GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,512
Composer 4,968
Erlang 39
GitHub Actions 38
Go 2,616
Maven 6,100
npm 4,255
NuGet 760
pip 4,040
Pub 12
RubyGems 953
Rust 1,050
Swift 45

Unreviewed advisories

All unreviewed 275,916

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,056 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The login.jsp resource in Jira before version 8.5.2, and from version 8.6.0 before version 8.6.1... Moderate Unreviewed

CVE-2019-20901 was published May 24, 2022

In Octopus Deploy through 2020.4.2, an attacker could redirect users to an external site via a... Moderate Unreviewed

CVE-2020-26161 was published May 24, 2022

Open redirect vulnerability in CyberMail Ver.6.x and Ver.7.x allows remote attackers to redirect... Moderate Unreviewed

CVE-2020-5541 was published May 24, 2022

SAP NetWeaver AS Java, versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, Start Page allows an... Moderate Unreviewed

CVE-2020-6365 was published May 24, 2022

Open redirect in SeedDMS 6.0.13 via the dropfolderfileform1 parameter to out/out.AddDocument.php. Moderate Unreviewed

CVE-2020-28726 was published May 24, 2022

SAP Solution Manager (Trace Analysis), version - 720, allows for misuse of a parameter in the... Moderate Unreviewed

CVE-2020-26836 was published May 24, 2022

touchbase.ai before version 2.0 is vulnerable to Open Redirect. Impacts can be many, and vary... Moderate Unreviewed

CVE-2020-26219 was published May 24, 2022

SuiteCRM through 7.11.13 has an Open Redirect in the Documents module via a crafted SVG document. Moderate Unreviewed

CVE-2020-15300 was published May 24, 2022

IProom MMC+ Server login page does not validate specific parameters properly. Attackers can use... Moderate Unreviewed

CVE-2020-24551 was published May 24, 2022

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Hewlett Packard Enterprise... Moderate Unreviewed

CVE-2022-37927 was published Dec 12, 2022

IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.19 Interim Fix 7 could allow a remote attacker to... Moderate Unreviewed

CVE-2020-4849 was published May 24, 2022

The online help portal of Mitel MiCollab before 9.2 could allow an attacker to redirect a user to... Moderate Unreviewed

CVE-2020-27340 was published May 24, 2022

In versions 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.3, 13.1.0-13.1.3.4, 12.1.0-12.1.5.2,... Moderate Unreviewed

CVE-2020-27729 was published May 24, 2022

IBM Security Secret Server 10.6 could allow a remote attacker to conduct phishing attacks, using... Moderate Unreviewed

CVE-2020-4840 was published May 24, 2022

In JetBrains Hub before 2020.1.12629, an open redirect was possible. Moderate Unreviewed

CVE-2021-25757 was published May 24, 2022

Open redirect vulnerability in b2evolution CMS version prior to 6.11.6 allows an attacker to... Moderate Unreviewed

CVE-2020-22840 was published May 24, 2022

When a user typed a URL in the address bar or the search bar and quickly hit the enter key, a... Moderate Unreviewed

CVE-2020-26979 was published May 24, 2022

SAP Web Dynpro ABAP allow an attacker to redirect users to a malicious site due to Reverse... Moderate Unreviewed

CVE-2021-21478 was published May 24, 2022

Archer before 6.8 P2 (6.8.0.2) is affected by an open redirect vulnerability. A remote privileged... Moderate Unreviewed

CVE-2020-29537 was published May 24, 2022

SAP UI5, versions - 1.38.49, 1.52.49, 1.60.34, 1.71.31, 1.78.18, 1.84.5, 1.85.4, 1.86.1, allows... Moderate Unreviewed

CVE-2021-21476 was published May 24, 2022

On BIG-IP Advanced WAF and ASM version 15.1.x before 15.1.0.2, 15.0.x before 15.0.1.4, 14.1.x... Moderate Unreviewed

CVE-2021-22984 was published May 24, 2022

Askey RTF8115VW BR_SV_g11.11_RTF_TEF001_V6.54_V014 devices allow injection of a Host HTTP header. Moderate Unreviewed

CVE-2021-27404 was published May 24, 2022

Dell Wyse Management Suite versions prior to 3.1 contain an open redirect vulnerability. A remote... Moderate Unreviewed

CVE-2020-29498 was published May 24, 2022

I-Net Software Clear Reports 20.10.136 web application accepts a user-controlled input that... Moderate Unreviewed

CVE-2020-28150 was published May 24, 2022

SAP Netweaver Application Server Java (Applications based on WebDynpro Java) versions 7.00, 7.10,... Moderate Unreviewed

CVE-2021-21491 was published May 24, 2022

Previous 1…6…43 Next

Previous 1 2 3 4 5 6 7 8 … 42 43 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,056 advisories