Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,086
Maven
5,000+
npm
3,747
NuGet
674
pip
3,436
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

184 advisories

Loading
Multiple format string vulnerabilities in the ID Software Doom 3 engine, as used by Doom 3 1.3.1... High Unreviewed
CVE-2007-5248 was published May 1, 2022
Format string vulnerability in the safe_bprintf function in acesrc/acebot_cmds.c in Alien Arena... High Unreviewed
CVE-2007-4754 was published May 1, 2022
Format string vulnerability in srsexec in Sun Remote Services (SRS) Net Connect 3.2.3 and 3.2.4,... High Unreviewed
CVE-2007-3880 was published May 1, 2022
The multiplayer engine in Wesnoth 1.2.x before 1.2.7 and 1.3.x before 1.3.9 allows remote servers... High Unreviewed
CVE-2007-3917 was published May 1, 2022
Unspecified vulnerability in NetWin Webmail 3.1s-1 in SurgeMail before 3.8i2 has unknown impact... High Unreviewed
CVE-2007-2655 was published May 1, 2022
Format string vulnerability in the VPN daemon (vpnd) in Apple Mac OS X 10.3.9 and 10.4.9 allows... High Unreviewed
CVE-2007-0753 was published May 1, 2022
Format string vulnerability in iMovie HD 6.0.3, and Safari in Apple Mac OS X 10.4 through 10.4.10... High Unreviewed
CVE-2007-0646 was published May 1, 2022
Format string vulnerability in the new_warning function in ntserv/warning.c for Netrek Vanilla... High Unreviewed
CVE-2007-1251 was published May 1, 2022
Multiple format string vulnerabilities in the gm_main_window_flash_message function in Ekiga... High Unreviewed
CVE-2007-1006 was published May 1, 2022
Format string vulnerability in the afsacl.so VFS module in Samba 3.0.6 through 3.0.23d allows... High Unreviewed
CVE-2007-0454 was published May 1, 2022
Multiple format string vulnerabilities in (1) _invitedToRoom: and (2) _invitedToDirectChat: in... High Unreviewed
CVE-2007-0344 was published May 1, 2022
Format string vulnerability in the inputAnswer function in file.c in w3m before 0.5.2, when run... High Unreviewed
CVE-2006-6772 was published May 1, 2022
Format string vulnerability in the WriteText function in agl_text.cpp in Milan Mimica Sparklet 0... High Unreviewed
CVE-2006-3573 was published May 1, 2022
Multiple unspecified format string vulnerabilities in Dia have unspecified impact and attack... High Unreviewed
CVE-2006-2453 was published May 1, 2022
Multiple format string vulnerabilities in the logging code in Clam AntiVirus (ClamAV) before 0.88... High Unreviewed
CVE-2006-1615 was published May 1, 2022
Format string vulnerability in the error-reporting feature in the mysqli extension in PHP 5.1.0... High Unreviewed
CVE-2006-0200 was published May 1, 2022
Multiple format string vulnerabilities in the auth_ldap_log_reason function in Apache auth_ldap 1... High Unreviewed
CVE-2006-0150 was published May 1, 2022
Format string vulnerability in the logging functionality in BitDefender AntiVirus 7.2 through 9... High Unreviewed
CVE-2005-3154 was published May 1, 2022
Format string vulnerability in cgi.c for Monkey daemon (monkeyd) before 0.9.1 allows remote... High Unreviewed
CVE-2005-1122 was published May 1, 2022
Format string vulnerability in the administration function in Cisco Secure Access Control Server ... High Unreviewed
CVE-2002-0159 was published Apr 30, 2022
Format string vulnerability in the LogMsg function in sercd before 2.3.1 and sredird 2.2.1 and... High Unreviewed
CVE-2004-2386 was published Apr 29, 2022
Format string vulnerability in log.c in rssh before 2.2.2 allows remote authenticated users to... High Unreviewed
CVE-2004-1628 was published Apr 29, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect... High Unreviewed
CVE-2022-35886 was published Oct 25, 2022
Four format string injection vulnerabilities exist in the UPnP logging functionality of Abode... High Unreviewed
CVE-2022-35878 was published Oct 25, 2022
Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect... High Unreviewed
CVE-2022-35884 was published Oct 25, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database