GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,979
Composer 4,785
Erlang 36
GitHub Actions 29
Go 2,358
Maven 5,673
npm 3,979
NuGet 720
pip 3,777
Pub 12
RubyGems 924
Rust 981
Swift 38

Unreviewed advisories

All unreviewed 260,842

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

53 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A malicious third-party can give a crafted "ssh://..." URL to an unsuspecting victim, and an... High Unreviewed

CVE-2017-1000117 was published May 13, 2022

Adobe Flash Player versions 26.0.0.137 and earlier have a security bypass vulnerability that... High Unreviewed

CVE-2017-3085 was published May 13, 2022

The XMLHttpRequest object in Opera 8.0 Final Build 1095 allows remote attackers to bypass access... High Unreviewed

CVE-2005-1475 was published May 1, 2022

The issue was addressed with improved input validation. This issue is fixed in Safari 18.4,... High Unreviewed

CVE-2025-24180 was published Apr 1, 2025

Dell Unity, version(s) 5.4 and prior, contain(s) an URL Redirection to Untrusted Site ('Open... High Unreviewed

CVE-2025-24381 was published Mar 28, 2025

In Zucchetti Ad Hoc Infinity 2.4, an improper check on the m_cURL parameter allows an attacker to... High Unreviewed

CVE-2024-51321 was published Mar 11, 2025

Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability High Unreviewed

CVE-2023-24892 was published Mar 14, 2023

The WPMobile.App plugin for WordPress is vulnerable to Open Redirect in all versions up to, and... High Unreviewed

CVE-2024-13888 was published Feb 20, 2025

The User Account and Authentication service (UAA) for SAP HANA extended application services,... High Unreviewed

CVE-2025-24868 was published Feb 11, 2025

The login page of Venki Supravizio BPM up to 18.1.1 is vulnerable to open redirect leading to... High Unreviewed

CVE-2024-46481 was published Jan 13, 2025

After downloading a Windows <code>.url</code> shortcut from the local filesystem, an attacker... High Unreviewed

CVE-2023-25734 was published Jun 2, 2023

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.1 prior to 17.4.6... High Unreviewed

CVE-2024-11274 was published Dec 12, 2024

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Microchip TimeProvider 4100... High Unreviewed

CVE-2024-43683 was published Oct 4, 2024

VMware SD-WAN Orchestrator contains an open redirect vulnerability. A malicious actor may be... High Unreviewed

CVE-2024-22248 was published Apr 2, 2024

Open redirection vulnerability in CDeX application allows to redirect users to arbitrary websites... High Unreviewed

CVE-2024-2465 was published Mar 21, 2024

An issue has been discovered in GitLab affecting all versions starting from 8.15 before 16.2.8,... High Unreviewed

CVE-2023-3922 was published Sep 29, 2023

ModStartCMS v8.8.0 was discovered to contain an open redirect vulnerability in the redirect... High Unreviewed

CVE-2024-46331 was published Sep 27, 2024

A host header injection vulnerability in Lines Police CAD 1.0 allows attackers to obtain the... High Unreviewed

CVE-2024-45979 was published Sep 26, 2024

A host header injection vulnerability in BookReviewLibrary 1.0 allows attackers to obtain the... High Unreviewed

CVE-2024-45981 was published Sep 26, 2024

The Share This Image plugin for WordPress is vulnerable to Open Redirect in all versions up to,... High Unreviewed

CVE-2024-8761 was published Sep 17, 2024

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payara Platform Payara... High Unreviewed

CVE-2024-7312 was published Sep 11, 2024

A DOM-based open redirection in the returnUrl parameter of INSTINCT UI Web Client 6.5.0 allows... High Unreviewed

CVE-2024-28287 was published Apr 2, 2024

An URL redirection to untrusted site (open redirect) vulnerability affecting 3DPassport in... High Unreviewed

CVE-2024-6379 was published Aug 20, 2024

A reflected Cross-site Scripting (XSS) vulnerability affecting 3DSwymer from Release 3DEXPERIENCE... High Unreviewed

CVE-2024-6377 was published Aug 20, 2024

An Improper Input Validation issue was discovered in GitLab Community and Enterprise Edition... High Unreviewed

CVE-2019-6781 was published May 24, 2022

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

53 advisories