Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,141
Erlang
30
GitHub Actions
19
Go
1,943
Maven
5,000+
npm
3,684
NuGet
650
pip
3,303
Pub
11
RubyGems
878
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

317 advisories

Loading
The remote management interface in Claymore Dual Miner 10.5 and earlier is vulnerable to an... Critical Unreviewed
CVE-2018-6317 was published May 14, 2022
Open On-Chip Debugger (OpenOCD) 0.10.0 does not block attempts to use HTTP POST for sending data... Critical Unreviewed
CVE-2018-5704 was published May 14, 2022
Format string vulnerability in the log_message_cb function in otr-plugin.c in the Off-the-Record... High Unreviewed
CVE-2012-2369 was published May 14, 2022
Format string vulnerability in the sudo_debug function in Sudo 1.8.0 through 1.8.3p1 allows local... High Unreviewed
CVE-2012-0809 was published May 14, 2022
Format string vulnerability in the b43_request_firmware function in drivers/net/wireless/b43/main... Moderate Unreviewed
CVE-2013-2852 was published May 17, 2022
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. A crafted HTTP... High Unreviewed
CVE-2021-43041 was published Dec 7, 2021
Format string vulnerability in MemeCode Software i.Scribe 1.88 through 2.00 before Beta9 allows... High Unreviewed
CVE-2008-7074 was published May 17, 2022
Format string vulnerability in Xitami Web Server 2.2a through 2.5c2, and possibly other versions,... High Unreviewed
CVE-2008-6519 was published May 17, 2022
Format string vulnerability in the zend_throw_or_error function in Zend/zend_execute_API.c in PHP... Critical Unreviewed
CVE-2015-8617 was published May 17, 2022
Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows... High Unreviewed
CVE-2014-9157 was published May 17, 2022
Multiple format string vulnerabilities in the parse_error_msg function in parsehelp.c in dpkg... Moderate Unreviewed
CVE-2014-8625 was published May 17, 2022
NetApp Data ONTAP before 8.2.5 and 8.3.x before 8.3.2P12 allow remote authenticated users to... Moderate Unreviewed
CVE-2016-1895 was published May 17, 2022
The bashMail function in cms/data/skins/techjunkie/fragments/contacts/functions.php in... Moderate Unreviewed
CVE-2014-1683 was published May 17, 2022
Format string vulnerability in the client in Tftpd32 before 4.50 allows remote servers to cause a... Moderate Unreviewed
CVE-2013-6809 was published May 17, 2022
Multiple format string vulnerabilities in Yet Another Radius Daemon (YARD RADIUS) 1.1.2 allow... High Unreviewed
CVE-2013-4147 was published May 17, 2022
TiDB vulnerable to Use of Externally-Controlled Format String Critical
CVE-2022-3023 was published for github.com/pingcap/tidb (Go) Nov 4, 2022
dwisiswant0
Format string vulnerability in VMware OVF Tool 2.1 on Windows, as used in VMware Workstation 8.x... High Unreviewed
CVE-2012-3569 was published May 17, 2022
Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl)... Moderate Unreviewed
CVE-2012-1151 was published May 17, 2022
Multiple format string vulnerabilities in FlightGear 2.6 and earlier and SimGear 2.6 and earlier... High Unreviewed
CVE-2012-2090 was published May 17, 2022
Multiple format string vulnerabilities in the error reporting functionality in the YAML::LibYAML ... Moderate Unreviewed
CVE-2012-1152 was published May 17, 2022
Format string vulnerability in the p_cgi_error function in python/neo_cgi.c in the Python CGI Kit... High Unreviewed
CVE-2011-4357 was published May 17, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2022-24051 was published Feb 19, 2022
Multiple format string vulnerabilities in phar_object.c in the phar extension in PHP 5.3.5 and... High Unreviewed
CVE-2011-1153 was published May 17, 2022
Use of Externally-Controlled Format String in wire-avs High
CVE-2021-41193 was published for com.wire:avs (Maven) Mar 1, 2022
Multiple format string vulnerabilities in isns.c in (1) Linux SCSI target framework (aka tgt or... Moderate Unreviewed
CVE-2010-0743 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database