Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,128
NuGet
735
pip
3,944
Pub
12
RubyGems
945
Rust
1,024
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,163 advisories

Loading
An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc)... High Unreviewed
CVE-2019-0986 was published May 24, 2022
An elevation of privilege vulnerability exists in the way the Task Scheduler Service validates... High Unreviewed
CVE-2019-1069 was published May 24, 2022
An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC)... High Unreviewed
CVE-2019-1064 was published May 24, 2022
The configuration initialization tool in OpenVPN 3 Linux v20 through v24 on Linux allows a local... Moderate Unreviewed
CVE-2025-3908 was published May 19, 2025
Improper Link Resolution Before File Access ('Link Following') vulnerability in HYPR Passwordless... Moderate Unreviewed
CVE-2025-2102 was published May 21, 2025
Improper link resolution before file access ('link following') in Microsoft Edge (Chromium-based)... High Unreviewed
CVE-2025-47181 was published May 23, 2025
Improper link resolution before file access ('link following') in Windows Update Stack allows an... High Unreviewed
CVE-2025-21204 was published Apr 8, 2025
A link-manipulation issue was discovered in Mega HOPEX 15.2.0.6110 before V5CP4. Moderate Unreviewed
CVE-2022-38482 was published Jan 10, 2023
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-31198 was published May 30, 2025
Bluetooth HCI Adaptor from Realtek has a Link Following vulnerability. Local attackers with... High Unreviewed
CVE-2024-11857 was published Jun 2, 2025
2BrightSparks SyncBackFree Link Following Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2025-5474 was published Jun 6, 2025
cpio, as used in build 2007.05.10, 2010.07.28, and possibly other versions, allows remote... Moderate Unreviewed
CVE-2010-4226 was published May 17, 2022
systemd-tmpfiles in systemd through 237 mishandles symlinks present in non-terminal path... High Unreviewed
CVE-2018-6954 was published May 13, 2022
systemd, when updating file permissions, allows local users to change the permissions and SELinux... Low Unreviewed
CVE-2013-4392 was published May 13, 2022
Improper link resolution before file access ('link following') in Windows Recovery Driver allows... High Unreviewed
CVE-2025-32721 was published Jun 10, 2025
Improper link resolution before file access ('link following') in Windows Installer allows an... High Unreviewed
CVE-2025-33075 was published Jun 10, 2025
An agent link vulnerability in the Trend Micro Apex One security agent could allow a local... High Unreviewed
CVE-2023-47192 was published Jan 23, 2024
A link following vulnerability in the anti-malware solution portion of Trend Micro Deep Security... High Unreviewed
CVE-2025-30641 was published Jun 17, 2025
A link following vulnerability in Trend Micro Deep Security 20.0 agents could allow a local... High Unreviewed
CVE-2025-30640 was published Jun 17, 2025
A link following vulnerability in Trend Micro Deep Security 20.0 agents could allow a local... Moderate Unreviewed
CVE-2025-30642 was published Jun 17, 2025
A security agent link following vulnerability in Trend Micro Apex One could allow a local... High Unreviewed
CVE-2023-52090 was published Jan 23, 2024
An updater link following vulnerability in the Trend Micro Apex One agent could allow a local... High Unreviewed
CVE-2023-52094 was published Jan 23, 2024
A security agent link following vulnerability in Trend Micro Apex One could allow a local... High Unreviewed
CVE-2023-52092 was published Jan 23, 2024
An anti-spyware engine link following vulnerability in Trend Micro Apex One could allow a local... High Unreviewed
CVE-2023-52091 was published Jan 23, 2024
Improper Link Resolution Before File Access ('Link Following') vulnerability in yrutschle sslh... Critical Unreviewed
CVE-2025-52936 was published Jun 23, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database