Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

993 advisories

Loading
IBM Content Navigator 3.0CD could allow attackers to direct web traffic to a malicious site. If... Moderate Unreviewed
CVE-2019-4035 was published May 13, 2022
Adobe Flash Player versions 26.0.0.137 and earlier have a security bypass vulnerability that... High Unreviewed
CVE-2017-3085 was published May 13, 2022
Open redirect vulnerability in the SO Connect SO WIFI hotspot web interface, prior to version 140... Moderate Unreviewed
CVE-2018-7473 was published May 13, 2022
With Cloud Foundry Runtime cf-release versions v209 or earlier, UAA Standalone versions 2.2.6 or... Moderate Unreviewed
CVE-2015-3190 was published May 13, 2022
In Cloud Foundry router routing-release all versions prior to v0.163.0 and cf-release all... Moderate Unreviewed
CVE-2017-8047 was published May 13, 2022
The OAuth authorization implementation in Pivotal Cloud Foundry (PCF) before 242; UAA 2.x before... Moderate Unreviewed
CVE-2016-6636 was published May 13, 2022
Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 prior to 6.7.2.1, ProxySG 6.5 prior to 6.5.10... Moderate Unreviewed
CVE-2016-9099 was published May 13, 2022
Jive before 2016.3.1 has an open redirect from the external-link.jspa page. Moderate Unreviewed
CVE-2016-4334 was published May 13, 2022
Unvalidated redirect vulnerability in in NetIQ eDirectory before 9.1.1 HF1. Moderate Unreviewed
CVE-2018-7692 was published May 13, 2022
Moodle Arbitrary Redirect Moderate
CVE-2015-3175 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Moodle Open Redirect Via Error Messages Moderate
CVE-2011-4294 was published for moodle/moodle (Composer) May 13, 2022
Moodle Open Redirect in Calendar Set Page Moderate
CVE-2011-4582 was published for moodle/moodle (Composer) May 13, 2022
Zabbix before 2.2.21rc1, 3.x before 3.0.13rc1, 3.1.x and 3.2.x before 3.2.10rc1, and 3.3.x and 3... Moderate Unreviewed
CVE-2016-10742 was published May 13, 2022
sympa version 6.2.16 and later contains a CWE-601: URL Redirection to Untrusted Site ('Open... Moderate Unreviewed
CVE-2018-1000671 was published May 13, 2022
Kibana versions before 4.6.3 and 5.0.1 have an open redirect vulnerability that would enable an... Moderate Unreviewed
CVE-2016-10365 was published May 13, 2022
With X-Pack installed, Kibana versions before 5.3.1 have an open redirect vulnerability on the... Moderate Unreviewed
CVE-2017-8451 was published May 13, 2022
The fix in Kibana for ESA-2017-23 was incomplete. With X-Pack security enabled, Kibana versions... Moderate Unreviewed
CVE-2018-3819 was published May 13, 2022
Microsoft Exchange Server 2010 Service Pack 3 Update Rollup 20, Microsoft Exchange Server 2013... Moderate Unreviewed
CVE-2018-0924 was published May 13, 2022
The floragunn Search Guard plugin before 6.x-16 for Kibana allows URL injection for login... Moderate Unreviewed
CVE-2018-20698 was published May 13, 2022
A security feature bypass vulnerability exists when Microsoft Office does not validate URLs.An... Moderate Unreviewed
CVE-2019-0540 was published May 13, 2022
The Kibana fix for CVE-2017-8451 was found to be incomplete. With X-Pack installed, Kibana... Moderate Unreviewed
CVE-2017-11482 was published May 13, 2022
Open redirect vulnerability in WordPress Download Manager prior to version 2.9.51 allows remote... Moderate Unreviewed
CVE-2017-2217 was published May 13, 2022
download.cgi in Pulse Secure Pulse Connect Secure 8.1RX before 8.1R13 and 8.3RX before 8.3R4 and... Moderate Unreviewed
CVE-2018-14366 was published May 13, 2022
An open redirect in the Ninja Forms plugin before 3.3.19.1 for WordPress allows Remote Attackers... Moderate Unreviewed
CVE-2018-19796 was published May 13, 2022
Open redirect vulnerability in cgiemail and cgiecho allows remote attackers to redirect users to... Moderate Unreviewed
CVE-2017-5614 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database