Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

863 advisories

Loading
An Open-Redirect vulnerability exists in PingAM where well-crafted requests may cause improper... Moderate Unreviewed
CVE-2024-25566 was published Oct 29, 2024
HCL BigFix Compliance is affected by unvalidated redirects and forwards. The HOST header can be... Moderate Unreviewed
CVE-2024-30140 was published Nov 7, 2024
Bruno before 1.29.1 uses Electron shell.openExternal without validation (of http or https) for... Moderate Unreviewed
CVE-2024-48463 was published Nov 4, 2024
Inadequate validation of URLs could result into an invalid check whether an redirect URL is... Moderate Unreviewed
CVE-2024-27184 was published Aug 20, 2024
URL spoofing vulnerability exists in a-blog cms Ver.3.1.0 to Ver.3.1.8. If an attacker sends a... Moderate Unreviewed
CVE-2024-25559 was published Feb 15, 2024
PbootCMS 3.2.8 is vulnerable to URL Redirect. Moderate Unreviewed
CVE-2024-42930 was published Oct 28, 2024
If a site had been granted the permission to open popup windows, it could cause Select elements... Moderate Unreviewed
CVE-2024-8386 was published Sep 3, 2024
Redirection of users to a vulnerable URL in Citrix Workspace app for HTML5 Moderate Unreviewed
CVE-2024-6149 was published Jul 10, 2024
An issue was discovered in ViewerJS 0.5.8. A script from the component loads content via URL TAGs... Moderate Unreviewed
CVE-2024-25676 was published May 1, 2024
Coder vulnerable to post-auth URL redirection to untrusted site ('Open Redirect') Moderate
GHSA-wcx9-ccpj-hx3c was published for github.com/coder/coder/v2 (Go) Oct 28, 2024
jchristov
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WP Sunshine Sunshine Photo... Moderate Unreviewed
CVE-2024-50463 was published Oct 28, 2024
rdiffweb Open Redirect vulnerability Moderate
CVE-2022-4644 was published for rdiffweb (pip) Dec 22, 2022
python-fedora vulnerable to an open redirect resulting in loss of CSRF protection Moderate
CVE-2017-1002150 was published for python-fedora (pip) Jul 13, 2018
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in smp7, wp.Insider Simple... Moderate Unreviewed
CVE-2024-49682 was published Oct 24, 2024
Public Knowledge Project pkp-lib 3.4.0-7 and earlier is vulnerable to Open redirect due to a lack... Moderate Unreviewed
CVE-2024-46326 was published Oct 21, 2024
Cross-site Scripting and Open Redirect in Products.ATContentTypes Moderate
CVE-2022-23599 was published for Products.ATContentTypes (pip) Jan 28, 2022
URL Redirection to Untrusted Site ('Open Redirect') in Products.PluggableAuthService Moderate
CVE-2021-21337 was published for Products.PluggableAuthService (pip) Mar 8, 2021
jugmac00 xoffense
Plone Open Redirect Moderate
CVE-2017-1000484 was published for Plone (pip) Jan 4, 2019
Plone Open Redirect Vulnerability Moderate
CVE-2020-7936 was published for Plone (pip) May 24, 2022
Products.CMFPlone Open Redirect Vulnerability Moderate
CVE-2017-1000481 was published for Plone (pip) May 14, 2022
A URL parameter during login flow was vulnerable to injection. An attacker could insert a... Moderate Unreviewed
CVE-2023-28799 was published Jun 22, 2023
Plone Open Redirect Vulnerability Moderate
CVE-2016-7137 was published for plone (pip) May 14, 2022
Vulnerable Redirect URI Validation Results in Open Redirect Moderate
GHSA-w8gr-xwp4-r9f7 was published for org.keycloak:keycloak-services (Maven) Oct 14, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in QuomodoSoft ElementsReady... Moderate Unreviewed
CVE-2024-47353 was published Oct 11, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in EventPrime Events EventPrime... Moderate Unreviewed
CVE-2024-47648 was published Oct 10, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database