GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,141
Erlang
30
GitHub Actions
19
Go
1,943
Maven
5,000+
npm
3,684
NuGet
650
pip
3,303
Pub
11
RubyGems
878
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
317 advisories
Filter by severity
Multiple format string vulnerabilities in the SSI filter in Xitami Web Server 2.5c2, and possibly...
High
Unreviewed
CVE-2008-6520
was published
May 17, 2022
The silc_asn1_encoder function in lib/silcasn1/silcasn1_encode.c in Secure Internet Live...
Moderate
Unreviewed
CVE-2008-7159
was published
May 17, 2022
Format string vulnerability in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51...
High
Unreviewed
CVE-2011-0270
was published
May 17, 2022
Multiple format string vulnerabilities in phar_object.c in the phar extension in PHP 5.3.5 and...
High
Unreviewed
CVE-2011-1153
was published
May 17, 2022
Format string vulnerability in the p_cgi_error function in python/neo_cgi.c in the Python CGI Kit...
High
Unreviewed
CVE-2011-4357
was published
May 17, 2022
Multiple format string vulnerabilities in the error reporting functionality in the YAML::LibYAML ...
Moderate
Unreviewed
CVE-2012-1152
was published
May 17, 2022
Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl)...
Moderate
Unreviewed
CVE-2012-1151
was published
May 17, 2022
Multiple format string vulnerabilities in FlightGear 2.6 and earlier and SimGear 2.6 and earlier...
High
Unreviewed
CVE-2012-2090
was published
May 17, 2022
Format string vulnerability in VMware OVF Tool 2.1 on Windows, as used in VMware Workstation 8.x...
High
Unreviewed
CVE-2012-3569
was published
May 17, 2022
Multiple format string vulnerabilities in Yet Another Radius Daemon (YARD RADIUS) 1.1.2 allow...
High
Unreviewed
CVE-2013-4147
was published
May 17, 2022
Format string vulnerability in the client in Tftpd32 before 4.50 allows remote servers to cause a...
Moderate
Unreviewed
CVE-2013-6809
was published
May 17, 2022
The bashMail function in cms/data/skins/techjunkie/fragments/contacts/functions.php in...
Moderate
Unreviewed
CVE-2014-1683
was published
May 17, 2022
NetApp Data ONTAP before 8.2.5 and 8.3.x before 8.3.2P12 allow remote authenticated users to...
Moderate
Unreviewed
CVE-2016-1895
was published
May 17, 2022
Multiple format string vulnerabilities in the parse_error_msg function in parsehelp.c in dpkg...
Moderate
Unreviewed
CVE-2014-8625
was published
May 17, 2022
Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows...
High
Unreviewed
CVE-2014-9157
was published
May 17, 2022
Format string vulnerability in the zend_throw_or_error function in Zend/zend_execute_API.c in PHP...
Critical
Unreviewed
CVE-2015-8617
was published
May 17, 2022
Format string vulnerability in Xitami Web Server 2.2a through 2.5c2, and possibly other versions,...
High
Unreviewed
CVE-2008-6519
was published
May 17, 2022
Format string vulnerability in MemeCode Software i.Scribe 1.88 through 2.00 before Beta9 allows...
High
Unreviewed
CVE-2008-7074
was published
May 17, 2022
ovirt_safe_delete_config in ovirtfunctions.py and other unspecified locations in ovirt-node 3.0.0...
High
Unreviewed
CVE-2014-8170
was published
May 17, 2022
Format string vulnerability in the b43_request_firmware function in drivers/net/wireless/b43/main...
Moderate
Unreviewed
CVE-2013-2852
was published
May 17, 2022
Format string vulnerability in the sudo_debug function in Sudo 1.8.0 through 1.8.3p1 allows local...
High
Unreviewed
CVE-2012-0809
was published
May 14, 2022
Format string vulnerability in the log_message_cb function in otr-plugin.c in the Off-the-Record...
High
Unreviewed
CVE-2012-2369
was published
May 14, 2022
Open On-Chip Debugger (OpenOCD) 0.10.0 does not block attempts to use HTTP POST for sending data...
Critical
Unreviewed
CVE-2018-5704
was published
May 14, 2022
The remote management interface in Claymore Dual Miner 10.5 and earlier is vulnerable to an...
Critical
Unreviewed
CVE-2018-6317
was published
May 14, 2022
Huawei VP9660 V500R002C10 has a uncontrolled format string vulnerability when the license module...
Moderate
Unreviewed
CVE-2017-17132
was published
May 14, 2022
ProTip!
Advisories are also available from the
GraphQL API