GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,128
NuGet
735
pip
3,944
Pub
12
RubyGems
945
Rust
1,024
Swift
39
Unreviewed advisories
All unreviewed
5,000+
1,163 advisories
Filter by severity
Windows Storage Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2025-21391
was published
Feb 11, 2025
Windows Installer Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2025-21373
was published
Feb 11, 2025
Windows Deployment Services Denial of Service Vulnerability
Moderate
Unreviewed
CVE-2025-21347
was published
Feb 11, 2025
Microsoft PC Manager Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2025-21322
was published
Feb 11, 2025
Azure Network Watcher VM Extension Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2025-21188
was published
Feb 11, 2025
Parallels Desktop Technical Data Reporter Link Following Local Privilege Escalation Vulnerability...
High
Unreviewed
CVE-2025-0413
was published
Feb 5, 2025
Symlink following in the installer for Zoom Workplace App for macOS before 6.2.10 may allow an...
Low
Unreviewed
CVE-2025-0146
was published
Jan 30, 2025
This issue was addressed with improved handling of symlinks. This issue is fixed in iPadOS 17.7.4...
Moderate
Unreviewed
CVE-2025-24104
was published
Jan 28, 2025
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS...
Moderate
Unreviewed
CVE-2025-24103
was published
Jan 28, 2025
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS...
Moderate
Unreviewed
CVE-2025-24136
was published
Jan 28, 2025
HashiCorp go-slug Vulnerable to Zip Slip Attack
High
CVE-2025-0377
was published
for
github.com/hashicorp/go-slug
(Go)
Jan 21, 2025
SimpleHelp remote support software v5.5.7 and before allows admin users to upload arbitrary files...
High
Unreviewed
CVE-2024-57728
was published
Jan 16, 2025
Windows Installer Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2025-21331
was published
Jan 14, 2025
Windows Event Tracing Denial of Service Vulnerability
Moderate
Unreviewed
CVE-2025-21274
was published
Jan 14, 2025
A LogServer arbitrary file creation vulnerability in Trend Micro Apex One could allow a local...
High
Unreviewed
CVE-2024-52050
was published
Dec 31, 2024
Foxit PDF Reader Link Following Local Privilege Escalation Vulnerability. This vulnerability...
Moderate
Unreviewed
CVE-2024-12753
was published
Dec 30, 2024
Panda Security Dome Link Following Local Privilege Escalation Vulnerability. This vulnerability...
High
Unreviewed
CVE-2024-13043
was published
Dec 30, 2024
AnyDesk Link Following Information Disclosure Vulnerability. This vulnerability allows local...
Moderate
Unreviewed
CVE-2024-12754
was published
Dec 30, 2024
Dell SupportAssist for Home PCs versions 4.6.1 and prior and Dell SupportAssist for Business PCs...
High
Unreviewed
CVE-2024-52535
was published
Dec 25, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS...
High
Unreviewed
CVE-2024-44211
was published
Dec 20, 2024
Dell Inventory Collector Client, versions prior to 12.7.0, contains an Improper Link Resolution...
High
Unreviewed
CVE-2024-47480
was published
Dec 18, 2024
Dell AppSync, version 4.6.0.x, contain a Symbolic Link (Symlink) Following vulnerability. A low...
Moderate
Unreviewed
CVE-2024-52542
was published
Dec 17, 2024
gitingest before 9996a06 mishandles symbolic links that point outside of the base directory.
Moderate
Unreviewed
CVE-2024-56074
was published
Dec 15, 2024
Wacom Center WTabletServicePro Link Following Local Privilege Escalation Vulnerability. This...
High
Unreviewed
CVE-2024-12552
was published
Dec 14, 2024
WmsRepair Service Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-49107
was published
Dec 12, 2024
ProTip!
Advisories are also available from the
GraphQL API