Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,963
Erlang
39
GitHub Actions
38
Go
2,615
Maven
5,000+
npm
4,255
NuGet
760
pip
4,036
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,221 advisories

Loading
CWE-601: URL Redirection to Untrusted Site ('Open Redirect') Moderate Unreviewed
CVE-2025-23183 was published May 22, 2025
The Affiliate Sales in Google Analytics and other tools plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-12561 was published May 21, 2025
In JetBrains TeamCity before 2025.03.2 open redirect was possible on editing VCS Root page Moderate Unreviewed
CVE-2025-47854 was published May 20, 2025
A vulnerability, which was classified as problematic, was found in kanwangzjm Funiture up to... Moderate Unreviewed
CVE-2025-4838 was published May 18, 2025
Flask-AppBuilder open redirect vulnerability using HTTP host injection Moderate
CVE-2025-32962 was published for flask-appbuilder (pip) May 16, 2025
0xr0n0
Credited to 0xr0n0
Open redirection vulnerability in IceWarp Mail Server affecting version 11.4.0. This... Moderate Unreviewed
CVE-2025-40630 was published May 16, 2025
The wccp-pro WordPress plugin before 15.3 contains an open-redirect flaw via the referrer... Moderate Unreviewed
CVE-2024-6690 was published May 15, 2025
The Payment Gateway for Telcell WordPress plugin through 2.0.1 does not validate the api_url... Moderate Unreviewed
CVE-2023-6786 was published May 15, 2025
The Live Auction Cockpit in SAP Supplier Relationship Management (SRM) uses a deprecated java... Moderate Unreviewed
CVE-2025-30010 was published May 13, 2025
A vulnerability classified as problematic was found in Catalyst User Key Authentication Plugin... Moderate Unreviewed
CVE-2025-4513 was published May 10, 2025
Rapid7 Corporate Website prior to May 2nd 2025, suffered from a URL Redirection to Untrusted Site... Low Unreviewed
CVE-2025-4132 was published May 8, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in formsintegrations... Moderate Unreviewed
CVE-2025-47644 was published May 7, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms... Moderate Unreviewed
CVE-2025-47456 was published May 7, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for... Moderate Unreviewed
CVE-2025-47455 was published May 7, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms... Moderate Unreviewed
CVE-2025-47454 was published May 7, 2025
A vulnerability was found in fp2952 spring-cloud-base up to... Moderate Unreviewed
CVE-2025-4328 was published May 6, 2025
@misskey-dev/summaly Redirect Filter Bypass Low
CVE-2025-46553 was published for @misskey-dev/summaly (npm) May 5, 2025
warriordog
Credited to warriordog
@cloudflare/workers-oauth-provider missing validation of redirect_uri on authorize endpoint Moderate
CVE-2025-4143 was published for @cloudflare/workers-oauth-provider (npm) May 1, 2025
Duplicate Advisory: @cloudflare/workers-oauth-provider missing validation of redirect_uri on authorize endpoint Moderate
GHSA-7cp4-jw97-3rc2 was published for @cloudflare/workers-oauth-provider (npm) May 1, 2025 withdrawn
Websites directing users to long URLs that caused eliding to occur in the location view could... Moderate Unreviewed
CVE-2025-3859 was published Apr 30, 2025
org.xwiki.platform:xwiki-platform-wysiwyg-api Open Redirect vulnerability Moderate
CVE-2025-32970 was published for org.xwiki.platform:xwiki-platform-wysiwyg-api (Maven) Apr 29, 2025
An open redirect vulnerability was reported in the FileZ client that could allow information... Moderate Unreviewed
CVE-2025-2068 was published Apr 25, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Heateor Support Sassy Social... Moderate Unreviewed
CVE-2025-39404 was published Apr 24, 2025
The KnowBe4 Security Awareness Training application before 2020-01-10 contains a redirect... Moderate Unreviewed
CVE-2020-36845 was published Apr 21, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Webilia Inc. Listdom allows... Moderate Unreviewed
CVE-2025-39599 was published Apr 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database