GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
172 advisories
Filter by severity
Format string vulnerability in the Print Spooler service in Microsoft Windows XP SP2 and SP3,...
High
Unreviewed
CVE-2012-1851
was published
May 13, 2022
Puppet Enterprise 2017.3.x prior to 2017.3.3 are vulnerable to a remote execution bug when a...
High
Unreviewed
CVE-2018-6508
was published
May 13, 2022
Format string vulnerability in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to...
High
Unreviewed
CVE-2012-0242
was published
May 4, 2022
Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to 0.99.0 allow remote...
High
Unreviewed
CVE-2006-3628
was published
May 3, 2022
Multiple format string vulnerabilities in logging functions in mod_auth_pgsql before 2.0.3, when...
High
Unreviewed
CVE-2005-3656
was published
May 3, 2022
Format string vulnerability in vmrun in VMware VIX API 1.6.x, VMware Workstation 6.5.x before 6.5...
High
Unreviewed
CVE-2010-1139
was published
May 2, 2022
Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and...
High
Unreviewed
CVE-2010-1039
was published
May 2, 2022
Format string vulnerability in the WebDAV implementation in webservd in Sun Java System Web...
High
Unreviewed
CVE-2010-0388
was published
May 2, 2022
Multiple format string vulnerabilities in the tolog function in httpdx 1.4, 1.4.5, 1.4.6, 1.4.6b,...
High
Unreviewed
CVE-2009-4769
was published
May 2, 2022
Multiple format string vulnerabilities in Lintian 1.23.x through 1.23.28, 1.24.x through 1.24.2.1...
High
Unreviewed
CVE-2009-4014
was published
May 2, 2022
Format string vulnerability in vmware-vmrc.exe build 158248 in VMware Remote Console (aka VMrc)...
High
Unreviewed
CVE-2009-3732
was published
May 2, 2022
Format string vulnerability in the h_readrequest function in http.c in httpdx Web Server 1.4...
High
Unreviewed
CVE-2009-3663
was published
May 2, 2022
Format string vulnerability in the AbstractCommand::onAbort function in src/AbstractCommand.cc in...
High
Unreviewed
CVE-2009-3617
was published
May 2, 2022
Multiple format string vulnerabilities in lib/silcclient/command.c in Secure Internet Live...
High
Unreviewed
CVE-2009-3163
was published
May 2, 2022
Multiple format string vulnerabilities in lib/silcclient/client_entry.c in Secure Internet Live...
High
Unreviewed
CVE-2009-3051
was published
May 2, 2022
Format string vulnerability in the CNS_AddTxt function in logs.dll in 2K Games Vietcong 2 1.10...
High
Unreviewed
CVE-2009-2916
was published
May 2, 2022
Format string vulnerability in Armed Assault (aka ArmA) 1.14 and earlier, and 1.16 beta, and...
High
Unreviewed
CVE-2009-2548
was published
May 2, 2022
Multiple format string vulnerabilities in the dispatch_command function in libmysqld/sql_parse.cc...
High
Unreviewed
CVE-2009-2446
was published
May 2, 2022
Format string vulnerability in Login Window in Apple Mac OS X 10.4.11 and 10.5 before 10.5.8...
High
Unreviewed
CVE-2009-2191
was published
May 2, 2022
Multiple format string vulnerabilities in client/client.c in smbclient in Samba 3.2.0 through 3.2...
High
Unreviewed
CVE-2009-1886
was published
May 2, 2022
Format string vulnerability in Fortinet FortiClient 3.0.614, and possibly earlier, allows local...
High
Unreviewed
CVE-2009-1262
was published
May 2, 2022
Format string vulnerability in the PROFINET/DCP (PN-DCP) dissector in Wireshark 1.0.6 and earlier...
High
Unreviewed
CVE-2009-1210
was published
May 2, 2022
Format string vulnerability in the mini_calendar component in Citadel.org WebCit 7.22, and other...
High
Unreviewed
CVE-2009-0364
was published
May 2, 2022
Multiple format string vulnerabilities in UltraISO 9.3.1.2633, and possibly other versions before...
High
Unreviewed
CVE-2008-3871
was published
May 2, 2022
Format string vulnerability in Ipswitch WS_FTP Home 2007.0.0.2 and WS_FTP Professional 2007.1.0.0...
High
Unreviewed
CVE-2008-3734
was published
May 2, 2022
ProTip!
Advisories are also available from the
GraphQL API