GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
616 advisories
Filter by severity
An issue has been discovered in GitLab CE/EE affecting all versions before 15.8.5, 15.9.4, 15.10...
Moderate
Unreviewed
CVE-2023-0155
was published
May 3, 2023
A vulnerability, which was classified as problematic, has been found in Icons for Features Plugin...
Moderate
Unreviewed
CVE-2015-10104
was published
Apr 30, 2023
A vulnerability, which was classified as critical, has been found in Freshdesk Plugin 1.7 on...
Moderate
Unreviewed
CVE-2015-10102
was published
Apr 17, 2023
There exists an open redirect within the response list update functionality of ServiceNow. This...
Moderate
Unreviewed
CVE-2022-46886
was published
Apr 14, 2023
Microsoft Edge (Chromium-based) Spoofing Vulnerability
Moderate
Unreviewed
CVE-2023-24935
was published
Apr 11, 2023
A url redirection to untrusted site ('open redirect') in Fortinet FortiOS version 7.2.0 through 7...
Moderate
Unreviewed
CVE-2023-22641
was published
Apr 11, 2023
Dell Streaming Data Platform prior to 1.4 contains Open Redirect vulnerability. An attacker with...
Moderate
Unreviewed
CVE-2023-28069
was published
Apr 5, 2023
A vulnerability classified as problematic has been found in Arno0x TwoFactorAuth. This affects an...
Moderate
Unreviewed
CVE-2016-15030
was published
Mar 25, 2023
Potential security vulnerabilities have been identified in the HPE FlexFabric 5700 Switch Series....
Moderate
Unreviewed
CVE-2022-37940
was published
Mar 22, 2023
The WP Meta SEO WordPress plugin before 4.5.3 does not authorize several ajax actions, allowing...
Moderate
Unreviewed
CVE-2023-0876
was published
Mar 20, 2023
An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 1.47...
Moderate
Unreviewed
CVE-2022-4317
was published
Mar 9, 2023
An issue has been discovered in GitLab affecting all versions starting from 10.0 to 15.7.8, 15.8...
Moderate
Unreviewed
CVE-2022-3381
was published
Mar 9, 2023
PMB v7.4.6 was discovered to contain an open redirect vulnerability via the component /opac_css...
Moderate
Unreviewed
CVE-2023-24735
was published
Mar 6, 2023
A vulnerability was found in ualbertalib NEOSDiscovery 1.0.70 and classified as problematic. This...
Moderate
Unreviewed
CVE-2022-4927
was published
Mar 5, 2023
An open redirect vulnerability exposes OpenCATS to template injection due to improper validation...
Moderate
Unreviewed
CVE-2023-27292
was published
Feb 28, 2023
The Registration Forms WordPress plugin before 3.8.2.3 does not properly validate the redirection...
Moderate
Unreviewed
CVE-2023-0552
was published
Feb 27, 2023
SquaredUp Dashboard Server SCOM edition before 5.7.1 GA allows open redirection. (The issue was...
Moderate
Unreviewed
CVE-2022-46784
was published
Feb 24, 2023
An open redirect issue was discovered in Kibana that could lead to a user being redirected to an...
Moderate
Unreviewed
CVE-2022-38779
was published
Feb 22, 2023
SAP NetWeaver AS for ABAP and ABAP Platform - versions 740, 750, 751, 752, 753, 754, 755, 756,...
Moderate
Unreviewed
CVE-2023-23860
was published
Feb 14, 2023
An unauthenticated attacker in AP NetWeaver Application Server for ABAP and ABAP Platform -...
Moderate
Unreviewed
CVE-2023-23853
was published
Feb 14, 2023
SAP Solution Manager - version 720, allows an authenticated attacker to redirect users to a...
Moderate
Unreviewed
CVE-2023-23855
was published
Feb 14, 2023
An open redirect to malicious sites can occur when accessing the "Feedback" action on the manager...
Moderate
Unreviewed
CVE-2022-38657
was published
Feb 12, 2023
keycloak 18.0.0: open redirect in auth endpoint via the redirect_uri parameter.
Moderate
Unreviewed
CVE-2022-1970
was published
Feb 12, 2023
Prior to commit 51867e0d15a6d7f80d5b714fd0e9976b9c160bb0, https://github.com/brave/adblock-lists...
Moderate
Unreviewed
CVE-2023-22798
was published
Feb 9, 2023
Open Redirect in GitHub repository btcpayserver/btcpayserver prior to 1.7.6.
Moderate
Unreviewed
CVE-2023-0748
was published
Feb 8, 2023
ProTip!
Advisories are also available from the
GraphQL API