GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,934
Composer 4,780
Erlang 36
GitHub Actions 29
Go 2,344
Maven 5,665
npm 3,973
NuGet 719
pip 3,770
Pub 12
RubyGems 923
Rust 978
Swift 38

Unreviewed advisories

All unreviewed 260,064

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

178 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash.... High Unreviewed

CVE-2017-15191 was published May 14, 2022

Format string vulnerability in cgiemail and cgiecho allows remote attackers to execute arbitrary... High Unreviewed

CVE-2017-5613 was published May 17, 2022

Format string vulnerability in the CmdKeywords function in funct1.c in latex2rtf before 2.3.10... High Unreviewed

CVE-2015-8106 was published May 17, 2022

Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail... High Unreviewed

CVE-2011-2475 was published May 17, 2022

Format string vulnerability in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51... High Unreviewed

CVE-2011-0270 was published May 17, 2022

Format string vulnerability in ovet_demandpoll.exe in HP OpenView Network Node Manager (OV NNM) 7... High Unreviewed

CVE-2010-1550 was published May 14, 2022

Multiple format string vulnerabilities in Lintian 1.23.x through 1.23.28, 1.24.x through 1.24.2.1... High Unreviewed

CVE-2009-4014 was published May 2, 2022

Multiple format string vulnerabilities in UltraISO 9.3.1.2633, and possibly other versions before... High Unreviewed

CVE-2008-3871 was published May 2, 2022

Format string vulnerability in BMC PATROL Agent before 3.7.30 allows remote attackers to execute... High Unreviewed

CVE-2008-5982 was published May 14, 2022

Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run... High Unreviewed

CVE-2006-6772 was published May 1, 2022

Multiple unspecified format string vulnerabilities in Dia have unspecified impact and attack... High Unreviewed

CVE-2006-2453 was published May 1, 2022

Format string vulnerability in the auth_debug function in Courier-IMAP 1.6.0 through 2.2.1 and 3... High Unreviewed

CVE-2004-0777 was published Apr 29, 2022

Format string vulnerability in log.c in rssh before 2.2.2 allows remote authenticated users to... High Unreviewed

CVE-2004-1628 was published Apr 29, 2022

A use of externally-controlled format string vulnerability [CWE-134] in FortiOS version 7.4.0... High Unreviewed

CVE-2024-45324 was published Mar 11, 2025

A vulnerability in the Cisco Discovery Protocol implementation for Cisco IOS XR Software could... High Unreviewed

CVE-2020-3118 was published May 24, 2022

A use of externally-controlled format string vulnerability has been reported to affect several... High Unreviewed

CVE-2024-50397 was published Nov 22, 2024

A use of externally-controlled format string vulnerability has been reported to affect several... High Unreviewed

CVE-2024-50396 was published Nov 22, 2024

DMitry (Deepmagic Information Gathering Tool) 1.3a has a format-string vulnerability, with a... High Unreviewed

CVE-2024-31837 was published Apr 30, 2024

A use of externally-controlled format string in Fortinet FortiAnalyzer versions 7.4.0 through 7.4... High Unreviewed

CVE-2024-45330 was published Oct 8, 2024

A Use of Externally-Controlled Format String vulnerability in the Packet Forwarding Engine (PFE)... High Unreviewed

CVE-2024-39529 was published Jul 11, 2024

Remote Code Execution in PAN-OS 7.1.18 and earlier, PAN-OS 8.0.11 and earlier, and PAN-OS 8.1.2... High Unreviewed

CVE-2019-1579 was published May 24, 2022

Format String vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS... High Unreviewed

CVE-2018-0175 was published May 13, 2022

Format string vulnerability in ArcGIS for ESRI ArcInfo Workstation 9.0 allows local users to gain... High Unreviewed

CVE-2005-1394 was published May 1, 2022

Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability. This vulnerability... High Unreviewed

CVE-2024-6145 was published Jun 19, 2024

In the standard library in Rust before 1.50.3, there is an optimization for joining strings that... High Unreviewed

CVE-2020-36323 was published May 24, 2022

Previous 1 2 3 4 5 6 7 8 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

178 advisories