Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,780
Erlang
36
GitHub Actions
29
Go
2,338
Maven
5,000+
npm
3,973
NuGet
715
pip
3,769
Pub
12
RubyGems
923
Rust
976
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

745 advisories

Loading
A vulnerability classified as problematic has been found in PHPGurukul COVID19 Testing Management... Moderate Unreviewed
CVE-2025-6286 was published Jun 20, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FunnelKit Automation By... Moderate Unreviewed
CVE-2025-49868 was published Jun 17, 2025
An open redirection vulnerability in M-Files mobile applications for Android and iOS prior to... Moderate Unreviewed
CVE-2025-2091 was published Jun 16, 2025
A vulnerability has been found in Astun Technology iShare Maps 5.4.0 and classified as... Moderate Unreviewed
CVE-2025-6089 was published Jun 15, 2025
The Payment Gateway for Telcell WordPress plugin through 2.0.1 does not validate the api_url... Moderate Unreviewed
CVE-2023-6786 was published May 15, 2025
The wccp-pro WordPress plugin before 15.3 contains an open-redirect flaw via the referrer... Moderate Unreviewed
CVE-2024-6690 was published May 15, 2025
SolarWinds Observability Self-Hosted is susceptible to an open redirection vulnerability. The... Moderate Unreviewed
CVE-2025-26394 was published Jun 10, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Automattic Newspack... Moderate Unreviewed
CVE-2025-49325 was published Jun 6, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms... Moderate Unreviewed
CVE-2025-30953 was published Jun 6, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms... Moderate Unreviewed
CVE-2025-30954 was published Jun 6, 2025
An open redirection vulnerability exists in multiple WSO2 products due to improper validation of... Moderate Unreviewed
CVE-2024-1440 was published Jun 2, 2025
An issue was discovered in ViewerJS 0.5.8. A script from the component loads content via URL TAGs... Moderate Unreviewed
CVE-2024-25676 was published May 1, 2024
Vound Intella Connect 2.6.0.3 has an Open Redirect vulnerability. Moderate Unreviewed
CVE-2023-35791 was published Jul 31, 2023
An issue was discovered in Zammad before 6.2.0. An attacker can trigger phishing links in... Moderate Unreviewed
CVE-2023-50456 was published Dec 10, 2023
A vulnerability was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1... Moderate Unreviewed
CVE-2025-5183 was published May 26, 2025
CWE-601: URL Redirection to Untrusted Site ('Open Redirect') Moderate Unreviewed
CVE-2025-23183 was published May 22, 2025
The Affiliate Sales in Google Analytics and other tools plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2024-12561 was published May 21, 2025
In JetBrains TeamCity before 2025.03.2 open redirect was possible on editing VCS Root page Moderate Unreviewed
CVE-2025-47854 was published May 20, 2025
The Identity Server used by 1E Platform could enable URL redirection to untrusted sites. Note:... Moderate Unreviewed
CVE-2024-7211 was published Aug 1, 2024
The SEOPress WordPress plugin before 7.8 does not validate and escape one of its Post settings,... Moderate Unreviewed
CVE-2024-4900 was published Jun 24, 2024
A vulnerability, which was classified as problematic, was found in kanwangzjm Funiture up to... Moderate Unreviewed
CVE-2025-4838 was published May 18, 2025
Open redirection vulnerability in IceWarp Mail Server affecting version 11.4.0. This... Moderate Unreviewed
CVE-2025-40630 was published May 16, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Uncanny Owl Uncanny Toolkit... Moderate Unreviewed
CVE-2023-34020 was published Mar 27, 2024
The Live Auction Cockpit in SAP Supplier Relationship Management (SRM) uses a deprecated java... Moderate Unreviewed
CVE-2025-30010 was published May 13, 2025
Websites directing users to long URLs that caused eliding to occur in the location view could... Moderate Unreviewed
CVE-2025-3859 was published Apr 30, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database