unreviewed

CVE-2011-0173 was published May 17, 2022

Format string vulnerability in RealNetworks Helix Server 12.x, 13.x, and 14.x before 14.2, and... High Unreviewed

CVE-2010-4235 was published May 17, 2022

Format string vulnerability in stream.c in the phar extension in PHP 5.3.x through 5.3.3 allows... Moderate Unreviewed

CVE-2010-2950 was published May 17, 2022

Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail... High Unreviewed

CVE-2011-2475 was published May 17, 2022

Format string vulnerability in the logText function in shmemmgr9.dll in IGSSdataServer.exe 9.00... High Unreviewed

CVE-2011-1568 was published May 17, 2022

Format string vulnerability in the debug-logging feature in Application Firewall in Apple Mac OS... Moderate Unreviewed

CVE-2011-0185 was published May 17, 2022

The silc_http_server_parse function in lib/silchttp/silchttpserver.c in the internal HTTP server... Moderate Unreviewed

CVE-2008-7160 was published May 17, 2022

Multiple format string vulnerabilities in the DCC functionality in KVIrc 3.4 and 4.0 have... High Unreviewed

CVE-2010-2451 was published May 17, 2022

Format string vulnerability in the nsrd RPC service in EMC NetWorker 7.6.3 and 7.6.4 before 7.6.4... High Unreviewed

CVE-2012-2288 was published May 17, 2022

Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before... High Unreviewed

CVE-2011-1764 was published May 17, 2022

Format string vulnerability in the register_disk function in block/genhd.c in the Linux kernel... Moderate Unreviewed

CVE-2013-2851 was published May 17, 2022

Format string vulnerability in CoreServicesUIAgent in Apple OS X 10.9.x through 10.9.2 allows... Moderate Unreviewed

CVE-2014-1315 was published May 17, 2022

Format string vulnerability in the PROJECT::write_account_file function in client/cs_account.cpp... Moderate Unreviewed

CVE-2013-7386 was published May 17, 2022

Format string vulnerability in the rrdtool module 1.4.7 for Python, as used in Zenoss, allows... Moderate Unreviewed

CVE-2013-2131 was published May 17, 2022

Format string vulnerability in the token processing system (pki-tps) in Red Hat Certificate... High Unreviewed

CVE-2013-1886 was published May 17, 2022

Format string vulnerability in the up.time client in Idera Uptime Infrastructure Monitor 6.0 and... Moderate Unreviewed

CVE-2015-2894 was published May 17, 2022

Format string vulnerability in the CmdKeywords function in funct1.c in latex2rtf before 2.3.10... High Unreviewed

CVE-2015-8106 was published May 17, 2022

Format string vulnerability in the _vsnsprintf function in rrobotd.exe in the Device Manager in... High Unreviewed

CVE-2013-0929 was published May 17, 2022

Multiple format string vulnerabilities in mcrypt 2.6.8 and earlier might allow user-assisted... Moderate Unreviewed

CVE-2012-4426 was published May 17, 2022

Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System... High Unreviewed

CVE-2013-4258 was published May 17, 2022

Format string vulnerability in Cisco Email Security Appliance (ESA) 7.6.0 and 8.0.0 allows remote... Moderate Unreviewed

CVE-2015-6285 was published May 17, 2022

Format string vulnerability in cgiemail and cgiecho allows remote attackers to execute arbitrary... High Unreviewed

CVE-2017-5613 was published May 17, 2022

Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has a format string issue... Critical Unreviewed

CVE-2015-7271 was published May 17, 2022

Format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code. High Unreviewed

CVE-2015-8107 was published May 17, 2022

Previous 1 2 3 4 5 6 7 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

309 advisories