GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,249
Erlang
31
GitHub Actions
21
Go
2,018
Maven
5,000+
npm
3,723
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
857
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
87 advisories
Filter by severity
The silc_asn1_encoder function in lib/silcasn1/silcasn1_encode.c in Secure Internet Live...
Moderate
Unreviewed
CVE-2008-7159
was published
May 17, 2022
Format string vulnerability in Cisco Email Security Appliance (ESA) 7.6.0 and 8.0.0 allows remote...
Moderate
Unreviewed
CVE-2015-6285
was published
May 17, 2022
Multiple format string vulnerabilities in mcrypt 2.6.8 and earlier might allow user-assisted...
Moderate
Unreviewed
CVE-2012-4426
was published
May 17, 2022
Format string vulnerability in the up.time client in Idera Uptime Infrastructure Monitor 6.0 and...
Moderate
Unreviewed
CVE-2015-2894
was published
May 17, 2022
Format string vulnerability in the rrdtool module 1.4.7 for Python, as used in Zenoss, allows...
Moderate
Unreviewed
CVE-2013-2131
was published
May 17, 2022
Format string vulnerability in the PROJECT::write_account_file function in client/cs_account.cpp...
Moderate
Unreviewed
CVE-2013-7386
was published
May 17, 2022
Format string vulnerability in CoreServicesUIAgent in Apple OS X 10.9.x through 10.9.2 allows...
Moderate
Unreviewed
CVE-2014-1315
was published
May 17, 2022
Format string vulnerability in the register_disk function in block/genhd.c in the Linux kernel...
Moderate
Unreviewed
CVE-2013-2851
was published
May 17, 2022
The silc_http_server_parse function in lib/silchttp/silchttpserver.c in the internal HTTP server...
Moderate
Unreviewed
CVE-2008-7160
was published
May 17, 2022
Format string vulnerability in the debug-logging feature in Application Firewall in Apple Mac OS...
Moderate
Unreviewed
CVE-2011-0185
was published
May 17, 2022
Multiple format string vulnerabilities in the phar extension in PHP 5.3 before 5.3.2 allow...
Moderate
Unreviewed
CVE-2010-2094
was published
May 17, 2022
Format string vulnerability in stream.c in the phar extension in PHP 5.3.x through 5.3.3 allows...
Moderate
Unreviewed
CVE-2010-2950
was published
May 17, 2022
Multiple format string vulnerabilities in AppleScript in Apple Mac OS X before 10.6.7 allow...
Moderate
Unreviewed
CVE-2011-0173
was published
May 17, 2022
Format string vulnerability in PackageKit in Apple Mac OS X 10.6.x before 10.6.6 allows man-in...
Moderate
Unreviewed
CVE-2010-4013
was published
May 17, 2022
An exploitable format string vulnerability exists in the iw_console conio_writestr functionality...
Moderate
Unreviewed
CVE-2019-5143
was published
May 24, 2022
A Format String vulnerablity exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW...
Moderate
Unreviewed
CVE-2021-28846
was published
May 24, 2022
Depending on the way the format strings in the card label are crafted it's possible to leak...
Moderate
Unreviewed
CVE-2022-2652
was published
Aug 5, 2022
Format string vulnerability in AMX 0.9.2 and earlier, a plugin for Valve Software's Half-Life...
Moderate
Unreviewed
CVE-2003-1381
was published
Apr 29, 2022
A remote denial of service vulnerability was discovered in Aruba Instant version(s): Aruba...
Moderate
Unreviewed
CVE-2021-37735
was published
May 24, 2022
Unspecified vulnerability in Window Maker 0.80.2 and earlier allows attackers to perform unknown...
Moderate
Unreviewed
CVE-2004-2714
was published
Apr 29, 2022
Format string vulnerability in a logging function as used by various SFTP servers, including (1)...
Moderate
Unreviewed
CVE-2006-0705
was published
May 1, 2022
Format string vulnerability in PunkBuster 1.180 and earlier, as used by Soldier of Fortune II and...
Moderate
Unreviewed
CVE-2006-0771
was published
May 1, 2022
Format string vulnerability in the CF_syslog function launchd in Apple Mac OS X 10.4 up to 10.4.6...
Moderate
Unreviewed
CVE-2006-1471
was published
May 1, 2022
Multiple format string vulnerabilities in Empire Server before 4.3.1 allow attackers to cause a...
Moderate
Unreviewed
CVE-2006-1840
was published
May 1, 2022
Format string vulnerability in the raydium_log function in console.c in Raydium before SVN...
Moderate
Unreviewed
CVE-2006-2409
was published
May 1, 2022
ProTip!
Advisories are also available from the
GraphQL API