Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,179
Erlang
31
GitHub Actions
19
Go
1,982
Maven
5,000+
npm
3,701
NuGet
656
pip
3,323
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+

986 advisories

Loading
URL Confusion When Scheme Not Supplied in medialize/uri.js Moderate
CVE-2022-1233 was published for urijs (npm) Apr 5, 2022
URL Redirection to Untrusted Site ('Open Redirect') in express-openid-connect High
CVE-2022-24794 was published for express-openid-connect (npm) Mar 31, 2022
jviding kurt-r2c
Archer 6.x through 6.9 P2 (6.9.0.2) is affected by an open redirect vulnerability. A remote... Moderate Unreviewed
CVE-2022-26950 was published Mar 31, 2022
An issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0. Inadequate... Moderate Unreviewed
CVE-2022-23798 was published Mar 31, 2022
An issue has been discovered affecting GitLab versions prior to 13.5. An open redirect... Moderate Unreviewed
CVE-2022-0283 was published Mar 29, 2022
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and... Moderate Unreviewed
CVE-2005-10001 was published Mar 29, 2022
Open Redirect in Flask-AppBuilder Moderate
CVE-2022-24776 was published for Flask-AppBuilder (pip) Mar 25, 2022
Gitea Open Redirect Moderate
CVE-2022-1058 was published for code.gitea.io/gitea (Go) Mar 25, 2022
Cscms Music Portal System v4.2 was discovered to contain a redirection vulnerability via the... Moderate Unreviewed
CVE-2022-27090 was published Mar 23, 2022
Server-Side Request Forgery in Apache Dubbo Moderate
CVE-2021-25640 was published for com.alibaba:dubbo (Maven) Mar 18, 2022
Open Redirect Moderate
CVE-2021-32645 was published for hyn/multi-tenant (Composer) Mar 18, 2022
JaZo
The Page Builder KingComposer WordPress plugin through 2.9.6 does not validate the id parameter... High Unreviewed
CVE-2022-0165 was published Mar 15, 2022
Server-Side Request Forgery and Open Redirect in AllTube Download High
CVE-2022-24739 was published for rudloff/alltube (Composer) Mar 9, 2022
Rudloff
Open Redirect in archivy Moderate
CVE-2022-0697 was published for archivy (pip) Mar 8, 2022
Open Redirect in urijs Moderate
CVE-2022-0868 was published for urijs (npm) Mar 7, 2022
Open Redirect in django-spirit Moderate
CVE-2022-0869 was published for django-spirit (pip) Mar 7, 2022
DLink DIR850 ET850-1.08TRb03 is affected by an incorrect access control vulnerability through URL... Moderate Unreviewed
CVE-2021-46379 was published Mar 5, 2022
Open Redirect in CPython that affects users of OpenStack Nova Moderate
CVE-2021-3654 was published for nova (pip) Mar 4, 2022
Forwarding of confidentials headers to third parties in fluture-node Low
CVE-2022-24719 was published for fluture-node (npm) Mar 1, 2022
An issue was discovered in the web application in Cherwell Service Management (CSM) 10.2.3.... Moderate Unreviewed
CVE-2022-26156 was published Mar 1, 2022
An issue was discovered in the web application in Cherwell Service Management (CSM) 10.2.3. It... Moderate Unreviewed
CVE-2022-26158 was published Mar 1, 2022
In JetBrains TeamCity before 2021.2.1, a redirection to an external site was possible. Moderate Unreviewed
CVE-2022-24330 was published Feb 26, 2022
Open redirect in karma Moderate
CVE-2021-23495 was published for karma (npm) Feb 26, 2022
A remote URL redirection vulnerability was discovered in HPE OneView Global Dashboard version(s):... Moderate Unreviewed
CVE-2021-29217 was published Feb 25, 2022
Open Redirect in AllTube Moderate
CVE-2022-0692 was published for rudloff/alltube (Composer) Feb 23, 2022
hitisec
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database