GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,033
Composer 5,080
Erlang 39
GitHub Actions 38
Go 2,750
Maven 6,169
npm 4,356
NuGet 765
pip 4,116
Pub 12
RubyGems 960
Rust 1,069
Swift 45

Unreviewed advisories

All unreviewed 280,750

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,074 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Smartstore (aka SmartStoreNET) before 4.1.0 allows CommonController.ClearCache,... Moderate Unreviewed

CVE-2020-36365 was published May 24, 2022

A vulnerability in the web-based management interface of Cisco Integrated Management Controller ... Moderate Unreviewed

CVE-2021-1397 was published May 24, 2022

In HomeAutomation 3.3.2 input passed via the 'redirect' GET parameter in 'api.php' script is not... Moderate Unreviewed

CVE-2020-21998 was published May 24, 2022

In the Ninja Forms Contact Form WordPress plugin before 3.4.34, the wp_ajax_nf_oauth_connect AJAX... Moderate Unreviewed

CVE-2021-24165 was published May 24, 2022

GetSimpleCMS <=3.3.15 has an open redirect in admin/changedata.php via the redirect function to... Moderate Unreviewed

CVE-2020-18660 was published May 24, 2022

An Open Redirect vulnerability in EpiServer Find before 13.2.7 allows an attacker to redirect... Moderate Unreviewed

CVE-2020-24550 was published May 24, 2022

The Plus Addons for Elementor Page Builder WordPress plugin before 4.1.10 did not validate a... Moderate Unreviewed

CVE-2021-24358 was published May 24, 2022

An open redirect vulnerability in Ilch CMS version 2.1.42 allows attackers to redirect users to... Moderate Unreviewed

CVE-2021-27352 was published May 24, 2022

Open Redirect in Z-BlogPHP v1.5.2 and earlier allows remote attackers to obtain sensitive... Moderate Unreviewed

CVE-2020-18268 was published May 24, 2022

A vulnerability in the web-based management interface of Cisco Finesse could allow an... Moderate Unreviewed

CVE-2021-1358 was published May 24, 2022

When subscribing using AcyMailing, the 'redirect' parameter isn't properly sanitized. Turning the... Moderate Unreviewed

CVE-2021-24288 was published May 24, 2022

In specific situations SAP GUI for Windows, versions - 7.60, 7.70 forwards a user to specific... Moderate Unreviewed

CVE-2021-27612 was published May 24, 2022

A vulnerability in the system Service Menu component of Avaya Aura Experience Portal may allow... Moderate Unreviewed

CVE-2021-25655 was published May 24, 2022

A remote URL redirection vulnerability was discovered in Aruba AirWave Management Platform... Moderate Unreviewed

CVE-2021-29137 was published May 24, 2022

An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. There is... Moderate Unreviewed

CVE-2020-35560 was published May 24, 2022

An open redirect vulnerability exists in the return_page redirection functionality of phpGACL 3.3... Moderate Unreviewed

CVE-2020-13565 was published May 24, 2022

Revive Adserver before 5.1.0 is vulnerable to open redirects via the `dest`, `oadest`, and/or ... Moderate Unreviewed

CVE-2021-22873 was published May 24, 2022

There is an open redirect in the PhastPress WordPress plugin before 1.111 that allows an attacker... Moderate Unreviewed

CVE-2021-24210 was published May 24, 2022

An issue existed in the parsing of URLs. This issue was addressed with improved input validation.... Moderate Unreviewed

CVE-2020-9995 was published May 24, 2022

A vulnerability in the web management interface of Cisco Smart Software Manager satellite could... Moderate Unreviewed

CVE-2021-1218 was published May 24, 2022

An open redirect issue was discovered in OPNsense through 20.1.5. The redirect parameter "url" in... Moderate Unreviewed

CVE-2020-23015 was published May 24, 2022

Tableau Server fails to validate certain URLs that are embedded in emails sent to Tableau Server... Moderate Unreviewed

CVE-2021-1629 was published May 24, 2022

Unvalidated client-side URL redirect vulnerability in McAfee ePolicy Orchestrator (ePO) prior to... Moderate Unreviewed

CVE-2021-23888 was published May 24, 2022

The appstore before 8.12.0.0 exposes some of its components, and the attacker can cause remote... Moderate Unreviewed

CVE-2020-12483 was published May 24, 2022

SAP Netweaver Application Server Java (Applications based on WebDynpro Java) versions 7.00, 7.10,... Moderate Unreviewed

CVE-2021-21491 was published May 24, 2022

Previous 1…37…43 Next

Previous 1 2 … 35 36 37 38 39 … 42 43 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,074 advisories