Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,801
Erlang
36
GitHub Actions
29
Go
2,380
Maven
5,000+
npm
4,010
NuGet
720
pip
3,810
Pub
12
RubyGems
930
Rust
986
Swift
38
Unreviewed advisories
All unreviewed
5,000+

246 advisories

Loading
pyLoad open redirect vulnerability due to improper validation of the is_safe_url function Moderate
CVE-2024-24808 was published for pyload-ng (pip) Feb 5, 2024
isacaya
keycloak-core: open redirect via "form_post.jwt" JARM response mode Moderate
CVE-2023-6927 was published for org.keycloak:keycloak-core (Maven) Jan 23, 2024
PontusHanssen kasperkarlsson
Chetven
Flarum's logout Route allows open redirects Moderate
CVE-2024-21641 was published for flarum/core (Composer) Jan 5, 2024
imorland DavideIadeluca
anonymous-nlp-student
Follow Redirects improperly handles URLs in the url.parse() function Moderate
CVE-2023-26159 was published for follow-redirects (npm) Jan 2, 2024
iainsproat
Open redirect vulnerability in Flask-Security-Too Moderate
CVE-2023-49438 was published for Flask-Security-Too (pip) Dec 27, 2023
jwag956 brandon-t-elliott
Duplicate Advisory: Keycloak Open Redirect vulnerability Moderate
GHSA-3p75-q5cc-qmj7 was published for org.keycloak:keycloak-parent (Maven) Dec 19, 2023 withdrawn
Open redirect in Apache Shiro Moderate
CVE-2023-46750 was published for org.apache.shiro:shiro-web (Maven) Dec 14, 2023
Open redirect vulnerability in Jenkins OpenId Connect Authentication Plugin Moderate
CVE-2023-50771 was published for org.jenkins-ci.plugins:oic-auth (Maven) Dec 13, 2023
westonsteimel
Apache Superset Open Redirect vulnerability Moderate
CVE-2023-42502 was published for apache-superset (pip) Nov 28, 2023
Mattermost Open Redirect vulnerability Moderate
CVE-2023-47168 was published for github.com/mattermost/mattermost-server/v6 (Go) Nov 27, 2023
DOMPurify Open Redirect vulnerability Moderate
CVE-2019-25155 was published for dompurify (npm) Nov 14, 2023
Django Grappelli Open Redirect vulnerability Moderate
CVE-2021-46898 was published for django-grappelli (pip) Oct 22, 2023
Authorization Header forwarded on redirect Moderate
CVE-2018-25091 was published for urllib3 (pip) Oct 15, 2023
Open Redirect Vulnerability in jupyter-server Moderate
CVE-2023-39968 was published for jupyter-server (pip) Aug 29, 2023
davwwwx
Apache Tomcat Open Redirect vulnerability Moderate
CVE-2023-41080 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Aug 25, 2023
cdupuis
Horizon Web Dashboard Open Redirect vulnerability Moderate
CVE-2022-45582 was published for horizon (pip) Aug 22, 2023
Jenkins OpenShift Login Plugin vulnerable to Open Redirect Moderate
CVE-2023-37947 was published for org.openshift.jenkins:openshift-login (Maven) Jul 12, 2023
yt-dlp File Downloader cookie leak Moderate
CVE-2023-35934 was published for yt-dlp (pip) Jul 6, 2023
Grub4K bashonly
coletdjnz
Artesãos SEOTools Open Redirect vulnerability Moderate
CVE-2020-36663 was published for artesaos/seotools (Composer) Jul 6, 2023
Artesãos SEOTools Open Redirect vulnerability Moderate
CVE-2020-36665 was published for artesaos/seotools (Composer) Jul 6, 2023
Artesãos SEOTools Open Redirect vulnerability Moderate
CVE-2020-36664 was published for artesaos/seotools (Composer) Jul 6, 2023
@keystone-6/auth Open Redirect vulnerability Moderate
CVE-2023-34247 was published for @keystone-6/auth (npm) Jun 14, 2023
scgajge12
Open redirect in Tornado Moderate
CVE-2023-28370 was published for tornado (pip) May 25, 2023
christian-ruiz bdarnell
org.xwiki.platform:xwiki-platform-oldcore Open Redirect vulnerability Moderate
CVE-2023-32068 was published for org.xwiki.platform:xwiki-platform-oldcore (Maven) May 15, 2023
Tauri Open Redirect Vulnerability Possibly Exposes IPC to External Sites Moderate
CVE-2023-31134 was published for tauri (Rust) May 3, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database