Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,299
Erlang
31
GitHub Actions
21
Go
2,064
Maven
5,000+
npm
3,744
NuGet
668
pip
3,424
Pub
12
RubyGems
892
Rust
877
Swift
36
Unreviewed advisories
All unreviewed
5,000+

327 advisories

Loading
Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System... High Unreviewed
CVE-2013-4258 was published May 17, 2022
Format string vulnerability in Cisco Email Security Appliance (ESA) 7.6.0 and 8.0.0 allows remote... Moderate Unreviewed
CVE-2015-6285 was published May 17, 2022
Format string vulnerability in cgiemail and cgiecho allows remote attackers to execute arbitrary... High Unreviewed
CVE-2017-5613 was published May 17, 2022
Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has a format string issue... Critical Unreviewed
CVE-2015-7271 was published May 17, 2022
Format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code. High Unreviewed
CVE-2015-8107 was published May 17, 2022
CloudView NMS before 2.10a has a format string issue exploitable over SNMP. Critical Unreviewed
CVE-2016-5074 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue... High Unreviewed
CVE-2017-2403 was published May 17, 2022
A vulnerability in the DHCP code for the Zero Touch Provisioning feature of Cisco ASR 920 Series... High Unreviewed
CVE-2017-3859 was published May 17, 2022
The zmq3 input and output modules in rsyslog before 8.28.0 interpreted description fields as... Critical Unreviewed
CVE-2017-12588 was published May 17, 2022
The web management interface in 3Com Wireless 8760 Dual Radio 11a/b/g PoE Access Point allows... High Unreviewed
CVE-2008-6395 was published May 17, 2022
Multiple format string vulnerabilities in the SSI filter in Xitami Web Server 2.5c2, and possibly... High Unreviewed
CVE-2008-6520 was published May 17, 2022
The silc_asn1_encoder function in lib/silcasn1/silcasn1_encode.c in Secure Internet Live... Moderate Unreviewed
CVE-2008-7159 was published May 17, 2022
Format string vulnerability in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51... High Unreviewed
CVE-2011-0270 was published May 17, 2022
Multiple format string vulnerabilities in phar_object.c in the phar extension in PHP 5.3.5 and... High Unreviewed
CVE-2011-1153 was published May 17, 2022
Format string vulnerability in the p_cgi_error function in python/neo_cgi.c in the Python CGI Kit... High Unreviewed
CVE-2011-4357 was published May 17, 2022
Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl)... Moderate Unreviewed
CVE-2012-1151 was published May 17, 2022
Multiple format string vulnerabilities in the error reporting functionality in the YAML::LibYAML ... Moderate Unreviewed
CVE-2012-1152 was published May 17, 2022
Multiple format string vulnerabilities in FlightGear 2.6 and earlier and SimGear 2.6 and earlier... High Unreviewed
CVE-2012-2090 was published May 17, 2022
Format string vulnerability in VMware OVF Tool 2.1 on Windows, as used in VMware Workstation 8.x... High Unreviewed
CVE-2012-3569 was published May 17, 2022
Multiple format string vulnerabilities in Yet Another Radius Daemon (YARD RADIUS) 1.1.2 allow... High Unreviewed
CVE-2013-4147 was published May 17, 2022
Format string vulnerability in the client in Tftpd32 before 4.50 allows remote servers to cause a... Moderate Unreviewed
CVE-2013-6809 was published May 17, 2022
The bashMail function in cms/data/skins/techjunkie/fragments/contacts/functions.php in... Moderate Unreviewed
CVE-2014-1683 was published May 17, 2022
NetApp Data ONTAP before 8.2.5 and 8.3.x before 8.3.2P12 allow remote authenticated users to... Moderate Unreviewed
CVE-2016-1895 was published May 17, 2022
Multiple format string vulnerabilities in the parse_error_msg function in parsehelp.c in dpkg... Moderate Unreviewed
CVE-2014-8625 was published May 17, 2022
Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows... High Unreviewed
CVE-2014-9157 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database