GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,230
Composer 4,347
Erlang 31
GitHub Actions 22
Go 2,117
Maven 5,289
npm 3,768
NuGet 680
pip 3,457
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,668

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

329 advisories

Filter by severity

Sort by

Least recently updated

Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability. This vulnerability... High Unreviewed

CVE-2024-6145 was published Jun 19, 2024

A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.4,... Moderate Unreviewed

CVE-2023-36640 was published May 14, 2024

A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.5,... Moderate Unreviewed

CVE-2023-45583 was published May 14, 2024

Foxit PDF Reader print Method Use of Externally-Controlled Format String Information Disclosure... Low Unreviewed

CVE-2021-34970 was published May 8, 2024

Use of Externally-Controlled Format String vulnerability in Merge DICOM Toolkit C/C++ on Windows.... Moderate Unreviewed

CVE-2024-23914 was published May 3, 2024

In the standard library in Rust before 1.50.3, there is an optimization for joining strings that... High Unreviewed

CVE-2020-36323 was published May 24, 2022

A use of externally-controlled format string vulnerability [CWE-134] in FortiOS version 7.4.1 and... Moderate Unreviewed

CVE-2023-48784 was published Apr 9, 2024

A format string vulnerability exists in Motorola MTM5000 series firmware AT command handler for... High Unreviewed

CVE-2022-26941 was published Oct 19, 2023

ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within... High Unreviewed

CVE-2023-41349 was published Sep 18, 2023

It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This... Critical Unreviewed

CVE-2023-35087 was published Jul 21, 2023

A format string vulnerability in the Zyxel ATP series firmware versions 5.10 through 5.36 Patch 2... High Unreviewed

CVE-2023-33011 was published Jul 17, 2023

A use of externally-controlled format string in Fortinet FortiOS version 7.2.0 through 7.2.4,... High Unreviewed

CVE-2022-43953 was published Jun 13, 2023

On Triangle MicroWorks' SCADA Data Gateway version <= v5.01.03, an unauthenticated attacker can... Critical Unreviewed

CVE-2023-2186 was published Jun 7, 2023

Use of externally-controlled format string vulnerability in mPOS TUI trustlet prior to SMR May... High Unreviewed

CVE-2023-21497 was published May 4, 2023

A format string vulnerability in a binary of the Zyxel NBG-418N v2 firmware versions prior to V1... Moderate Unreviewed

CVE-2023-22923 was published May 1, 2023

A valid, authenticated user may be able to trigger a denial of service of the XCC web user... High Unreviewed

CVE-2023-25492 was published May 1, 2023

This vulnerability allows remote attackers to disclose sensitive information on affected... Moderate Unreviewed

CVE-2019-13318 was published May 24, 2022

cPanel before 60.0.25 allows format-string injection in exception-message handling (SEC-171). High Unreviewed

CVE-2016-10773 was published May 24, 2022

An issue was discovered in scopd on Motorola routers CX2 1.01 and M2 1.01. There is a Use of an... Critical Unreviewed

CVE-2019-12297 was published May 24, 2022

Format string vulnerability in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows... High Unreviewed

CVE-2018-14713 was published May 24, 2022

Multiple format string vulnerabilities in the python module in RRDtool, as used in Zenoss Core... High Unreviewed

CVE-2014-6262 was published May 17, 2022

** DISPUTED ** In Tcl 8.6.11, a format string vulnerability in nmakehlp.c might allow code... High Unreviewed

CVE-2021-35331 was published May 24, 2022

It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This... High Unreviewed

CVE-2023-39239 was published Sep 7, 2023

It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused... High Unreviewed

CVE-2023-39238 was published Sep 7, 2023

It is identified a format string vulnerability in ASUS RT-AX56U V2’s iperf client function API.... High Unreviewed

CVE-2023-39240 was published Sep 7, 2023

Previous 1 2 3 4 5 … 13 14 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

329 advisories