GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,043
Composer 4,877
Erlang 37
GitHub Actions 38
Go 2,532
Maven 5,977
npm 4,191
NuGet 742
pip 3,970
Pub 12
RubyGems 947
Rust 1,030
Swift 39

Unreviewed advisories

All unreviewed 271,565

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,166 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Client RCE on macOS and Linux via improper symbolic link resolution in Google Web Designer's... High Unreviewed

CVE-2025-1079 was published May 12, 2025

NVIDIA Container Toolkit for all platforms contains a vulnerability in the update-ldcache hook,... High Unreviewed

CVE-2025-23267 was published Jul 17, 2025

An issue in Cato Networks' CatoClient for Linux, before version 5.5, allows a local attacker to... High Unreviewed

CVE-2025-7012 was published Jul 13, 2025

Improper link resolution before file access ('link following') in Visual Studio allows an... High Unreviewed

CVE-2025-49739 was published Jul 8, 2025

Improper link resolution before file access ('link following') in Microsoft PC Manager allows an... High Unreviewed

CVE-2025-49738 was published Jul 8, 2025

Improper link resolution before file access ('link following') in Windows AppX Deployment Service... High Unreviewed

CVE-2025-48820 was published Jul 8, 2025

Improper link resolution before file access ('link following') in Service Fabric allows an... Moderate Unreviewed

CVE-2025-21195 was published Jul 8, 2025

Improper link resolution before file access ('link following') in Windows Performance Recorder... High Unreviewed

CVE-2025-49680 was published Jul 8, 2025

A low privileged remote attacker with file access can replace a critical file used by the arp... High Unreviewed

CVE-2025-41667 was published Jul 8, 2025

A low privileged remote attacker with file access can replace a critical file or folder used by... High Unreviewed

CVE-2025-41668 was published Jul 8, 2025

A low privileged remote attacker with file access can replace a critical file used by the... High Unreviewed

CVE-2025-41666 was published Jul 8, 2025

@modelcontextprotocol/server-filesystem allows for path validation bypass via prefix matching and symlink handling High

CVE-2025-53109 was published for @modelcontextprotocol/server-filesystem (npm) Jul 1, 2025

A privilege escalation vulnerability exists in the Snapshot functionality of Parallels Desktop... High Unreviewed

CVE-2024-54189 was published Jun 3, 2025

A privilege escalation vulnerability exists in the Snapshot functionality of Parallels Desktop... High Unreviewed

CVE-2024-52561 was published Jun 3, 2025

A privilege escalation vulnerability exists in the virtual machine archive restoration... High Unreviewed

CVE-2024-36486 was published Jun 3, 2025

The CloudStack management server and secondary storage VM could be tricked into making requests... High Unreviewed

CVE-2024-29007 was published Apr 4, 2024

A path or symbolic link manipulation vulnerability in SIR 1.0.3 and prior versions allows an... High Unreviewed

CVE-2025-3771 was published Jun 26, 2025

Improper Link Resolution Before File Access ('Link Following') vulnerability in yrutschle sslh... Critical Unreviewed

CVE-2025-52936 was published Jun 23, 2025

A security agent link following vulnerability in Trend Micro Apex One could allow a local... High Unreviewed

CVE-2023-52092 was published Jan 23, 2024

An anti-spyware engine link following vulnerability in Trend Micro Apex One could allow a local... High Unreviewed

CVE-2023-52091 was published Jan 23, 2024

An updater link following vulnerability in the Trend Micro Apex One agent could allow a local... High Unreviewed

CVE-2023-52094 was published Jan 23, 2024

A security agent link following vulnerability in Trend Micro Apex One could allow a local... High Unreviewed

CVE-2023-52090 was published Jan 23, 2024

A link following vulnerability in Trend Micro Deep Security 20.0 agents could allow a local... Moderate Unreviewed

CVE-2025-30642 was published Jun 17, 2025

A link following vulnerability in the anti-malware solution portion of Trend Micro Deep Security... High Unreviewed

CVE-2025-30641 was published Jun 17, 2025

A link following vulnerability in Trend Micro Deep Security 20.0 agents could allow a local... High Unreviewed

CVE-2025-30640 was published Jun 17, 2025

Previous 12…47 Next

Previous 1 2 3 4 5 … 46 47 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,166 advisories