Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

184 advisories

Loading
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode... High Unreviewed
CVE-2022-35878 was published Oct 25, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect... High Unreviewed
CVE-2022-35884 was published Oct 25, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect... High Unreviewed
CVE-2022-35886 was published Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode... High Unreviewed
CVE-2022-35879 was published Oct 25, 2022
Format string vulnerability in the auth_debug function in Courier-IMAP 1.6.0 through 2.2.1 and 3... High Unreviewed
CVE-2004-0777 was published Apr 29, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode... High Unreviewed
CVE-2022-35880 was published Oct 25, 2022
The calendar module in phpWebSite 0.9.x and earlier allows remote attackers to cause a denial of... High Unreviewed
CVE-2003-0738 was published Apr 29, 2022
In Weidmueller Industrial WLAN devices in multiple versions an exploitable format string... High Unreviewed
CVE-2021-33535 was published May 24, 2022
IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.3 system core component is... High Unreviewed
CVE-2021-29740 was published May 24, 2022
A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to... High Unreviewed
CVE-2021-30145 was published May 24, 2022
A format string vulnerability in FortiWeb 6.3.0 through 6.3.5 may allow an authenticated, remote... High Unreviewed
CVE-2020-29018 was published May 24, 2022
On Audi A7 MMI 2014 vehicles, the Bluetooth stack in Audi A7 MMI Multiplayer with version (N... High Unreviewed
CVE-2020-27524 was published May 24, 2022
AnyDesk before 5.5.3 on Linux and FreeBSD has a format string vulnerability that can be exploited... High Unreviewed
CVE-2020-13160 was published May 24, 2022
Format string vulnerability in authcfg.cgi in Accoria Web Server (aka Rock Web Server) 1.4.7... High Unreviewed
CVE-2010-2271 was published May 17, 2022
Format string vulnerability in RealNetworks Helix Server 12.x, 13.x, and 14.x before 14.2, and... High Unreviewed
CVE-2010-4235 was published May 17, 2022
Multiple format string vulnerabilities in White_Dune before 0.29beta851 have unspecified impact... High Unreviewed
CVE-2008-7228 was published May 17, 2022
Format string vulnerability in the logText function in shmemmgr9.dll in IGSSdataServer.exe 9.00... High Unreviewed
CVE-2011-1568 was published May 17, 2022
Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail... High Unreviewed
CVE-2011-2475 was published May 17, 2022
Multiple format string vulnerabilities in the DCC functionality in KVIrc 3.4 and 4.0 have... High Unreviewed
CVE-2010-2451 was published May 17, 2022
Format string vulnerability in the nsrd RPC service in EMC NetWorker 7.6.3 and 7.6.4 before 7.6.4... High Unreviewed
CVE-2012-2288 was published May 17, 2022
Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before... High Unreviewed
CVE-2011-1764 was published May 17, 2022
Format string vulnerability in the token processing system (pki-tps) in Red Hat Certificate... High Unreviewed
CVE-2013-1886 was published May 17, 2022
Format string vulnerability in the CmdKeywords function in funct1.c in latex2rtf before 2.3.10... High Unreviewed
CVE-2015-8106 was published May 17, 2022
Format string vulnerability in the _vsnsprintf function in rrobotd.exe in the Device Manager in... High Unreviewed
CVE-2013-0929 was published May 17, 2022
Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System... High Unreviewed
CVE-2013-4258 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database