GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
327 advisories
Filter by severity
The zmq3 input and output modules in rsyslog before 8.28.0 interpreted description fields as...
Critical
Unreviewed
CVE-2017-12588
was published
May 17, 2022
A use of externally-controlled format string vulnerability has been reported to affect several...
Low
Unreviewed
CVE-2024-50403
was published
Dec 6, 2024
A use of externally-controlled format string vulnerability has been reported to affect several...
Low
Unreviewed
CVE-2024-50402
was published
Dec 6, 2024
The HttpRequest object allows to get the HTTP headers from the server's response after sending...
Critical
Unreviewed
CVE-2024-42330
was published
Nov 27, 2024
A use of externally-controlled format string vulnerability has been reported to affect several...
Low
Unreviewed
CVE-2024-50401
was published
Nov 22, 2024
A use of externally-controlled format string vulnerability has been reported to affect several...
Low
Unreviewed
CVE-2024-50400
was published
Nov 22, 2024
A use of externally-controlled format string vulnerability has been reported to affect several...
High
Unreviewed
CVE-2024-50397
was published
Nov 22, 2024
A use of externally-controlled format string vulnerability has been reported to affect several...
High
Unreviewed
CVE-2024-50396
was published
Nov 22, 2024
A use of externally-controlled format string vulnerability has been reported to affect several...
Low
Unreviewed
CVE-2024-50399
was published
Nov 22, 2024
A use of externally-controlled format string vulnerability has been reported to affect several...
Low
Unreviewed
CVE-2024-50398
was published
Nov 22, 2024
DMitry (Deepmagic Information Gathering Tool) 1.3a has a format-string vulnerability, with a...
High
Unreviewed
CVE-2024-31837
was published
Apr 30, 2024
In versions of Zend Server 8.5 and prior to version 9.2 a format string injection was discovered....
Critical
Unreviewed
CVE-2024-9129
was published
Oct 22, 2024
A use of externally-controlled format string in Fortinet FortiAnalyzer versions 7.4.0 through 7.4...
High
Unreviewed
CVE-2024-45330
was published
Oct 8, 2024
Apache Airflow vulnerable to Use of Externally-Controlled Format String
High
CVE-2022-40604
was published
for
apache-airflow
(pip)
Sep 22, 2022
A Use of Externally-Controlled Format String vulnerability in the Packet Forwarding Engine (PFE)...
High
Unreviewed
CVE-2024-39529
was published
Jul 11, 2024
Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11 and earlier, and PAN-OS 8.1.2...
High
Unreviewed
CVE-2019-1579
was published
May 24, 2022
Format String vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS...
High
Unreviewed
CVE-2018-0175
was published
May 13, 2022
Format string vulnerability in ArcGIS for ESRI ArcInfo Workstation 9.0 allows local users to gain...
High
Unreviewed
CVE-2005-1394
was published
May 1, 2022
In the Linux kernel, the following vulnerability has been resolved:
wifi: iwlwifi: dbg-tlv:...
Critical
Unreviewed
CVE-2024-35845
was published
May 17, 2024
OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable...
Moderate
Unreviewed
CVE-2024-4641
was published
Jun 25, 2024
Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2024-6145
was published
Jun 19, 2024
A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.5,...
Moderate
Unreviewed
CVE-2023-45583
was published
May 14, 2024
ProTip!
Advisories are also available from the
GraphQL API