Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

191 advisories

Loading
ImageMagick has a Format String Bug in InterpretImageFilename leads to arbitrary code execution High
CVE-2025-55298 was published for Magick.NET-Q16-AnyCPU (NuGet) Aug 26, 2025
leehohojune jin-156
amethyst0225
Solar FTP Server fails to properly handle format strings passed to the USER command. When a... High Unreviewed
CVE-2011-10029 was published Aug 20, 2025
An issue was discovered in CommScope Ruckus Unleashed prior to 200.15.6.212.14 and 200.17.7.0.139... High Unreviewed
CVE-2025-46123 was published Jul 21, 2025
An issue was discovered in CommScope Ruckus Unleashed prior to 200.15.6.212.14 and 200.17.7.0.139... High Unreviewed
CVE-2025-46121 was published Jul 21, 2025
A use of externally-controlled format string vulnerability [CWE-134] in FortiOS version 7.4.0... High Unreviewed
CVE-2024-45324 was published Mar 11, 2025
ASTEVAL Allows Maliciously Crafted Format Strings to Lead to Sandbox Escape High
CVE-2025-24359 was published for asteval (pip) Jan 24, 2025
SteakEnthusiast
A use of externally-controlled format string vulnerability has been reported to affect several... High Unreviewed
CVE-2024-50396 was published Nov 22, 2024
A use of externally-controlled format string vulnerability has been reported to affect several... High Unreviewed
CVE-2024-50397 was published Nov 22, 2024
A use of externally-controlled format string in Fortinet FortiAnalyzer versions 7.4.0 through 7.4... High Unreviewed
CVE-2024-45330 was published Oct 8, 2024
A Use of Externally-Controlled Format String vulnerability in the Packet Forwarding Engine (PFE)... High Unreviewed
CVE-2024-39529 was published Jul 11, 2024
Actiontec WCB6200Q Cookie Format String Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2024-6145 was published Jun 19, 2024
DMitry (Deepmagic Information Gathering Tool) 1.3a has a format-string vulnerability, with a... High Unreviewed
CVE-2024-31837 was published Apr 30, 2024
A use of externally-controlled format string in Fortinet FortiOS 7.2.0 through 7.2.4, 7.0.0... High Unreviewed
CVE-2023-29181 was published Feb 22, 2024
A format string vulnerability in a function of the IPSec VPN feature in Zyxel ATP... High Unreviewed
CVE-2023-6764 was published Feb 20, 2024
A format string issue in the Controller 6000's optional diagnostic web interface can be used... High Unreviewed
CVE-2023-24590 was published Dec 19, 2023
A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.4,... High Unreviewed
CVE-2023-36639 was published Dec 13, 2023
A format string vulnerability exists in Motorola MTM5000 series firmware AT command handler for... High Unreviewed
CVE-2022-26941 was published Oct 19, 2023
ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within... High Unreviewed
CVE-2023-41349 was published Sep 18, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused... High Unreviewed
CVE-2023-39238 was published Sep 7, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This... High Unreviewed
CVE-2023-39239 was published Sep 7, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2’s iperf client function API.... High Unreviewed
CVE-2023-39240 was published Sep 7, 2023
A vulnerability classified as critical has been found in TOTOLINK N200RE V5 9.3.5u.6437_B20230519... High Unreviewed
CVE-2023-4746 was published Sep 4, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This... High Unreviewed
CVE-2023-35086 was published Jul 21, 2023
A format string vulnerability in the Zyxel ATP series firmware versions 5.10 through 5.36 Patch 2... High Unreviewed
CVE-2023-33011 was published Jul 17, 2023
A use of externally-controlled format string in Fortinet FortiOS version 7.2.0 through 7.2.4,... High Unreviewed
CVE-2022-43953 was published Jun 13, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database