Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,692
Erlang
34
GitHub Actions
27
Go
2,278
Maven
5,000+
npm
3,931
NuGet
708
pip
3,699
Pub
12
RubyGems
919
Rust
957
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,108 advisories

Loading
The Live Auction Cockpit in SAP Supplier Relationship Management (SRM) uses a deprecated java... Moderate Unreviewed
CVE-2025-30010 was published May 13, 2025
A vulnerability classified as problematic was found in Catalyst User Key Authentication Plugin... Moderate Unreviewed
CVE-2025-4513 was published May 10, 2025
Rapid7 Corporate Website prior to May 2nd 2025, suffered from a URL Redirection to Untrusted Site... Low Unreviewed
CVE-2025-4132 was published May 8, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in formsintegrations... Moderate Unreviewed
CVE-2025-47644 was published May 7, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms... Moderate Unreviewed
CVE-2025-47456 was published May 7, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms... Moderate Unreviewed
CVE-2025-47454 was published May 7, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Integration for... Moderate Unreviewed
CVE-2025-47455 was published May 7, 2025
A vulnerability was found in fp2952 spring-cloud-base up to... Moderate Unreviewed
CVE-2025-4328 was published May 6, 2025
@misskey-dev/summaly Redirect Filter Bypass Low
CVE-2025-46553 was published for @misskey-dev/summaly (npm) May 5, 2025
warriordog
@cloudflare/workers-oauth-provider missing validation of redirect_uri on authorize endpoint Moderate
CVE-2025-4143 was published for @cloudflare/workers-oauth-provider (npm) May 1, 2025
Duplicate Advisory: @cloudflare/workers-oauth-provider missing validation of redirect_uri on authorize endpoint Moderate
GHSA-7cp4-jw97-3rc2 was published for @cloudflare/workers-oauth-provider (npm) May 1, 2025 withdrawn
Websites directing users to long URLs that caused eliding to occur in the location view could... Moderate Unreviewed
CVE-2025-3859 was published Apr 30, 2025
org.xwiki.platform:xwiki-platform-wysiwyg-api Open Redirect vulnerability Moderate
CVE-2025-32970 was published for org.xwiki.platform:xwiki-platform-wysiwyg-api (Maven) Apr 29, 2025
An open redirect vulnerability was reported in the FileZ client that could allow information... Moderate Unreviewed
CVE-2025-2068 was published Apr 25, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Heateor Support Sassy Social... Moderate Unreviewed
CVE-2025-39404 was published Apr 24, 2025
The KnowBe4 Security Awareness Training application before 2020-01-10 contains a redirect... Moderate Unreviewed
CVE-2020-36845 was published Apr 21, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Webilia Inc. Listdom allows... Moderate Unreviewed
CVE-2025-39599 was published Apr 16, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Arthur Yarwood Fast eBay... Moderate Unreviewed
CVE-2025-39597 was published Apr 16, 2025
Thunderbird processes the X-Mozilla-External-Attachment-URL header to handle attachments which... Moderate Unreviewed
CVE-2025-3522 was published Apr 15, 2025
Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Open Redirect attacks... Moderate Unreviewed
CVE-2024-49706 was published Apr 14, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Rustaurius Ultimate WP Mail... Moderate Unreviewed
CVE-2025-32694 was published Apr 9, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WPWebinarSystem WebinarPress... Moderate Unreviewed
CVE-2025-32693 was published Apr 9, 2025
The Advanced Advertising System plugin for WordPress is vulnerable to Open Redirect in all... Moderate Unreviewed
CVE-2025-3433 was published Apr 8, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Galaxy Weblinks WP Clone any... Moderate Unreviewed
CVE-2025-31871 was published Apr 1, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in formsintegrations... Moderate Unreviewed
CVE-2025-31821 was published Apr 1, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database