Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

87 advisories

Loading
The silc_asn1_encoder function in lib/silcasn1/silcasn1_encode.c in Secure Internet Live... Moderate Unreviewed
CVE-2008-7159 was published May 17, 2022
Format string vulnerability in Cisco Email Security Appliance (ESA) 7.6.0 and 8.0.0 allows remote... Moderate Unreviewed
CVE-2015-6285 was published May 17, 2022
Multiple format string vulnerabilities in mcrypt 2.6.8 and earlier might allow user-assisted... Moderate Unreviewed
CVE-2012-4426 was published May 17, 2022
Format string vulnerability in the up.time client in Idera Uptime Infrastructure Monitor 6.0 and... Moderate Unreviewed
CVE-2015-2894 was published May 17, 2022
Format string vulnerability in the rrdtool module 1.4.7 for Python, as used in Zenoss, allows... Moderate Unreviewed
CVE-2013-2131 was published May 17, 2022
Format string vulnerability in the PROJECT::write_account_file function in client/cs_account.cpp... Moderate Unreviewed
CVE-2013-7386 was published May 17, 2022
Format string vulnerability in CoreServicesUIAgent in Apple OS X 10.9.x through 10.9.2 allows... Moderate Unreviewed
CVE-2014-1315 was published May 17, 2022
Format string vulnerability in the register_disk function in block/genhd.c in the Linux kernel... Moderate Unreviewed
CVE-2013-2851 was published May 17, 2022
The silc_http_server_parse function in lib/silchttp/silchttpserver.c in the internal HTTP server... Moderate Unreviewed
CVE-2008-7160 was published May 17, 2022
Format string vulnerability in the debug-logging feature in Application Firewall in Apple Mac OS... Moderate Unreviewed
CVE-2011-0185 was published May 17, 2022
Multiple format string vulnerabilities in the phar extension in PHP 5.3 before 5.3.2 allow... Moderate Unreviewed
CVE-2010-2094 was published May 17, 2022
Format string vulnerability in stream.c in the phar extension in PHP 5.3.x through 5.3.3 allows... Moderate Unreviewed
CVE-2010-2950 was published May 17, 2022
Multiple format string vulnerabilities in AppleScript in Apple Mac OS X before 10.6.7 allow... Moderate Unreviewed
CVE-2011-0173 was published May 17, 2022
Format string vulnerability in PackageKit in Apple Mac OS X 10.6.x before 10.6.6 allows man-in... Moderate Unreviewed
CVE-2010-4013 was published May 17, 2022
An exploitable format string vulnerability exists in the iw_console conio_writestr functionality... Moderate Unreviewed
CVE-2019-5143 was published May 24, 2022
A Format String vulnerablity exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW... Moderate Unreviewed
CVE-2021-28846 was published May 24, 2022
Depending on the way the format strings in the card label are crafted it's possible to leak... Moderate Unreviewed
CVE-2022-2652 was published Aug 5, 2022
Format string vulnerability in AMX 0.9.2 and earlier, a plugin for Valve Software's Half-Life... Moderate Unreviewed
CVE-2003-1381 was published Apr 29, 2022
A remote denial of service vulnerability was discovered in Aruba Instant version(s): Aruba... Moderate Unreviewed
CVE-2021-37735 was published May 24, 2022
Unspecified vulnerability in Window Maker 0.80.2 and earlier allows attackers to perform unknown... Moderate Unreviewed
CVE-2004-2714 was published Apr 29, 2022
Format string vulnerability in a logging function as used by various SFTP servers, including (1)... Moderate Unreviewed
CVE-2006-0705 was published May 1, 2022
Format string vulnerability in PunkBuster 1.180 and earlier, as used by Soldier of Fortune II and... Moderate Unreviewed
CVE-2006-0771 was published May 1, 2022
Format string vulnerability in the CF_syslog function launchd in Apple Mac OS X 10.4 up to 10.4.6... Moderate Unreviewed
CVE-2006-1471 was published May 1, 2022
Multiple format string vulnerabilities in Empire Server before 4.3.1 allow attackers to cause a... Moderate Unreviewed
CVE-2006-1840 was published May 1, 2022
Format string vulnerability in the raydium_log function in console.c in Raydium before SVN... Moderate Unreviewed
CVE-2006-2409 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database