GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,976
Erlang
29
GitHub Actions
16
Go
1,765
Maven
4,990
npm
3,534
NuGet
615
pip
3,103
Pub
10
RubyGems
837
Rust
785
Swift
34
Unreviewed advisories
All unreviewed
5,000+
908 advisories
Filter by severity
Drupal Anonymous Open Redirect
Moderate
GHSA-gfvf-2f25-f34r
was published
for
drupal/core
(Composer)
May 15, 2024
Drupal External URL injection through URL aliases leading to Open Redirect
Moderate
GHSA-7f4f-p7mq-p4fv
was published
for
drupal/core
(Composer)
May 15, 2024
A vulnerability in the web-based management interface of Cisco Crosswork Network Services...
Moderate
Unreviewed
CVE-2024-20369
was published
May 15, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in ILLID Share This Image.This...
Moderate
Unreviewed
CVE-2024-33930
was published
May 2, 2024
An issue in Wifire Hotspot v.4.5.3 allows a local attacker to execute arbitrary code via a...
High
Unreviewed
CVE-2024-26504
was published
May 1, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Deepen Bajracharya Video...
Moderate
Unreviewed
CVE-2024-33584
was published
Apr 29, 2024
Portainer before 2.20.0 allows redirects when the target is not index.yaml.
Critical
Unreviewed
CVE-2024-33661
was published
Apr 26, 2024
Privilege Escalation in Kubernetes
Moderate
CVE-2020-8559
was published
for
k8s.io/apimachinery
(Go)
Apr 24, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Foliovision FV Flowplayer...
Moderate
Unreviewed
CVE-2024-32078
was published
Apr 24, 2024
cg vulnerable to an Open Redirect Vulnerability on Referer Header
Moderate
GHSA-w228-rfpx-fhm4
was published
for
cg
(pip)
Apr 23, 2024
The SolarWinds Platform was susceptible to a Arbitrary Open Redirection Vulnerability. A...
High
Unreviewed
CVE-2024-28076
was published
Apr 18, 2024
Keycloak Cross-site Scripting (XSS) via assertion consumer service URL in SAML POST-binding flow
Moderate
CVE-2023-6717
was published
for
org.keycloak:keycloak-services
(Maven)
Apr 17, 2024
Keycloak path traversal vulnerability in the redirect validation
High
CVE-2024-2419
was published
for
org.keycloak:keycloak-services
(Maven)
Apr 17, 2024
gradio Server-Side Request Forgery vulnerability
Moderate
CVE-2024-1183
was published
for
gradio
(pip)
Apr 16, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Freshworks Freshdesk ...
Moderate
Unreviewed
CVE-2024-32129
was published
Apr 15, 2024
An Open Redirect vulnerability was found in Sipwise C5 NGCP Dashboard below mr11.5.1. The Open...
Low
Unreviewed
CVE-2024-28344
was published
Apr 10, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WP OAuth Server OAuth Server...
Moderate
Unreviewed
CVE-2024-31253
was published
Apr 10, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Appcheap.Io App Builder.This...
Moderate
Unreviewed
CVE-2024-31282
was published
Apr 10, 2024
In JetBrains TeamCity before 2024.03 open redirect was possible on the login page
Moderate
Unreviewed
CVE-2024-31135
was published
Mar 28, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Uncanny Owl Uncanny Toolkit...
Moderate
Unreviewed
CVE-2023-34020
was published
Mar 27, 2024
Express.js Open Redirect in malformed URLs
Moderate
CVE-2024-29041
was published
for
express
(npm)
Mar 25, 2024
Open redirection vulnerability in CDeX application allows to redirect users to arbitrary websites...
Unknown
Unreviewed
CVE-2024-2465
was published
Mar 21, 2024
Spring Framework URL Parsing with Host Validation Vulnerability
High
CVE-2024-22259
was published
for
org.springframework:spring-web
(Maven)
Mar 16, 2024
URL Redirection to Untrusted Site in OAuth2/OpenID in directus
Moderate
CVE-2024-28239
was published
for
directus
(npm)
Mar 12, 2024
An open redirect vulnerability, the exploitation of which could allow an attacker to create a...
Moderate
Unreviewed
CVE-2024-1227
was published
Mar 12, 2024
ProTip!
Advisories are also available from the
GraphQL API