Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,950
Erlang
39
GitHub Actions
38
Go
2,603
Maven
5,000+
npm
4,250
NuGet
755
pip
4,013
Pub
12
RubyGems
953
Rust
1,048
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,052 advisories

Loading
Open redirection vulnerability in MOLGENIS EMX2 v11.14.0. This vulnerability allows an attacker... Moderate Unreviewed
CVE-2025-10355 was published Oct 23, 2025
Vulnerability in the Oracle Scripting product of Oracle E-Business Suite (component:... Moderate Unreviewed
CVE-2025-61753 was published Oct 21, 2025
Unspecified vulnerability in the Oracle Application Server Single Sign-On component in Oracle... Moderate Unreviewed
CVE-2012-0518 was published May 4, 2022
Insufficient validation of untrusted input in Intents in Google Chrome on Android prior to 95.0... Moderate Unreviewed
CVE-2021-38000 was published Nov 24, 2021
Koa Vulnerable to Open Redirect via Trailing Double-Slash (//) in back Redirect Logic Moderate
CVE-2025-62595 was published for koa (npm) Oct 21, 2025
haymizrachi
Credited to haymizrachi
CVE-2025-54088 is an open-redirect vulnerability in Secure Access prior to version 14.10.... Moderate Unreviewed
CVE-2025-54088 was published Oct 2, 2025
chi Allows Host Header Injection which Leads to Open Redirect in RedirectSlashes Moderate
GHSA-vrw8-fxc6-2r93 was published for github.com/go-chi/chi/v5 (Go) Jun 20, 2025
anuraagbaishya
Credited to anuraagbaishya
The CM Registration – Tailored tool for seamless login and invitation-based registrations plugin... Moderate Unreviewed
CVE-2025-11167 was published Oct 11, 2025
Newforma Info Exchange (NIX) '/DownloadWeb/hyperlinkredirect.aspx' provides an unauthenticated... Moderate Unreviewed
CVE-2025-35059 was published Oct 9, 2025
Open redirection vulnerability in IceWarp Mail Server affecting version 11.4.0. This... Moderate Unreviewed
CVE-2025-40630 was published May 16, 2025
The vulnerability exists in the EJBCA service, version 8.0 Enterprise. By making a small change... Moderate Unreviewed
CVE-2025-3027 was published Mar 31, 2025
An open redirect vulnerability existed in KNIME Business Hub prior to version 1.16.0. An... Moderate Unreviewed
CVE-2025-11240 was published Oct 2, 2025
WSO2 is vulnerable to Open Redirect through multi-option URL in its authentication endpoint Moderate
CVE-2024-1440 was published for org.wso2.carbon.identity.framework:org.wso2.carbon.identity.application.authentication.endpoint.util (Maven) Jun 2, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Logo Software Inc. Logo... Moderate Unreviewed
CVE-2025-0608 was published Oct 6, 2025
There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.4 and below that may... Moderate Unreviewed
CVE-2025-57879 was published Sep 29, 2025
There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.4 and below that may... Moderate Unreviewed
CVE-2025-57872 was published Sep 29, 2025
There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.4 and below that may... Moderate Unreviewed
CVE-2025-57878 was published Sep 29, 2025
lobe-chat has an Open Redirect Moderate
CVE-2025-59426 was published for @lobehub/chat (npm) Sep 24, 2025
im-soohyun
Credited to im-soohyun
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms... Moderate Unreviewed
CVE-2025-58006 was published Sep 22, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Pusula Communication... Moderate Unreviewed
CVE-2025-7702 was published Sep 19, 2025
Liferay Portal's System, Instance and Site Settings are vulnerable to Open Redirect Moderate
CVE-2025-43795 was published for com.liferay:com.liferay.configuration.admin.web (Maven) Sep 12, 2025
A vulnerability has been found in Freshwork up to 1.2.3. This impacts an unknown function of the... Moderate Unreviewed
CVE-2025-10229 was published Sep 11, 2025
TYPO3 CMS has an open‑redirect vulnerability Moderate
CVE-2025-59013 was published for typo3/cms-core (Composer) Sep 9, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in GoodBarber GoodBarber. This... Moderate Unreviewed
CVE-2025-39523 was published Sep 9, 2025
A vulnerability in Cisco Webex Meetings could have allowed an unauthenticated, remote attacker to... Moderate Unreviewed
CVE-2025-20291 was published Sep 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database