Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,972
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,983
npm
3,518
NuGet
609
pip
3,094
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

312 advisories

Loading
Multiple format string vulnerabilities in the phar extension in PHP 5.3 before 5.3.2 allow... Moderate Unreviewed
CVE-2010-2094 was published May 17, 2022
Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail... High Unreviewed
CVE-2011-2475 was published May 17, 2022
Format string vulnerability in the debug-logging feature in Application Firewall in Apple Mac OS... Moderate Unreviewed
CVE-2011-0185 was published May 17, 2022
A vulnerability was found in intgr uqm-wasm. It has been classified as critical. This affects the... Critical Unreviewed
CVE-2020-36643 was published Jan 6, 2023
The silc_http_server_parse function in lib/silchttp/silchttpserver.c in the internal HTTP server... Moderate Unreviewed
CVE-2008-7160 was published May 17, 2022
Multiple format string vulnerabilities in the DCC functionality in KVIrc 3.4 and 4.0 have... High Unreviewed
CVE-2010-2451 was published May 17, 2022
Format string vulnerability in the nsrd RPC service in EMC NetWorker 7.6.3 and 7.6.4 before 7.6.4... High Unreviewed
CVE-2012-2288 was published May 17, 2022
Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before... High Unreviewed
CVE-2011-1764 was published May 17, 2022
Format string vulnerability in the register_disk function in block/genhd.c in the Linux kernel... Moderate Unreviewed
CVE-2013-2851 was published May 17, 2022
Format string vulnerability in CoreServicesUIAgent in Apple OS X 10.9.x through 10.9.2 allows... Moderate Unreviewed
CVE-2014-1315 was published May 17, 2022
Format string vulnerability in the PROJECT::write_account_file function in client/cs_account.cpp... Moderate Unreviewed
CVE-2013-7386 was published May 17, 2022
Format string vulnerability in the rrdtool module 1.4.7 for Python, as used in Zenoss, allows... Moderate Unreviewed
CVE-2013-2131 was published May 17, 2022
Format string vulnerability in the token processing system (pki-tps) in Red Hat Certificate... High Unreviewed
CVE-2013-1886 was published May 17, 2022
Format string vulnerability in the up.time client in Idera Uptime Infrastructure Monitor 6.0 and... Moderate Unreviewed
CVE-2015-2894 was published May 17, 2022
Format string vulnerability in the CmdKeywords function in funct1.c in latex2rtf before 2.3.10... High Unreviewed
CVE-2015-8106 was published May 17, 2022
Format string vulnerability in the _vsnsprintf function in rrobotd.exe in the Device Manager in... High Unreviewed
CVE-2013-0929 was published May 17, 2022
Multiple format string vulnerabilities in mcrypt 2.6.8 and earlier might allow user-assisted... Moderate Unreviewed
CVE-2012-4426 was published May 17, 2022
Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System... High Unreviewed
CVE-2013-4258 was published May 17, 2022
A vulnerability was found in multimon-ng. It has been rated as critical. This issue affects the... Critical Unreviewed
CVE-2020-36619 was published Dec 19, 2022
Format string vulnerability in cgiemail and cgiecho allows remote attackers to execute arbitrary... High Unreviewed
CVE-2017-5613 was published May 17, 2022
Format string vulnerability in Cisco Email Security Appliance (ESA) 7.6.0 and 8.0.0 allows remote... Moderate Unreviewed
CVE-2015-6285 was published May 17, 2022
Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has a format string issue... Critical Unreviewed
CVE-2015-7271 was published May 17, 2022
Format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code. High Unreviewed
CVE-2015-8107 was published May 17, 2022
CloudView NMS before 2.10a has a format string issue exploitable over SNMP. Critical Unreviewed
CVE-2016-5074 was published May 17, 2022
A vulnerability in the DHCP code for the Zero Touch Provisioning feature of Cisco ASR 920 Series... High Unreviewed
CVE-2017-3859 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API