Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,683
Erlang
29
GitHub Actions
16
Go
1,708
Maven
4,944
npm
3,473
NuGet
603
pip
2,995
Pub
10
RubyGems
826
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+

309 advisories

Pivotal RabbitMQ is vulnerable to a denial of service attack High
CVE-2019-11287 was published for RabbitMQ (Erlang) May 24, 2022
An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to cause a denial of... Moderate Unreviewed
CVE-2019-18420 was published May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... Moderate Unreviewed
CVE-2019-13318 was published May 24, 2022
A Format String: CWE-134 vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX... Critical Unreviewed
CVE-2019-6840 was published May 24, 2022
cPanel before 60.0.25 allows format-string injection in exception-message handling (SEC-171). High Unreviewed
CVE-2016-10773 was published May 24, 2022
The ABB IDAL HTTP server mishandles format strings in a username or cookie during the... High Unreviewed
CVE-2019-7228 was published May 24, 2022
The ABB IDAL FTP server mishandles format strings in a username during the authentication process... High Unreviewed
CVE-2019-7230 was published May 24, 2022
An issue was discovered in scopd on Motorola routers CX2 1.01 and M2 1.01. There is a Use of an... Critical Unreviewed
CVE-2019-12297 was published May 24, 2022
Format string vulnerability in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows... High Unreviewed
CVE-2018-14713 was published May 24, 2022
Multiple format string vulnerabilities in the python module in RRDtool, as used in Zenoss Core... High Unreviewed
CVE-2014-6262 was published May 17, 2022
Multiple format string vulnerabilities in White_Dune before 0.29beta851 have unspecified impact... High Unreviewed
CVE-2008-7228 was published May 17, 2022
Format string vulnerability in authcfg.cgi in Accoria Web Server (aka Rock Web Server) 1.4.7... High Unreviewed
CVE-2010-2271 was published May 17, 2022
Format string vulnerability in PackageKit in Apple Mac OS X 10.6.x before 10.6.6 allows man-in... Moderate Unreviewed
CVE-2010-4013 was published May 17, 2022
Multiple format string vulnerabilities in the phar extension in PHP 5.3 before 5.3.2 allow... Moderate Unreviewed
CVE-2010-2094 was published May 17, 2022
Multiple format string vulnerabilities in AppleScript in Apple Mac OS X before 10.6.7 allow... Moderate Unreviewed
CVE-2011-0173 was published May 17, 2022
Format string vulnerability in RealNetworks Helix Server 12.x, 13.x, and 14.x before 14.2, and... High Unreviewed
CVE-2010-4235 was published May 17, 2022
Format string vulnerability in stream.c in the phar extension in PHP 5.3.x through 5.3.3 allows... Moderate Unreviewed
CVE-2010-2950 was published May 17, 2022
Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail... High Unreviewed
CVE-2011-2475 was published May 17, 2022
Format string vulnerability in the logText function in shmemmgr9.dll in IGSSdataServer.exe 9.00... High Unreviewed
CVE-2011-1568 was published May 17, 2022
Format string vulnerability in the debug-logging feature in Application Firewall in Apple Mac OS... Moderate Unreviewed
CVE-2011-0185 was published May 17, 2022
The silc_http_server_parse function in lib/silchttp/silchttpserver.c in the internal HTTP server... Moderate Unreviewed
CVE-2008-7160 was published May 17, 2022
Multiple format string vulnerabilities in the DCC functionality in KVIrc 3.4 and 4.0 have... High Unreviewed
CVE-2010-2451 was published May 17, 2022
Format string vulnerability in the nsrd RPC service in EMC NetWorker 7.6.3 and 7.6.4 before 7.6.4... High Unreviewed
CVE-2012-2288 was published May 17, 2022
Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before... High Unreviewed
CVE-2011-1764 was published May 17, 2022
Format string vulnerability in the register_disk function in block/genhd.c in the Linux kernel... Moderate Unreviewed
CVE-2013-2851 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API