GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,031
Composer 4,303
Erlang 31
GitHub Actions 21
Go 2,072
Maven 5,246
npm 3,744
NuGet 669
pip 3,430
Pub 12
RubyGems 892
Rust 880
Swift 36

Unreviewed advisories

All unreviewed 240,702

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

12,821 advisories

Filter by severity

Sort by

Least recently updated

Heap-based buffer overflow in the dissector_postgresql function in dissectors/ec_postgresql.c in... High Unreviewed

CVE-2014-6395 was published May 13, 2022

The dissector_postgresql function in dissectors/ec_postgresql.c in Ettercap before 0.8.1 allows... High Unreviewed

CVE-2014-6396 was published May 13, 2022

Stack-based buffer overflow in the scan_load_hosts function in ec_scan.c in Ettercap 0.7.5.1 and... Moderate Unreviewed

CVE-2013-0722 was published May 13, 2022

The dissector_cvs function in dissectors/ec_cvs.c in Ettercap 0.8.1 allows remote attackers to... Moderate Unreviewed

CVE-2014-9380 was published May 13, 2022

The htmlParseComment function in HTMLparser.c in libxml2 allows attackers to obtain sensitive... Critical Unreviewed

CVE-2015-8710 was published May 13, 2022

The radius_get_attribute function in dissectors/ec_radius.c in Ettercap 0.8.1 performs an... High Unreviewed

CVE-2014-9379 was published May 13, 2022

Heap-based buffer overflow in the nbns_spoof function in plug-ins/nbns_spoof/nbns_spoof.c in... High Unreviewed

CVE-2014-9377 was published May 13, 2022

Heap-based buffer overflow in SumatraPDF before 2.1 allows remote attackers to execute arbitrary... High Unreviewed

CVE-2012-4895 was published May 13, 2022

ASX to MP3 converter 3.1.3.7.2010.11.05 has a buffer overflow via a crafted M3U file, a related... High Unreviewed

CVE-2017-15221 was published May 13, 2022

Heap-based buffer overflow in SumatraPDF before 2.1 allows remote attackers to execute arbitrary... High Unreviewed

CVE-2012-4896 was published May 13, 2022

Stack-based buffer overflow in "dnsproxy.c" in connman 1.34 and earlier allows remote attackers... Critical Unreviewed

CVE-2017-12865 was published May 13, 2022

Heap-based buffer overflow in the alloc_segs function in lib/dbm/src/hash.c in Mozilla Network... High Unreviewed

CVE-2017-11695 was published May 13, 2022

Heap-based buffer overflow in the __hash_open function in lib/dbm/src/hash.c in Mozilla Network... High Unreviewed

CVE-2017-11696 was published May 13, 2022

In libpbc.a in PBC through 2017-03-02, there is a Segmentation fault in _pbcB_register_fields in... Critical Unreviewed

CVE-2018-12918 was published May 13, 2022

WeeChat before 1.7.1 allows a remote crash by sending a filename via DCC to the IRC plugin. This... High Unreviewed

CVE-2017-8073 was published May 13, 2022

The __hash_open function in hash.c:229 in Mozilla Network Security Services (NSS) allows context... High Unreviewed

CVE-2017-11697 was published May 13, 2022

wxBitcoin and bitcoind before 0.3.13 do not properly handle bitcoins associated with Bitcoin... Moderate Unreviewed

CVE-2010-5140 was published May 13, 2022

Heap-based buffer overflow in the __get_page function in lib/dbm/src/h_page.c in Mozilla Network... High Unreviewed

CVE-2017-11698 was published May 13, 2022

In Wireshark 2.6.0, the RTCP dissector could crash. This was addressed in epan/dissectors/packet... High Unreviewed

CVE-2018-11355 was published May 13, 2022

In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the GSM A DTAP dissector could crash.... High Unreviewed

CVE-2018-11360 was published May 13, 2022

In Wireshark 2.6.0, the IEEE 802.11 protocol dissector could crash. This was addressed in epan... High Unreviewed

CVE-2018-11361 was published May 13, 2022

Calling Buffer.fill() or Buffer.alloc() with some parameters can lead to a hang which could... High Unreviewed

CVE-2018-7167 was published May 13, 2022

Multiple buffer overflows in the Syslog server in ManageEngine EventLog Analyzer 6.1 allow remote... High Unreviewed

CVE-2010-4840 was published May 13, 2022

Stack-based buffer overflow in the mk_request_header_process function in mk_request.c in Monkey... Moderate Unreviewed

CVE-2013-3843 was published May 13, 2022

The read_MSAT_body function in ole.c in libxls 1.4.0 has an invalid free that allows attackers to... High Unreviewed

CVE-2018-20452 was published May 13, 2022

Previous 1 2 … 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

12,821 advisories