Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,675
Maven
5,000+
npm
4,297
NuGet
760
pip
4,077
Pub
12
RubyGems
957
Rust
1,058
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,065 advisories

Loading
The ChangeSharedFilterOwner resource in Jira before version 7.13.6, from version 8.0.0 before... Moderate Unreviewed
CVE-2019-11589 was published May 24, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.4 prior to... Moderate Unreviewed
CVE-2023-0042 was published Jan 12, 2023
Jenkins Google Login Plugin Open Redirect vulnerability Moderate
CVE-2022-46683 was published for org.jenkins-ci.plugins:google-login (Maven) Dec 12, 2022
Moodle Plugin - SAML Auth may allow Open Redirect through unspecified vectors. Moderate Unreviewed
CVE-2022-39183 was published Jan 12, 2023
Open redirect via user-controlled query parameter. The following products are affected: Acronis... Moderate Unreviewed
CVE-2022-30992 was published May 19, 2022
The workspace client, openspace client, and app development client of TIBCO Software Inc.'s TIBCO... Moderate Unreviewed
CVE-2019-8995 was published May 24, 2022
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository jgraph/drawio... Moderate Unreviewed
CVE-2022-1774 was published May 19, 2022
Optergy Proton/Enterprise devices allow Open Redirect. Moderate Unreviewed
CVE-2019-7275 was published May 24, 2022
Jenkins Google Login Plugin Open Redirect vulnerability Moderate
CVE-2018-1000174 was published for org.jenkins-ci.plugins:google-login (Maven) May 14, 2022
By exploiting an Open Redirect vulnerability on a website, an attacker could have spoofed the... Moderate Unreviewed
CVE-2020-15677 was published May 24, 2022
OpenAM Consortium Edition version 14.0.0 provided by OpenAM Consortium contains an open redirect... Moderate Unreviewed
CVE-2022-31735 was published Sep 16, 2022
An issue was discovered in WSO2 Identity Server through 5.10.0 and WSO2 IS as Key Manager through... Moderate Unreviewed
CVE-2020-14446 was published May 24, 2022
Authenticated OpenRedirect Vulnerability Moderate
CVE-2022-41965 was published for org.opencastproject:opencast-common (Maven) Nov 30, 2022
geichelberger
Credited to geichelberger
Open redirect vulnerability in IBM FileNet Workplace 4.0.2 before 4.0.2.14 allows remote... Moderate Unreviewed
CVE-2016-5878 was published May 17, 2022
Open redirect vulnerability in IBM FileNet Workplace 4.0.2 through 4.0.2.14 IF001 allows remote... Moderate Unreviewed
CVE-2016-3047 was published May 17, 2022
Open redirect vulnerability in the web portal in IBM Tealeaf Customer Experience before 8.7.1... Moderate Unreviewed
CVE-2016-5977 was published May 17, 2022
Open Redirect in Apache Superset Moderate
CVE-2021-28125 was published for apache-superset (pip) Oct 6, 2021
westonsteimel
Credited to westonsteimel
Unauthenticated redirection to a malicious website Moderate Unreviewed
CVE-2022-27509 was published Jul 29, 2022
IBM WebSphere Application Server (WAS) Liberty, as used in IBM Security Privileged Identity... Moderate Unreviewed
CVE-2016-3040 was published May 17, 2022
Open redirect vulnerability in Booked versions prior to 3.3 allows a remote unauthenticated... Moderate Unreviewed
CVE-2022-30706 was published Jul 27, 2022
An open redirect vulnerability exists in CERT/CC VINCE software prior to 1.5.0. An attacker could... Moderate Unreviewed
CVE-2022-25799 was published Aug 17, 2022
Characters from languages are such as Arabic, Hebrew are displayed from RTL (Right To Left) order... Moderate Unreviewed
CVE-2016-6908 was published May 17, 2022
Oils JS vulnerable to Open Redirect Moderate
CVE-2021-4260 was published for oils (npm) Dec 19, 2022
Open redirect vulnerability in the login page in Cisco TC Software before 6.3-26 and 7.x before 7... Moderate Unreviewed
CVE-2015-0697 was published May 17, 2022
Best Practical Request Tracker (RT) before 5.0.3 has an Open Redirect via a ticket search. Moderate Unreviewed
CVE-2022-25803 was published Jul 15, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database