Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,076
Erlang
29
GitHub Actions
19
Go
1,895
Maven
5,000+
npm
3,630
NuGet
638
pip
3,244
Pub
10
RubyGems
862
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

951 advisories

Loading
The Share This Image plugin for WordPress is vulnerable to Open Redirect in all versions up to,... High Unreviewed
CVE-2024-8761 was published Sep 17, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 11.1 before 17.1.7... Moderate Unreviewed
CVE-2024-4283 was published Sep 17, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 12.9 before 17.1.7... Moderate Unreviewed
CVE-2024-4612 was published Sep 12, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payara Platform Payara... High Unreviewed
CVE-2024-7312 was published Sep 11, 2024
Eclipse Glassfish URL redirection vulnerability Moderate
CVE-2024-8646 was published for org.glassfish.main.web:web-core (Maven) Sep 11, 2024
Keycloak Open Redirect vulnerability Moderate
CVE-2024-7260 was published for org.keycloak:keycloak-core (Maven) Sep 9, 2024
WebITR from Uniong has an Open Redirect vulnerability, which allows unauthorized remote attackers... Moderate Unreviewed
CVE-2024-8586 was published Sep 9, 2024
Loway - CWE-601: URL Redirection to Untrusted Site ('Open Redirect') Moderate Unreviewed
CVE-2024-42341 was published Sep 8, 2024
A vulnerability was found in SourceCodester Clinics Patient Management System 2.0. It has been... Moderate Unreviewed
CVE-2024-8555 was published Sep 7, 2024
A vulnerability, which was classified as problematic, was found in LinuxOSsk Shakal-NG up to 1.3... Moderate Unreviewed
CVE-2024-8412 was published Sep 4, 2024
If a site had been granted the permission to open popup windows, it could cause Select elements... Moderate Unreviewed
CVE-2024-8386 was published Sep 3, 2024
An Open Redirect vulnerability in the page parameter of vTiger CRM v7.4.0 allows attackers to... Moderate Unreviewed
CVE-2024-44776 was published Aug 29, 2024
IBM Security Verify Access 10.0.0 through 10.0.8 OIDC Provider could allow a remote attacker to... Moderate Unreviewed
CVE-2024-35133 was published Aug 29, 2024
An HTTP parameter may contain a URL value and could cause the web application to redirect the... Moderate Unreviewed
CVE-2024-7941 was published Aug 27, 2024
There is an Open Redirect vulnerability in Gnuboard v6.0.4 and below via the `url` parameter in... Moderate Unreviewed
CVE-2024-39097 was published Aug 26, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in OpenText™ Network Node... Moderate Unreviewed
CVE-2024-7428 was published Aug 23, 2024
Inadequate validation of URLs could result into an invalid check whether an redirect URL is... Unknown Unreviewed
CVE-2024-27184 was published Aug 20, 2024
A reflected Cross-site Scripting (XSS) vulnerability affecting 3DSwymer from Release 3DEXPERIENCE... High Unreviewed
CVE-2024-6377 was published Aug 20, 2024
An URL redirection to untrusted site (open redirect) vulnerability affecting 3DPassport in... High Unreviewed
CVE-2024-6379 was published Aug 20, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Salon Booking System Salon... Moderate Unreviewed
CVE-2024-43280 was published Aug 19, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Scott Paterson Easy PayPal... Moderate Unreviewed
CVE-2024-43236 was published Aug 19, 2024
A vulnerability was found in pkp ojs up to 3.4.0-6 and classified as problematic. Affected by... Moderate Unreviewed
CVE-2024-7902 was published Aug 18, 2024
WebOb's location header normalization during redirect leads to open redirect Moderate
CVE-2024-42353 was published for webob (pip) Aug 14, 2024
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability High Unreviewed
CVE-2024-38211 was published Aug 13, 2024
lorawan-stack Open Redirect vulnerability Moderate
CVE-2023-26494 was published for go.thethings.network/lorawan-stack/v3 (Go) Aug 5, 2024
ProTip! Advisories are also available from the GraphQL API