Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,179
Erlang
31
GitHub Actions
19
Go
1,982
Maven
5,000+
npm
3,701
NuGet
656
pip
3,323
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

639 advisories

Loading
HCL BigFix Compliance is affected by unvalidated redirects and forwards. The HOST header can be... Moderate Unreviewed
CVE-2024-30140 was published Nov 7, 2024
Bruno before 1.29.1 uses Electron shell.openExternal without validation (of http or https) for... Moderate Unreviewed
CVE-2024-48463 was published Nov 4, 2024
An Open-Redirect vulnerability exists in PingAM where well-crafted requests may cause improper... Moderate Unreviewed
CVE-2024-25566 was published Oct 29, 2024
PbootCMS 3.2.8 is vulnerable to URL Redirect. Moderate Unreviewed
CVE-2024-42930 was published Oct 28, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WP Sunshine Sunshine Photo... Moderate Unreviewed
CVE-2024-50463 was published Oct 28, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in smp7, wp.Insider Simple... Moderate Unreviewed
CVE-2024-49682 was published Oct 24, 2024
Public Knowledge Project pkp-lib 3.4.0-7 and earlier is vulnerable to Open redirect due to a lack... Moderate Unreviewed
CVE-2024-46326 was published Oct 21, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in QuomodoSoft ElementsReady... Moderate Unreviewed
CVE-2024-47353 was published Oct 11, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in EventPrime Events EventPrime... Moderate Unreviewed
CVE-2024-47648 was published Oct 10, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in smp7, wp.Insider Simple... Moderate Unreviewed
CVE-2024-47354 was published Oct 10, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43536 was published Oct 8, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability Moderate Unreviewed
CVE-2024-43543 was published Oct 8, 2024
The web server of affected devices does not properly validate input that is used for a user... Moderate Unreviewed
CVE-2024-46886 was published Oct 8, 2024
Sonarr – CWE-601: URL Redirection to Untrusted Site ('Open Redirect') Moderate Unreviewed
CVE-2024-45247 was published Oct 6, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payflex Payflex Payment... Moderate Unreviewed
CVE-2024-47646 was published Oct 5, 2024
There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 10.8.1 - 11.2 that may... Moderate Unreviewed
CVE-2024-8148 was published Oct 4, 2024
There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.0 and 10.9.1 that may... Moderate Unreviewed
CVE-2024-38037 was published Oct 4, 2024
Under certain conditions, an attacker with the ability to redirect users to a malicious site via... Moderate Unreviewed
CVE-2024-8897 was published Sep 17, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 11.1 before 17.1.7... Moderate Unreviewed
CVE-2024-4283 was published Sep 17, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 12.9 before 17.1.7... Moderate Unreviewed
CVE-2024-4612 was published Sep 12, 2024
WebITR from Uniong has an Open Redirect vulnerability, which allows unauthorized remote attackers... Moderate Unreviewed
CVE-2024-8586 was published Sep 9, 2024
Loway - CWE-601: URL Redirection to Untrusted Site ('Open Redirect') Moderate Unreviewed
CVE-2024-42341 was published Sep 8, 2024
A vulnerability was found in SourceCodester Clinics Patient Management System 2.0. It has been... Moderate Unreviewed
CVE-2024-8555 was published Sep 7, 2024
A vulnerability, which was classified as problematic, was found in LinuxOSsk Shakal-NG up to 1.3... Moderate Unreviewed
CVE-2024-8412 was published Sep 4, 2024
If a site had been granted the permission to open popup windows, it could cause Select elements... Moderate Unreviewed
CVE-2024-8386 was published Sep 3, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database