GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
616 advisories
Filter by severity
Open Redirect in GitHub repository mosparo/mosparo prior to 1.0.2.
Moderate
Unreviewed
CVE-2023-5375
was published
Oct 4, 2023
An authenticated user can see and modify the value for ‘next’ query parameter in Symantec...
Moderate
Unreviewed
CVE-2023-23957
was published
Sep 19, 2023
An issue in IceWarp Mail Server Deep Castle 2 v.13.0.1.2 allows a remote attacker to execute...
Moderate
Unreviewed
CVE-2023-40779
was published
Sep 14, 2023
An open redirect vulnerability in the sanitize_url() parameter of CouchCMS v2.3 allows attackers...
Moderate
Unreviewed
CVE-2023-41609
was published
Sep 11, 2023
SAP S/4HANA Manage Catalog Items and Cross-Catalog searches Fiori apps allow an attacker to...
Moderate
Unreviewed
CVE-2023-40306
was published
Sep 9, 2023
A vulnerability in the web-based management interface of Cisco HyperFlex HX Data Platform could...
Moderate
Unreviewed
CVE-2023-20263
was published
Sep 6, 2023
Open redirect vulnerability in VI Web Client prior to 7.9.6 allows a remote unauthenticated...
Moderate
Unreviewed
CVE-2023-38574
was published
Sep 5, 2023
StarTrinity Softswitch version 2023-02-16 - Open Redirect (CWE-601)
Moderate
Unreviewed
CVE-2023-39371
was published
Sep 3, 2023
An issue has been discovered in GitLab affecting all versions starting from 4.1 before 16.1.5,...
Moderate
Unreviewed
CVE-2023-1279
was published
Sep 1, 2023
There is an open redirect vulnerability in Titan FTP server 19.0 and below. Users are redirected...
Moderate
Unreviewed
CVE-2022-44215
was published
Aug 22, 2023
Unauth. Open Redirect vulnerability in Arscode Ninja Popups plugin <= 4.7.5 versions.
Moderate
Unreviewed
CVE-2022-27861
was published
Aug 10, 2023
An open redirect in the Login page of OPNsense before 23.7 allows attackers to redirect a victim...
Moderate
Unreviewed
CVE-2023-38998
was published
Aug 9, 2023
Fuge CMS v1.0 contains an Open Redirect vulnerability via /front/ProcessAct.java.
Moderate
Unreviewed
CVE-2023-34916
was published
Jul 31, 2023
Fuge CMS v1.0 contains an Open Redirect vulnerability in member/RegisterAct.java.
Moderate
Unreviewed
CVE-2023-34917
was published
Jul 31, 2023
Vound Intella Connect 2.6.0.3 has an Open Redirect vulnerability.
Moderate
Unreviewed
CVE-2023-35791
was published
Jul 31, 2023
Open Redirect vulnerability exists in IceWarp MailServer IceWarp Server Deep Castle 2 Update 1 ...
Moderate
Unreviewed
CVE-2021-36580
was published
Jul 27, 2023
Netdisco before v2.063000 was discovered to contain an open redirect vulnerability. An attacker...
Moderate
Unreviewed
CVE-2023-37624
was published
Jul 26, 2023
SeedDMS v6.0.15 was discovered to contain an open redirect vulnerability. An attacker may exploit...
Moderate
Unreviewed
CVE-2021-39425
was published
Jul 20, 2023
IBM Security Verify Access 10.0 could allow a remote attacker to conduct phishing attacks, using...
Moderate
Unreviewed
CVE-2023-30433
was published
Jul 19, 2023
URL redirection in Login page in HCL BigFix WebUI allows malicious user to redirect the client...
Moderate
Unreviewed
CVE-2023-28020
was published
Jul 18, 2023
A vulnerability was found in LivelyWorks Articart 2.0.1 and classified as problematic. Affected...
Moderate
Unreviewed
CVE-2023-3684
was published
Jul 16, 2023
Open redirect vulnerability in ELECOM wireless LAN routers and ELECOM wireless LAN repeaters...
Moderate
Unreviewed
CVE-2023-37561
was published
Jul 13, 2023
Improper Input Validation in GitHub repository fossbilling/fossbilling prior to 0.5.4.
Moderate
Unreviewed
CVE-2023-3568
was published
Jul 10, 2023
VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect...
Moderate
Unreviewed
CVE-2023-20884
was published
Jul 6, 2023
Devices using Snap One OvrC cloud are sent to a web address when...
Moderate
Unreviewed
CVE-2023-31245
was published
Jul 6, 2023
ProTip!
Advisories are also available from the
GraphQL API