Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,683
Erlang
29
GitHub Actions
16
Go
1,708
Maven
4,944
npm
3,473
NuGet
603
pip
2,995
Pub
10
RubyGems
826
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+

309 advisories

A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.5,... Moderate Unreviewed
CVE-2023-45583 was published May 14, 2024
A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.4,... Moderate Unreviewed
CVE-2023-36640 was published May 14, 2024
Foxit PDF Reader print Method Use of Externally-Controlled Format String Information Disclosure... Low Unreviewed
CVE-2021-34970 was published May 8, 2024
Use of Externally-Controlled Format String vulnerability in Merge DICOM Toolkit C/C++ on Windows.... Moderate Unreviewed
CVE-2024-23914 was published May 3, 2024
In the standard library in Rust before 1.50.3, there is an optimization for joining strings that... High Unreviewed
CVE-2020-36323 was published May 24, 2022
A use of externally-controlled format string vulnerability [CWE-134] in FortiOS version 7.4.1 and... Moderate Unreviewed
CVE-2023-48784 was published Apr 9, 2024
A format string vulnerability exists in Motorola MTM5000 series firmware AT command handler for... High Unreviewed
CVE-2022-26941 was published Oct 19, 2023
ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within... High Unreviewed
CVE-2023-41349 was published Sep 18, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This... Critical Unreviewed
CVE-2023-35087 was published Jul 21, 2023
A format string vulnerability in the Zyxel ATP series firmware versions 5.10 through 5.36 Patch 2... High Unreviewed
CVE-2023-33011 was published Jul 17, 2023
A use of externally-controlled format string in Fortinet FortiOS version 7.2.0 through 7.2.4,... High Unreviewed
CVE-2022-43953 was published Jun 13, 2023
On Triangle MicroWorks' SCADA Data Gateway version <= v5.01.03, an unauthenticated attacker can... Critical Unreviewed
CVE-2023-2186 was published Jun 7, 2023
Use of externally-controlled format string vulnerability in mPOS TUI trustlet prior to SMR May... High Unreviewed
CVE-2023-21497 was published May 4, 2023
A format string vulnerability in a binary of the Zyxel NBG-418N v2 firmware versions prior to V1... Moderate Unreviewed
CVE-2023-22923 was published May 1, 2023
A valid, authenticated user may be able to trigger a denial of service of the XCC web user... High Unreviewed
CVE-2023-25492 was published May 1, 2023
This vulnerability allows remote attackers to disclose sensitive information on affected... Moderate Unreviewed
CVE-2019-13318 was published May 24, 2022
cPanel before 60.0.25 allows format-string injection in exception-message handling (SEC-171). High Unreviewed
CVE-2016-10773 was published May 24, 2022
An issue was discovered in scopd on Motorola routers CX2 1.01 and M2 1.01. There is a Use of an... Critical Unreviewed
CVE-2019-12297 was published May 24, 2022
Format string vulnerability in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows... High Unreviewed
CVE-2018-14713 was published May 24, 2022
Multiple format string vulnerabilities in the python module in RRDtool, as used in Zenoss Core... High Unreviewed
CVE-2014-6262 was published May 17, 2022
** DISPUTED ** In Tcl 8.6.11, a format string vulnerability in nmakehlp.c might allow code... High Unreviewed
CVE-2021-35331 was published May 24, 2022
It is identified a format string vulnerability in ASUS RT-AX56U V2’s iperf client function API.... High Unreviewed
CVE-2023-39240 was published Sep 7, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This... High Unreviewed
CVE-2023-35086 was published Jul 21, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused... High Unreviewed
CVE-2023-39238 was published Sep 7, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This... High Unreviewed
CVE-2023-39239 was published Sep 7, 2023
ProTip! Advisories are also available from the GraphQL API