Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

988 advisories

Loading
The Share This Image plugin for WordPress is vulnerable to Open Redirect in all versions up to,... High Unreviewed
CVE-2024-8761 was published Sep 17, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 11.1 before 17.1.7... Moderate Unreviewed
CVE-2024-4283 was published Sep 17, 2024
Django Grappelli Open Redirect vulnerability Moderate
CVE-2021-46898 was published for django-grappelli (pip) Oct 22, 2023
EC-CUBE Open redirect vulnerability Moderate
CVE-2018-16191 was published for ec-cube/ec-cube (Composer) May 14, 2022
xnuinside
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payara Platform Payara... High Unreviewed
CVE-2024-7312 was published Sep 11, 2024
Open Redirect in archivy Moderate
CVE-2022-0697 was published for archivy (pip) Mar 8, 2022
An issue has been discovered in GitLab EE affecting all versions starting from 12.9 before 17.1.7... Moderate Unreviewed
CVE-2024-4612 was published Sep 12, 2024
Apache Airflow Open Redirect vulnerability Moderate
CVE-2022-43985 was published for apache-airflow (pip) Nov 2, 2022
Apache Airflow contains open redirect Moderate
CVE-2022-40754 was published for apache-airflow (pip) Sep 22, 2022
Eclipse Glassfish URL redirection vulnerability Moderate
CVE-2024-8646 was published for org.glassfish.main.web:web-core (Maven) Sep 11, 2024
Keycloak Open Redirect vulnerability Moderate
CVE-2024-7260 was published for org.keycloak:keycloak-core (Maven) Sep 9, 2024
WebITR from Uniong has an Open Redirect vulnerability, which allows unauthorized remote attackers... Moderate Unreviewed
CVE-2024-8586 was published Sep 9, 2024
Loway - CWE-601: URL Redirection to Untrusted Site ('Open Redirect') Moderate Unreviewed
CVE-2024-42341 was published Sep 8, 2024
A vulnerability was found in SourceCodester Clinics Patient Management System 2.0. It has been... Moderate Unreviewed
CVE-2024-8555 was published Sep 7, 2024
The Identity Server used by 1E Platform could enable URL redirection to untrusted sites. Note:... Moderate Unreviewed
CVE-2024-7211 was published Aug 1, 2024
Setor Informatica S.I.L version 3.0 is vulnerable to Open Redirect via the hprinter parameter,... Moderate Unreviewed
CVE-2024-24034 was published Feb 8, 2024
Open Redirect in autobahn Moderate
CVE-2020-35678 was published for autobahn (pip) Apr 20, 2021
A vulnerability, which was classified as problematic, was found in LinuxOSsk Shakal-NG up to 1.3... Moderate Unreviewed
CVE-2024-8412 was published Sep 4, 2024
An Open Redirect vulnerability in the page parameter of vTiger CRM v7.4.0 allows attackers to... Moderate Unreviewed
CVE-2024-44776 was published Aug 29, 2024
Apache Airflow Contains Open Redirect Moderate
CVE-2022-45402 was published for apache-airflow (pip) Nov 15, 2022
sunSUNQ
`aiohttp` Open Redirect vulnerability (`normalize_path_middleware` middleware) Low
CVE-2021-21330 was published for aiohttp (pip) Feb 26, 2021
jelmer g147
Keycloak Cross-site Scripting (XSS) via assertion consumer service URL in SAML POST-binding flow Moderate
CVE-2023-6717 was published for org.keycloak:keycloak-services (Maven) Apr 17, 2024
IBM Security Verify Access 10.0.0 through 10.0.8 OIDC Provider could allow a remote attacker to... Moderate Unreviewed
CVE-2024-35133 was published Aug 29, 2024
A DOM-based open redirection in the returnUrl parameter of INSTINCT UI Web Client 6.5.0 allows... High Unreviewed
CVE-2024-28287 was published Apr 2, 2024
Spring Framework URL Parsing with Host Validation High
CVE-2024-22262 was published for org.springframework:spring-web (Maven) Apr 16, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database