GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 32,526
Composer 6,112
Erlang 86
GitHub Actions 54
Go 4,169
Maven 6,707
npm 6,686
NuGet 1,019
pip 5,531
Pub 13
RubyGems 1,102
Rust 1,421
Swift 61

Unreviewed advisories

All unreviewed 310,691

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

492 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

NanoClaw before 2.1.17 contains a symlink following vulnerability in forwardAttachedFiles that... Moderate Unreviewed

CVE-2026-56692 was published Jun 23, 2026

Capgo CLI before 12.128.2 contains arbitrary file overwrite vulnerabilities in login and build... Moderate Unreviewed

CVE-2026-56236 was published Jun 21, 2026

setupBpmLogs follows symlink for bpm.log open and chown — container-to-host privilege escalation... Moderate Unreviewed

CVE-2026-47833 was published Jun 18, 2026

This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia... Moderate Unreviewed

CVE-2025-46293 was published Jun 11, 2026

Debusine is an integrated solution to build, distribute and maintain a Debian-based distribution.... Moderate Unreviewed

CVE-2026-11853 was published Jun 10, 2026

Dell/Alienware Purchased Apps, versions prior to 1.1.32.0, contain an Improper Link Resolution... Moderate Unreviewed

CVE-2026-44275 was published Jun 9, 2026

Dell iDRAC Tools, versions prior to 11.4.1.0, contains an Improper Link Resolution Before File... Moderate Unreviewed

CVE-2026-28262 was published Jun 9, 2026

A Dag author could either (a) create a symlink under their task's log directory pointing to an... Moderate Unreviewed

CVE-2026-40861 was published Jun 1, 2026

Improper handling of symbolic links in the installer of CUPS Printer Driver for macOS(*) may... Moderate Unreviewed

CVE-2026-6892 was published May 29, 2026

Improper handling of symbolic links in the installer of My Image Garden for macOS Version 3.6.8... Moderate Unreviewed

CVE-2026-6891 was published May 29, 2026

FastNetMon Community Edition through 1.2.9 is vulnerable to a local symlink attack via... Moderate Unreviewed

CVE-2026-48693 was published May 26, 2026

An issue was discovered in the Portrait Dell Color Management application before 3.7.0 for Dell... Moderate Unreviewed

CVE-2026-34883 was published May 19, 2026

The consul-template library before version 0.42.0 is vulnerable to a sandbox path bypass in the... Moderate Unreviewed

CVE-2026-5061 was published May 12, 2026

A security flaw has been discovered in IObit Advanced SystemCare 19. This affects an unknown part... Moderate Unreviewed

CVE-2026-7832 was published May 5, 2026

Dell/Alienware Purchased Apps, versions prior to 1.1.31.0, contain an Improper Link Resolution... Moderate Unreviewed

CVE-2026-27105 was published Apr 29, 2026

radare2 prior to 6.1.4 contains a path traversal vulnerability in its project notes handling that... Moderate Unreviewed

CVE-2026-6941 was published Apr 23, 2026

A vulnerability in the CLI of Cisco ThousandEyes Enterprise Agent could allow an authenticated,... Moderate Unreviewed

CVE-2026-20161 was published Apr 15, 2026

During an internal security assessment, a potential vulnerability was discovered in Lenovo... Moderate Unreviewed

CVE-2026-4135 was published Apr 15, 2026

During an internal security assessment, a potential vulnerability was discovered in Lenovo... Moderate Unreviewed

CVE-2026-0827 was published Apr 15, 2026

Improper link resolution before file access ('link following') in Universal Plug and Play (upnp... Moderate Unreviewed

CVE-2026-32212 was published Apr 14, 2026

On Linux, if the target of Root.Chmod is replaced with a symlink while the chmod operation is in... Moderate Unreviewed

CVE-2026-32282 was published Apr 8, 2026

This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 18.7.7... Moderate Unreviewed

CVE-2026-28866 was published Mar 25, 2026

This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 26.3 and... Moderate Unreviewed

CVE-2026-20694 was published Mar 25, 2026

This issue was addressed with improved handling of symlinks. This issue is fixed in macOS Sequoia... Moderate Unreviewed

CVE-2026-20633 was published Mar 25, 2026

RustDesk Client for Windows Transfer File Link Following Information Disclosure Vulnerability.... Moderate Unreviewed

CVE-2026-2490 was published Feb 21, 2026

Previous1…20 Next

Previous 1 2 3 4 5 … 19 20 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

492 advisories