Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,952
Erlang
39
GitHub Actions
38
Go
2,609
Maven
5,000+
npm
4,252
NuGet
757
pip
4,023
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,055 advisories

Loading
ApiFest OAuth 2.0 Server 0.3.1 does not validate the redirect URI in accordance with RFC 6749 and... Moderate Unreviewed
CVE-2020-26877 was published Jun 30, 2022
IBM Marketing Platform 10.0 could allow a remote attacker to conduct phishing attacks, caused by... Moderate Unreviewed
CVE-2016-0228 was published May 17, 2022
A vulnerability in the web-based GUI of Cisco Unified Communications Domain Manager could allow... Moderate Unreviewed
CVE-2017-6670 was published May 17, 2022
An open redirect vulnerability in GitLab EE/CE affecting all versions from 11.1 prior to 14.10.5,... Moderate Unreviewed
CVE-2022-2250 was published Jul 2, 2022
An open redirect vulnerability in Fortinet FortiPortal 4.0.0 and below allows attacker to execute... Moderate Unreviewed
CVE-2017-7343 was published May 17, 2022
Open redirect vulnerability in the proxyimages function in wowproxy.php in the Wow Moodboard Lite... Moderate Unreviewed
CVE-2015-4070 was published May 17, 2022
Jensen of Scandinavia AS Air:Link 3G (AL3G) version 2.23m (Rev. 3), Air:Link 5000AC (AL5000AC)... Moderate Unreviewed
CVE-2016-10315 was published May 17, 2022
IBM Sterling B2B Integrator Standard Edition could allow a remote attacker to conduct phishing... Moderate Unreviewed
CVE-2016-6020 was published May 17, 2022
Sleipnir 4 Black Edition for Mac 4.5.3 and earlier and Sleipnir 4 for Mac 4.5.3 and earlier (Mac... Moderate Unreviewed
CVE-2016-7831 was published May 17, 2022
Open redirect vulnerability in comment.php in Serendipity through 2.0.5 allows remote attackers... Moderate Unreviewed
CVE-2017-5474 was published May 17, 2022
Jensen of Scandinavia AS Air:Link 3G (AL3G) version 2.23m (Rev. 3), Air:Link 5000AC (AL5000AC)... Moderate Unreviewed
CVE-2016-10316 was published May 17, 2022
Open redirect vulnerability in Proxmox Mail Gateway prior to hotfix 4.0-8-097d26a9 allows remote... Moderate Unreviewed
CVE-2015-9058 was published May 17, 2022
An issue was discovered in Kabona AB WebDatorCentral (WDC) application prior to Version 3.4.0.... Moderate Unreviewed
CVE-2016-8376 was published May 17, 2022
IBM BigFix Inventory v9 could allow a remote attacker to conduct phishing attacks, using an open... Moderate Unreviewed
CVE-2016-8961 was published May 17, 2022
The "Scheduler" function in Cybozu Garoon before 4.2.2 allows remote attackers to redirect users... Moderate Unreviewed
CVE-2016-1213 was published May 17, 2022
Best Practical Request Tracker (RT) before 5.0.3 has an Open Redirect via a ticket search. Moderate Unreviewed
CVE-2022-25803 was published Jul 15, 2022
Open redirect vulnerability in the login page in Cisco TC Software before 6.3-26 and 7.x before 7... Moderate Unreviewed
CVE-2015-0697 was published May 17, 2022
Oils JS vulnerable to Open Redirect Moderate
CVE-2021-4260 was published for oils (npm) Dec 19, 2022
Characters from languages are such as Arabic, Hebrew are displayed from RTL (Right To Left) order... Moderate Unreviewed
CVE-2016-6908 was published May 17, 2022
An open redirect vulnerability exists in CERT/CC VINCE software prior to 1.5.0. An attacker could... Moderate Unreviewed
CVE-2022-25799 was published Aug 17, 2022
Open redirect vulnerability in Booked versions prior to 3.3 allows a remote unauthenticated... Moderate Unreviewed
CVE-2022-30706 was published Jul 27, 2022
IBM WebSphere Application Server (WAS) Liberty, as used in IBM Security Privileged Identity... Moderate Unreviewed
CVE-2016-3040 was published May 17, 2022
Unauthenticated redirection to a malicious website Moderate Unreviewed
CVE-2022-27509 was published Jul 29, 2022
Open Redirect in Apache Superset Moderate
CVE-2021-28125 was published for apache-superset (pip) Oct 6, 2021
westonsteimel
Credited to westonsteimel
Open redirect vulnerability in the web portal in IBM Tealeaf Customer Experience before 8.7.1... Moderate Unreviewed
CVE-2016-5977 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database