GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+
956 advisories
Filter by severity
The SolarWinds Platform was susceptible to a Arbitrary Open Redirection Vulnerability. A...
High
Unreviewed
CVE-2024-28076
was published
Apr 18, 2024
Keycloak Cross-site Scripting (XSS) via assertion consumer service URL in SAML POST-binding flow
Moderate
CVE-2023-6717
was published
for
org.keycloak:keycloak-services
(Maven)
Apr 17, 2024
Keycloak path traversal vulnerability in the redirect validation
High
CVE-2024-2419
was published
for
org.keycloak:keycloak-services
(Maven)
Apr 17, 2024
Spring Framework URL Parsing with Host Validation
High
CVE-2024-22262
was published
for
org.springframework:spring-web
(Maven)
Apr 16, 2024
gradio Server-Side Request Forgery vulnerability
Moderate
CVE-2024-1183
was published
for
gradio
(pip)
Apr 16, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Freshworks Freshdesk ...
Moderate
Unreviewed
CVE-2024-32129
was published
Apr 15, 2024
An Open Redirect vulnerability was found in Sipwise C5 NGCP Dashboard below mr11.5.1. The Open...
Low
Unreviewed
CVE-2024-28344
was published
Apr 10, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WP OAuth Server OAuth Server...
Moderate
Unreviewed
CVE-2024-31253
was published
Apr 10, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Appcheap.Io App Builder.This...
Moderate
Unreviewed
CVE-2024-31282
was published
Apr 10, 2024
A DOM-based open redirection in the returnUrl parameter of INSTINCT UI Web Client 6.5.0 allows...
High
Unreviewed
CVE-2024-28287
was published
Apr 2, 2024
In JetBrains TeamCity before 2024.03 open redirect was possible on the login page
Moderate
Unreviewed
CVE-2024-31135
was published
Mar 28, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Uncanny Owl Uncanny Toolkit...
Moderate
Unreviewed
CVE-2023-34020
was published
Mar 27, 2024
Express.js Open Redirect in malformed URLs
Moderate
CVE-2024-29041
was published
for
express
(npm)
Mar 25, 2024
Open redirection vulnerability in CDeX application allows to redirect users to arbitrary websites...
Unknown
Unreviewed
CVE-2024-2465
was published
Mar 21, 2024
An open redirect in the Login/Logout functionality of web management in AVSystem Unified...
Moderate
Unreviewed
CVE-2024-25657
was published
Mar 18, 2024
Spring Framework URL Parsing with Host Validation Vulnerability
High
CVE-2024-22259
was published
for
org.springframework:spring-web
(Maven)
Mar 16, 2024
URL Redirection to Untrusted Site in OAuth2/OpenID in directus
Moderate
CVE-2024-28239
was published
for
directus
(npm)
Mar 12, 2024
An open redirect vulnerability, the exploitation of which could allow an attacker to create a...
Moderate
Unreviewed
CVE-2024-1227
was published
Mar 12, 2024
Docassemble open redirect
Moderate
CVE-2024-27291
was published
for
docassemble.webapp
(pip)
Feb 29, 2024
Inadequate parsing of URLs could result into an open redirect.
Unknown
Unreviewed
CVE-2024-21723
was published
Feb 29, 2024
Spring Web vulnerable to Open Redirect or Server Side Request Forgery
High
CVE-2024-22243
was published
for
org.springframework:spring-web
(Maven)
Feb 23, 2024
An issue was discovered in LIVEBOX Collaboration vDesk through v031. A URL Redirection to an...
Moderate
Unreviewed
CVE-2022-45169
was published
Feb 21, 2024
HtmlUtil.escapeRedirect in Liferay Portal 7.2.0 through 7.4.3.18, and older unsupported versions,...
Moderate
Unreviewed
CVE-2024-25608
was published
Feb 20, 2024
HtmlUtil.escapeRedirect in Liferay Portal 7.2.0 through 7.4.3.12, and older unsupported versions,...
Moderate
Unreviewed
CVE-2024-25609
was published
Feb 20, 2024
Open redirect vulnerability in adaptive media administration page in Liferay DXP 2023.Q3 before...
Moderate
Unreviewed
CVE-2023-44308
was published
Feb 20, 2024
ProTip!
Advisories are also available from the
GraphQL API