GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 31,787
Composer 5,986
Erlang 73
GitHub Actions 53
Go 4,029
Maven 6,658
npm 6,516
NuGet 976
pip 5,380
Pub 13
RubyGems 1,070
Rust 1,404
Swift 61

Unreviewed advisories

All unreviewed 309,116

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

500 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Microsoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in... High Unreviewed

CVE-2026-50656 was published Jun 16, 2026

A symlink following vulnerability was found in the ABRT post-create event handler scripts in... High Unreviewed

CVE-2026-54230 was published Jun 13, 2026

A local privilege escalation vulnerability was found in the ansible.posix authorized_key module.... High Unreviewed

CVE-2026-11837 was published Jun 10, 2026

Improper link resolution before file access ('link following') in Microsoft PC Manager allows an... High Unreviewed

CVE-2026-50511 was published Jun 9, 2026

Improper link resolution before file access ('link following') in Windows Collaborative... High Unreviewed

CVE-2026-45586 was published Jun 9, 2026

Improper link resolution before file access ('link following') in Winlogon allows an authorized... High Unreviewed

CVE-2026-42989 was published Jun 9, 2026

Hermes WebUI prior to v0.51.221 contains a path traversal vulnerability that allows attackers to... High Unreviewed

CVE-2026-11322 was published Jun 5, 2026

CodexBar prior to 0.32.0 contains an insecure temporary file handling vulnerability that allows... High Unreviewed

CVE-2026-49135 was published Jun 1, 2026

A flaw was found in KubeVirt's virt-exportserver component. An attacker with specific namespace... High Unreviewed

CVE-2026-9804 was published May 28, 2026

Jenkins Pipeline: Groovy Libraries Plugin 797.v90ea_a_9b_e45a_0 and earlier does not prohibit... High Unreviewed

CVE-2026-48921 was published May 27, 2026

Archive::Tar versions before 3.08 for Perl extract hardlinks to attacker controlled paths outside... High Unreviewed

CVE-2026-42497 was published May 26, 2026

A link following vulnerability in the Trend Micro Apex One scan engine could allow a local... High Unreviewed

CVE-2025-71212 was published May 21, 2026

An improper link resolution vulnerability in Netatalk 3.0.2 through 4.4.2 allows a remote... High Unreviewed

CVE-2026-44051 was published May 21, 2026

Improper link resolution before file access ('link following') in Azure Portal Windows Admin... High Unreviewed

CVE-2026-42834 was published May 20, 2026

Improper link resolution before file access ('link following') in Microsoft Defender allows an... High Unreviewed

CVE-2026-41091 was published May 20, 2026

Rsync version 3.4.2 and prior contain symlink race condition vulnerabilities in path-based system... High Unreviewed

CVE-2026-43619 was published May 20, 2026

The locally served web site on the Garmin WDU (v1 1.4.6 and v2 5.0) allows a symlink attack. If a... High Unreviewed

CVE-2025-27850 was published May 13, 2026

CyberPanel 2.1 contains a command execution vulnerability that allows authenticated attackers to... High Unreviewed

CVE-2021-47949 was published May 10, 2026

In JetBrains IntelliJ IDEA before 2024.3.7.1, 2025.1.7.1, 2025.2.6.2, 2025.3.4.1, 2026.1.1... High Unreviewed

CVE-2026-41882 was published Apr 30, 2026

Improper link resolution before file access ('link following') vulnerability in TUBITAK BILGEM... High Unreviewed

CVE-2026-5161 was published Apr 29, 2026

This vulnerability allows an attacker to create a junction, enabling the deletion of arbitrary... High Unreviewed

CVE-2026-33694 was published Apr 23, 2026

This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia... High Unreviewed

CVE-2025-43257 was published Apr 2, 2026

Improper link resolution before file access ('link following') in Winlogon allows an authorized... High Unreviewed

CVE-2026-25187 was published Mar 10, 2026

Avira Internet Security contains an improper link resolution vulnerability in the Software... High Unreviewed

CVE-2026-27748 was published Mar 5, 2026

Dell Optimizer, versions prior to 6.3.1, contain an Improper Link Resolution Before File Access (... High Unreviewed

CVE-2026-25906 was published Mar 3, 2026

Previous1…20 Next

Previous 1 2 3 4 5 … 19 20 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

500 advisories