GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,350
Erlang
31
GitHub Actions
22
Go
2,119
Maven
5,000+
npm
3,778
NuGet
680
pip
3,459
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+
91 advisories
Filter by severity
VMware Authentication Daemon 1.0 in vmware-authd.exe in the VMware Authorization Service in...
Moderate
Unreviewed
CVE-2009-3707
was published
May 2, 2022
Format string vulnerability in War FTP Daemon (warftpd) 1.82 RC 12 allows remote authenticated...
Moderate
Unreviewed
CVE-2009-5141
was published
May 2, 2022
Format string vulnerability in Ipswitch WS_FTP Professional 12 before 12.2 allows remote...
Moderate
Unreviewed
CVE-2009-4775
was published
May 2, 2022
VMware Authentication Daemon 1.0 in vmware-authd.exe in the VMware Authorization Service in...
Moderate
Unreviewed
CVE-2009-4811
was published
May 2, 2022
Multiple format string vulnerabilities in Network Authorization in Apple Mac OS X 10.6 before 10...
Moderate
Unreviewed
CVE-2010-1376
was published
May 2, 2022
Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that...
Moderate
Unreviewed
CVE-2004-0179
was published
May 3, 2022
Format string vulnerability in the SetImageInfo function in image.c for ImageMagick 6.2.3 and...
Moderate
Unreviewed
CVE-2006-0082
was published
May 3, 2022
Assuming radio permission is gained, missing input validation in modem interface driver prior to...
Moderate
Unreviewed
CVE-2021-25489
was published
May 24, 2022
The Pulse Secure Desktop (macOS) 5.3RX before 5.3R5 and 9.0R1 has a Format String Vulnerability.
Moderate
Unreviewed
CVE-2018-15749
was published
May 13, 2022
In Ceph, a format string flaw was found in the way libradosstriper parses input from user. A user...
Moderate
Unreviewed
CVE-2017-7519
was published
May 13, 2022
The dissect_dsmcc_un_download function in epan/dissectors/packet-mpeg-dsmcc.c in the MPEG DSM-CC...
Moderate
Unreviewed
CVE-2013-3560
was published
May 14, 2022
Format string vulnerability in the vinagre_utils_show_error function (src/vinagre-utils.c) in...
Moderate
Unreviewed
CVE-2008-5660
was published
May 14, 2022
The Baxter Spectrum WBM (v16, v16D38) and Baxter Spectrum WBM (v17, v17D19, v20D29 to v20D32)...
Moderate
Unreviewed
CVE-2022-26392
was published
Sep 10, 2022
Huawei VP9660 V500R002C10 has a uncontrolled format string vulnerability when the license module...
Moderate
Unreviewed
CVE-2017-17132
was published
May 14, 2022
Format string vulnerability in the b43_request_firmware function in drivers/net/wireless/b43/main...
Moderate
Unreviewed
CVE-2013-2852
was published
May 17, 2022
Multiple format string vulnerabilities in the parse_error_msg function in parsehelp.c in dpkg...
Moderate
Unreviewed
CVE-2014-8625
was published
May 17, 2022
NetApp Data ONTAP before 8.2.5 and 8.3.x before 8.3.2P12 allow remote authenticated users to...
Moderate
Unreviewed
CVE-2016-1895
was published
May 17, 2022
The bashMail function in cms/data/skins/techjunkie/fragments/contacts/functions.php in...
Moderate
Unreviewed
CVE-2014-1683
was published
May 17, 2022
Format string vulnerability in the client in Tftpd32 before 4.50 allows remote servers to cause a...
Moderate
Unreviewed
CVE-2013-6809
was published
May 17, 2022
Multiple format string vulnerabilities in dbdimp.c in DBD::Pg (aka DBD-Pg or libdbd-pg-perl)...
Moderate
Unreviewed
CVE-2012-1151
was published
May 17, 2022
Multiple format string vulnerabilities in the error reporting functionality in the YAML::LibYAML ...
Moderate
Unreviewed
CVE-2012-1152
was published
May 17, 2022
Multiple format string vulnerabilities in isns.c in (1) Linux SCSI target framework (aka tgt or...
Moderate
Unreviewed
CVE-2010-0743
was published
May 2, 2022
It was found that usage of snprintf function in feature/locks translator of glusterfs server 3.8...
Moderate
Unreviewed
CVE-2018-14661
was published
May 13, 2022
A flaw was found in the Red Hat OpenShift API Management product. User input is not validated...
Moderate
Unreviewed
CVE-2021-3442
was published
Aug 23, 2022
Multiple format string vulnerabilities in Condor 7.2.0 through 7.6.4, and possibly certain 7.7.x...
Moderate
Unreviewed
CVE-2011-4930
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API