Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,298
Erlang
31
GitHub Actions
21
Go
2,063
Maven
5,000+
npm
3,744
NuGet
668
pip
3,424
Pub
12
RubyGems
892
Rust
876
Swift
36
Unreviewed advisories
All unreviewed
5,000+

449 advisories

Loading
Foxit PDF Reader Link Following Local Privilege Escalation Vulnerability. This vulnerability... Moderate Unreviewed
CVE-2024-12753 was published Dec 30, 2024
AnyDesk Link Following Information Disclosure Vulnerability. This vulnerability allows local... Moderate Unreviewed
CVE-2024-12754 was published Dec 30, 2024
gitingest before 9996a06 mishandles symbolic links that point outside of the base directory. Moderate Unreviewed
CVE-2024-56074 was published Dec 15, 2024
Link Following in github.com/containers/common Moderate
CVE-2024-9341 was published for github.com/containers/common (Go) Oct 1, 2024
A link following vulnerability has been reported to affect Qsync Central. If exploited, the... Moderate Unreviewed
CVE-2024-50404 was published Dec 6, 2024
runc AppArmor bypass with symlinked /proc Moderate
CVE-2023-28642 was published for github.com/opencontainers/runc (Go) Mar 30, 2023
ssst0n3
Various problems in obs-scm-bridge allows attackers that create specially crafted git... Moderate Unreviewed
CVE-2024-22038 was published Nov 28, 2024
Podman affected by CVE-2024-1753 container escape at build time Moderate
CVE-2024-1753 was published for github.com/containers/podman/v4 (Go) Mar 28, 2024
rmcnamara-snyk
AVG AntiVirus Free Link Following Denial-of-Service Vulnerability. This vulnerability allows... Moderate Unreviewed
CVE-2024-7235 was published Nov 23, 2024
AVG AntiVirus Free icarus Arbitrary File Creation Denial of Service Vulnerability. This... Moderate Unreviewed
CVE-2024-7236 was published Nov 23, 2024
Avast Free Antivirus Link Following Denial-of-Service Vulnerability. This vulnerability allows... Moderate Unreviewed
CVE-2024-7228 was published Nov 23, 2024
Virtualenv Allows Symlink Attack on /tmp/ Moderate
CVE-2011-4617 was published for virtualenv (pip) May 17, 2022
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could... Moderate Unreviewed
CVE-2021-1491 was published Nov 15, 2024
Three vulnerabilities in the CLI of Cisco TelePresence CE and RoomOS could allow an authenticated... Moderate Unreviewed
CVE-2023-20004 was published Nov 15, 2024
Windows Cleanup Manager Elevation of Privilege Vulnerability. Moderate Unreviewed
CVE-2022-21838 was published Jan 12, 2022
A vulnerability was found in Performance Co-Pilot (PCP). This flaw can only be exploited if an... Moderate Unreviewed
CVE-2024-45770 was published Sep 19, 2024
A vulnerability was found in GNU Nano that allows a possible privilege escalation through an... Moderate Unreviewed
CVE-2024-5742 was published Jun 12, 2024
The Improper link resolution before file access ('Link Following') vulnerability in SonicWall... Moderate Unreviewed
CVE-2024-45315 was published Oct 11, 2024
This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 18.1 and... Moderate Unreviewed
CVE-2024-44273 was published Oct 28, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-44264 was published Oct 28, 2024
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS... Moderate Unreviewed
CVE-2024-44175 was published Oct 28, 2024
An issue was discovered in H2 1.4.197. Insecure handling of permissions in the backup function... Moderate Unreviewed
CVE-2018-14335 was published May 13, 2022
Improper Link Resolution Before File Access in Suds Moderate
CVE-2013-2217 was published for suds (pip) May 14, 2022
Link Following in rply Moderate
CVE-2014-1938 was published for rply (pip) Mar 11, 2020
Improper Link Resolution Before File Access in pip Moderate
CVE-2013-1888 was published for pip (pip) May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database