Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

993 advisories

Loading
An open redirect vulnerability in Hubzilla before version 7.2 allows remote attackers to redirect... Moderate Unreviewed
CVE-2022-27256 was published Apr 14, 2022
SAP NetWeaver ABAP Server and ABAP Platform - versions 740, 750, 787, allows an unauthenticated... Moderate Unreviewed
CVE-2022-28215 was published Apr 13, 2022
Phoenix Arbitrary URL Redirect Moderate
CVE-2017-1000163 was published for phoenix (Erlang) Apr 12, 2022
HTTP Proxy header vulnerability High
CVE-2016-5385 was published for amphp/artax (Composer) Apr 7, 2022
OrangeHRM 4.10 suffers from a Referer header injection redirect vulnerability. Moderate Unreviewed
CVE-2022-27109 was published Apr 7, 2022
OrangeHRM 4.10 is vulnerable to a Host header injection redirect via viewPersonalDetails endpoint. Moderate Unreviewed
CVE-2022-27110 was published Apr 7, 2022
Open redirect in wwbn/avideo Moderate
CVE-2022-27463 was published for wwbn/avideo (Composer) Apr 6, 2022
URL Confusion When Scheme Not Supplied in medialize/uri.js Moderate
CVE-2022-1233 was published for urijs (npm) Apr 5, 2022
URL Redirection to Untrusted Site ('Open Redirect') in express-openid-connect High
CVE-2022-24794 was published for express-openid-connect (npm) Mar 31, 2022
jviding kurt-r2c
Archer 6.x through 6.9 P2 (6.9.0.2) is affected by an open redirect vulnerability. A remote... Moderate Unreviewed
CVE-2022-26950 was published Mar 31, 2022
An issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0. Inadequate... Moderate Unreviewed
CVE-2022-23798 was published Mar 31, 2022
An issue has been discovered affecting GitLab versions prior to 13.5. An open redirect... Moderate Unreviewed
CVE-2022-0283 was published Mar 29, 2022
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and... Moderate Unreviewed
CVE-2005-10001 was published Mar 29, 2022
Open Redirect in Flask-AppBuilder Moderate
CVE-2022-24776 was published for Flask-AppBuilder (pip) Mar 25, 2022
Gitea Open Redirect Moderate
CVE-2022-1058 was published for code.gitea.io/gitea (Go) Mar 25, 2022
Cscms Music Portal System v4.2 was discovered to contain a redirection vulnerability via the... Moderate Unreviewed
CVE-2022-27090 was published Mar 23, 2022
Server-Side Request Forgery in Apache Dubbo Moderate
CVE-2021-25640 was published for com.alibaba:dubbo (Maven) Mar 18, 2022
Open Redirect Moderate
CVE-2021-32645 was published for hyn/multi-tenant (Composer) Mar 18, 2022
JaZo
The Page Builder KingComposer WordPress plugin through 2.9.6 does not validate the id parameter... High Unreviewed
CVE-2022-0165 was published Mar 15, 2022
Server-Side Request Forgery and Open Redirect in AllTube Download High
CVE-2022-24739 was published for rudloff/alltube (Composer) Mar 9, 2022
Rudloff
Open Redirect in archivy Moderate
CVE-2022-0697 was published for archivy (pip) Mar 8, 2022
Open Redirect in urijs Moderate
CVE-2022-0868 was published for urijs (npm) Mar 7, 2022
Open Redirect in django-spirit Moderate
CVE-2022-0869 was published for django-spirit (pip) Mar 7, 2022
DLink DIR850 ET850-1.08TRb03 is affected by an incorrect access control vulnerability through URL... Moderate Unreviewed
CVE-2021-46379 was published Mar 5, 2022
Open Redirect in CPython that affects users of OpenStack Nova Moderate
CVE-2021-3654 was published for nova (pip) Mar 4, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database