Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,086
Maven
5,000+
npm
3,747
NuGet
674
pip
3,436
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

328 advisories

Loading
In BIG-IP starting in versions 17.0.0, 16.1.2.2, 15.1.5.1, 14.1.4.6, and 13.1.5 on their... Critical Unreviewed
CVE-2023-22374 was published Feb 1, 2023
Multiple format string vulnerabilities in Condor 7.2.0 through 7.6.4, and possibly certain 7.7.x... Moderate Unreviewed
CVE-2011-4930 was published May 13, 2022
A flaw was found in the Red Hat OpenShift API Management product. User input is not validated... Moderate Unreviewed
CVE-2021-3442 was published Aug 23, 2022
Format string vulnerability in libxml2 before 2.9.4 allows attackers to have unspecified impact... Critical Unreviewed
CVE-2016-4448 was published May 13, 2022
It was found that usage of snprintf function in feature/locks translator of glusterfs server 3.8... Moderate Unreviewed
CVE-2018-14661 was published May 13, 2022
Multiple format string vulnerabilities in isns.c in (1) Linux SCSI target framework (aka tgt or... Moderate Unreviewed
CVE-2010-0743 was published May 2, 2022
Use of Externally-Controlled Format String in wire-avs High
CVE-2021-41193 was published for com.wire:avs (Maven) Mar 1, 2022
Multiple format string vulnerabilities in phar_object.c in the phar extension in PHP 5.3.5 and... High Unreviewed
CVE-2011-1153 was published May 17, 2022
This vulnerability allows local attackers to escalate privileges on affected installations of... High Unreviewed
CVE-2022-24051 was published Feb 19, 2022
Format string vulnerability in the p_cgi_error function in python/neo_cgi.c in the Python CGI Kit... High Unreviewed
CVE-2011-4357 was published May 17, 2022
Multiple format string vulnerabilities in the error reporting functionality in the YAML::LibYAML ... Moderate Unreviewed
CVE-2012-1152 was published May 17, 2022
Multiple format string vulnerabilities in FlightGear 2.6 and earlier and SimGear 2.6 and earlier... High Unreviewed
CVE-2012-2090 was published May 17, 2022
Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl)... Moderate Unreviewed
CVE-2012-1151 was published May 17, 2022
Format string vulnerability in VMware OVF Tool 2.1 on Windows, as used in VMware Workstation 8.x... High Unreviewed
CVE-2012-3569 was published May 17, 2022
TiDB vulnerable to Use of Externally-Controlled Format String Critical
CVE-2022-3023 was published for github.com/pingcap/tidb (Go) Nov 4, 2022
dwisiswant0
Multiple format string vulnerabilities in Yet Another Radius Daemon (YARD RADIUS) 1.1.2 allow... High Unreviewed
CVE-2013-4147 was published May 17, 2022
Format string vulnerability in the client in Tftpd32 before 4.50 allows remote servers to cause a... Moderate Unreviewed
CVE-2013-6809 was published May 17, 2022
The bashMail function in cms/data/skins/techjunkie/fragments/contacts/functions.php in... Moderate Unreviewed
CVE-2014-1683 was published May 17, 2022
NetApp Data ONTAP before 8.2.5 and 8.3.x before 8.3.2P12 allow remote authenticated users to... Moderate Unreviewed
CVE-2016-1895 was published May 17, 2022
Multiple format string vulnerabilities in the parse_error_msg function in parsehelp.c in dpkg... Moderate Unreviewed
CVE-2014-8625 was published May 17, 2022
Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows... High Unreviewed
CVE-2014-9157 was published May 17, 2022
Format string vulnerability in the zend_throw_or_error function in Zend/zend_execute_API.c in PHP... Critical Unreviewed
CVE-2015-8617 was published May 17, 2022
Format string vulnerability in Xitami Web Server 2.2a through 2.5c2, and possibly other versions,... High Unreviewed
CVE-2008-6519 was published May 17, 2022
Format string vulnerability in MemeCode Software i.Scribe 1.88 through 2.00 before Beta9 allows... High Unreviewed
CVE-2008-7074 was published May 17, 2022
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. A crafted HTTP... High Unreviewed
CVE-2021-43041 was published Dec 7, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database