GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,972
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,983
npm
3,518
NuGet
609
pip
3,094
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
177 advisories
Filter by severity
Multiple format string vulnerabilities in the gm_main_window_flash_message function in Ekiga...
High
Unreviewed
CVE-2007-1006
was published
May 1, 2022
Format string vulnerability in the afsacl.so VFS module in Samba 3.0.6 through 3.0.23d allows...
High
Unreviewed
CVE-2007-0454
was published
May 1, 2022
Multiple format string vulnerabilities in (1) _invitedToRoom: and (2) _invitedToDirectChat: in...
High
Unreviewed
CVE-2007-0344
was published
May 1, 2022
Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run...
High
Unreviewed
CVE-2006-6772
was published
May 1, 2022
Format string vulnerability in the WriteText function in agl_text.cpp in Milan Mimica Sparklet 0...
High
Unreviewed
CVE-2006-3573
was published
May 1, 2022
Multiple unspecified format string vulnerabilities in Dia have unspecified impact and attack...
High
Unreviewed
CVE-2006-2453
was published
May 1, 2022
Multiple format string vulnerabilities in the logging code in Clam AntiVirus (ClamAV) before 0.88...
High
Unreviewed
CVE-2006-1615
was published
May 1, 2022
Multiple format string vulnerabilities in the auth_ldap_log_reason function in Apache auth_ldap 1...
High
Unreviewed
CVE-2006-0150
was published
May 1, 2022
Format string vulnerability in the error-reporting feature in the mysqli extension in PHP 5.1.0...
High
Unreviewed
CVE-2006-0200
was published
May 1, 2022
Format string vulnerability in the logging functionality in BitDefender AntiVirus 7.2 through 9...
High
Unreviewed
CVE-2005-3154
was published
May 1, 2022
Format string vulnerability in cgi.c for Monkey daemon (monkeyd) before 0.9.1 allows remote...
High
Unreviewed
CVE-2005-1122
was published
May 1, 2022
Format string vulnerability in the administration function in Cisco Secure Access Control Server ...
High
Unreviewed
CVE-2002-0159
was published
Apr 30, 2022
Format string vulnerability in the LogMsg function in sercd before 2.3.1 and sredird 2.2.1 and...
High
Unreviewed
CVE-2004-2386
was published
Apr 29, 2022
Format string vulnerability in log.c in rssh before 2.2.2 allows remote authenticated users to...
High
Unreviewed
CVE-2004-1628
was published
Apr 29, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect...
High
Unreviewed
CVE-2022-35885
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect...
High
Unreviewed
CVE-2022-35884
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode...
High
Unreviewed
CVE-2022-35881
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect...
High
Unreviewed
CVE-2022-35886
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode...
High
Unreviewed
CVE-2022-35878
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect...
High
Unreviewed
CVE-2022-35887
was published
Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode...
High
Unreviewed
CVE-2022-35879
was published
Oct 25, 2022
Format string vulnerability in the auth_debug function in Courier-IMAP 1.6.0 through 2.2.1 and 3...
High
Unreviewed
CVE-2004-0777
was published
Apr 29, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode...
High
Unreviewed
CVE-2022-35880
was published
Oct 25, 2022
The calendar module in phpWebSite 0.9.x and earlier allows remote attackers to cause a denial of...
High
Unreviewed
CVE-2003-0738
was published
Apr 29, 2022
In Weidmueller Industrial WLAN devices in multiple versions an exploitable format string...
High
Unreviewed
CVE-2021-33535
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API