Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

616 advisories

Loading
An issue has been discovered in GitLab CE/EE affecting all versions before 15.8.5, 15.9.4, 15.10... Moderate Unreviewed
CVE-2023-0155 was published May 3, 2023
A vulnerability, which was classified as problematic, has been found in Icons for Features Plugin... Moderate Unreviewed
CVE-2015-10104 was published Apr 30, 2023
A vulnerability, which was classified as critical, has been found in Freshdesk Plugin 1.7 on... Moderate Unreviewed
CVE-2015-10102 was published Apr 17, 2023
There exists an open redirect within the response list update functionality of ServiceNow. This... Moderate Unreviewed
CVE-2022-46886 was published Apr 14, 2023
Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed
CVE-2023-24935 was published Apr 11, 2023
A url redirection to untrusted site ('open redirect') in Fortinet FortiOS version 7.2.0 through 7... Moderate Unreviewed
CVE-2023-22641 was published Apr 11, 2023
Dell Streaming Data Platform prior to 1.4 contains Open Redirect vulnerability. An attacker with... Moderate Unreviewed
CVE-2023-28069 was published Apr 5, 2023
A vulnerability classified as problematic has been found in Arno0x TwoFactorAuth. This affects an... Moderate Unreviewed
CVE-2016-15030 was published Mar 25, 2023
Potential security vulnerabilities have been identified in the HPE FlexFabric 5700 Switch Series.... Moderate Unreviewed
CVE-2022-37940 was published Mar 22, 2023
The WP Meta SEO WordPress plugin before 4.5.3 does not authorize several ajax actions, allowing... Moderate Unreviewed
CVE-2023-0876 was published Mar 20, 2023
An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 1.47... Moderate Unreviewed
CVE-2022-4317 was published Mar 9, 2023
An issue has been discovered in GitLab affecting all versions starting from 10.0 to 15.7.8, 15.8... Moderate Unreviewed
CVE-2022-3381 was published Mar 9, 2023
PMB v7.4.6 was discovered to contain an open redirect vulnerability via the component /opac_css... Moderate Unreviewed
CVE-2023-24735 was published Mar 6, 2023
A vulnerability was found in ualbertalib NEOSDiscovery 1.0.70 and classified as problematic. This... Moderate Unreviewed
CVE-2022-4927 was published Mar 5, 2023
An open redirect vulnerability exposes OpenCATS to template injection due to improper validation... Moderate Unreviewed
CVE-2023-27292 was published Feb 28, 2023
The Registration Forms WordPress plugin before 3.8.2.3 does not properly validate the redirection... Moderate Unreviewed
CVE-2023-0552 was published Feb 27, 2023
SquaredUp Dashboard Server SCOM edition before 5.7.1 GA allows open redirection. (The issue was... Moderate Unreviewed
CVE-2022-46784 was published Feb 24, 2023
An open redirect issue was discovered in Kibana that could lead to a user being redirected to an... Moderate Unreviewed
CVE-2022-38779 was published Feb 22, 2023
SAP NetWeaver AS for ABAP and ABAP Platform - versions 740, 750, 751, 752, 753, 754, 755, 756,... Moderate Unreviewed
CVE-2023-23860 was published Feb 14, 2023
An unauthenticated attacker in AP NetWeaver Application Server for ABAP and ABAP Platform -... Moderate Unreviewed
CVE-2023-23853 was published Feb 14, 2023
SAP Solution Manager - version 720, allows an authenticated attacker to redirect users to a... Moderate Unreviewed
CVE-2023-23855 was published Feb 14, 2023
An open redirect to malicious sites can occur when accessing the "Feedback" action on the manager... Moderate Unreviewed
CVE-2022-38657 was published Feb 12, 2023
keycloak 18.0.0: open redirect in auth endpoint via the redirect_uri parameter. Moderate Unreviewed
CVE-2022-1970 was published Feb 12, 2023
Prior to commit 51867e0d15a6d7f80d5b714fd0e9976b9c160bb0, https://github.com/brave/adblock-lists... Moderate Unreviewed
CVE-2023-22798 was published Feb 9, 2023
Open Redirect in GitHub repository btcpayserver/btcpayserver prior to 1.7.6. Moderate Unreviewed
CVE-2023-0748 was published Feb 8, 2023
ProTip! Advisories are also available from the GraphQL API