GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,787
Composer 4,248
Erlang 31
GitHub Actions 21
Go 2,016
Maven 5,202
npm 3,721
NuGet 662
pip 3,400
Pub 11
RubyGems 890
Rust 852
Swift 36

Unreviewed advisories

All unreviewed 236,241

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

309 advisories

Filter by severity

Sort by

Least recently updated

The HttpRequest object allows to get the HTTP headers from the server's response after sending... Critical Unreviewed

CVE-2024-42330 was published Nov 27, 2024

A use of externally-controlled format string vulnerability has been reported to affect several... High Unreviewed

CVE-2024-50397 was published Nov 22, 2024

A use of externally-controlled format string vulnerability has been reported to affect several... Low Unreviewed

CVE-2024-50399 was published Nov 22, 2024

A use of externally-controlled format string vulnerability has been reported to affect several... Low Unreviewed

CVE-2024-50401 was published Nov 22, 2024

A use of externally-controlled format string vulnerability has been reported to affect several... Low Unreviewed

CVE-2024-50398 was published Nov 22, 2024

A use of externally-controlled format string vulnerability has been reported to affect several... High Unreviewed

CVE-2024-50396 was published Nov 22, 2024

A use of externally-controlled format string vulnerability has been reported to affect several... Low Unreviewed

CVE-2024-50400 was published Nov 22, 2024

DMitry (Deepmagic Information Gathering Tool) 1.3a has a format-string vulnerability, with a... High Unreviewed

CVE-2024-31837 was published Apr 30, 2024

In versions of Zend Server 8.5 and prior to version 9.2 a format string injection was discovered.... Critical Unreviewed

CVE-2024-9129 was published Oct 22, 2024

A use of externally-controlled format string in Fortinet FortiAnalyzer versions 7.4.0 through 7.4... High Unreviewed

CVE-2024-45330 was published Oct 8, 2024

A Use of Externally-Controlled Format String vulnerability in the Packet Forwarding Engine (PFE)... High Unreviewed

CVE-2024-39529 was published Jul 11, 2024

Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11 and earlier, and PAN-OS 8.1.2... High Unreviewed

CVE-2019-1579 was published May 24, 2022

Format String vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS... High Unreviewed

CVE-2018-0175 was published May 13, 2022

Format string vulnerability in ArcGIS for ESRI ArcInfo Workstation 9.0 allows local users to gain... High Unreviewed

CVE-2005-1394 was published May 1, 2022

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: dbg-tlv:... Critical Unreviewed

CVE-2024-35845 was published May 17, 2024

OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable... Moderate Unreviewed

CVE-2024-4641 was published Jun 25, 2024

Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability. This vulnerability... High Unreviewed

CVE-2024-6145 was published Jun 19, 2024

A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.4,... Moderate Unreviewed

CVE-2023-36640 was published May 14, 2024

A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.5,... Moderate Unreviewed

CVE-2023-45583 was published May 14, 2024

Foxit PDF Reader print Method Use of Externally-Controlled Format String Information Disclosure... Low Unreviewed

CVE-2021-34970 was published May 8, 2024

Use of Externally-Controlled Format String vulnerability in Merge DICOM Toolkit C/C++ on Windows.... Moderate Unreviewed

CVE-2024-23914 was published May 3, 2024

In the standard library in Rust before 1.50.3, there is an optimization for joining strings that... High Unreviewed

CVE-2020-36323 was published May 24, 2022

A use of externally-controlled format string vulnerability [CWE-134] in FortiOS version 7.4.1 and... Moderate Unreviewed

CVE-2023-48784 was published Apr 9, 2024

A format string vulnerability exists in Motorola MTM5000 series firmware AT command handler for... High Unreviewed

CVE-2022-26941 was published Oct 19, 2023

ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within... High Unreviewed

CVE-2023-41349 was published Sep 18, 2023

Previous 1 2 3 4 5 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

309 advisories