dwflist
The DWF IDs (by distributedweaknessfiling)
advisories
Security advisories published by Enable Security (by EnableSecurity)
dwflist | advisories | |
---|---|---|
2 | 2 | |
36 | 33 | |
- | - | |
9.9 | 6.0 | |
almost 3 years ago | 5 months ago | |
Python | ||
Creative Commons Zero v1.0 Universal | - |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
dwflist
Posts with mentions or reviews of dwflist.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-06-24.
-
Google's unified vulnerability schema for open source supports Rust on launch
Today, we’re excited to announce a new milestone in expanding OSV to several key open-source ecosystems: Go, Rust, Python, and DWF.
-
Bug discovery diaries: Abusing VoIPmonitor for Remote Code Execution
We requested a CVE through DWF for this one and got CVE-2021-1000005. It is not yet replicated on the official CVE list. CVSS score according to an X-Force Vulnerability Report is 9.8.
advisories
Posts with mentions or reviews of advisories.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-03-17.
-
Bug discovery diaries: Abusing VoIPmonitor for Remote Code Execution
It is a bit further down and also in the advisory. Here's a copy and paste for those that missed it:
-
VoIPmonitor advisories: buffer overflow leading to RCE + XSS vulnerabilities
And so, we just released three advisories to provide further details so that organisations using this software can make better informed decisions. The advisories can be found at the usual location:
What are some alternatives?
When comparing dwflist and advisories you can also consider the following projects:
advisory-db - Security advisory database for Rust crates published through crates.io
cargo-deny - ❌ Cargo plugin for linting your dependencies 🦀
advisory-db - Security advisory database for Rust crates published through crates.io
vulndb - [mirror] The Go Vulnerability Database
rustsec - RustSec API & Tooling
advisory-database - Advisory database for Python packages published on pypi.org
advisory-database - Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.