GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
719 advisories
Filter by severity
A vulnerability in the web-based management interface of Cisco ECE could allow an...
Moderate
Unreviewed
CVE-2022-20634
was published
Nov 15, 2024
An open redirection vulnerability exists in pyload/pyload version 0.5.0. The vulnerability is due...
Moderate
Unreviewed
CVE-2024-1240
was published
Nov 15, 2024
A vulnerability has been found in Apereo CAS 6.6 and classified as problematic. Affected by this...
Moderate
Unreviewed
CVE-2024-11207
was published
Nov 14, 2024
HCL BigFix Compliance is affected by unvalidated redirects and forwards. The HOST header can be...
Moderate
Unreviewed
CVE-2024-30140
was published
Nov 7, 2024
Bruno before 1.29.1 uses Electron shell.openExternal without validation (of http or https) for...
Moderate
Unreviewed
CVE-2024-48463
was published
Nov 4, 2024
An Open-Redirect vulnerability exists in PingAM where well-crafted requests may cause improper...
Moderate
Unreviewed
CVE-2024-25566
was published
Oct 29, 2024
PbootCMS 3.2.8 is vulnerable to URL Redirect.
Moderate
Unreviewed
CVE-2024-42930
was published
Oct 28, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WP Sunshine Sunshine Photo...
Moderate
Unreviewed
CVE-2024-50463
was published
Oct 28, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in smp7, wp.Insider Simple...
Moderate
Unreviewed
CVE-2024-49682
was published
Oct 24, 2024
Public Knowledge Project pkp-lib 3.4.0-7 and earlier is vulnerable to Open redirect due to a lack...
Moderate
Unreviewed
CVE-2024-46326
was published
Oct 21, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in QuomodoSoft ElementsReady...
Moderate
Unreviewed
CVE-2024-47353
was published
Oct 11, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in smp7, wp.Insider Simple...
Moderate
Unreviewed
CVE-2024-47354
was published
Oct 10, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in EventPrime Events EventPrime...
Moderate
Unreviewed
CVE-2024-47648
was published
Oct 10, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-43536
was published
Oct 8, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-43543
was published
Oct 8, 2024
The web server of affected devices does not properly validate input that is used for a user...
Moderate
Unreviewed
CVE-2024-46886
was published
Oct 8, 2024
Sonarr – CWE-601: URL Redirection to Untrusted Site ('Open Redirect')
Moderate
Unreviewed
CVE-2024-45247
was published
Oct 6, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payflex Payflex Payment...
Moderate
Unreviewed
CVE-2024-47646
was published
Oct 5, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Microchip TimeProvider 4100...
High
Unreviewed
CVE-2024-43683
was published
Oct 4, 2024
There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.0 and 10.9.1 that may...
Moderate
Unreviewed
CVE-2024-38037
was published
Oct 4, 2024
There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 10.8.1 - 11.2 that may...
Moderate
Unreviewed
CVE-2024-8148
was published
Oct 4, 2024
ModStartCMS v8.8.0 was discovered to contain an open redirect vulnerability in the redirect...
High
Unreviewed
CVE-2024-46331
was published
Sep 27, 2024
A host header injection vulnerability in BookReviewLibrary 1.0 allows attackers to obtain the...
High
Unreviewed
CVE-2024-45981
was published
Sep 26, 2024
A host header injection vulnerability in Lines Police CAD 1.0 allows attackers to obtain the...
High
Unreviewed
CVE-2024-45979
was published
Sep 26, 2024
Under certain conditions, an attacker with the ability to redirect users to a malicious site via...
Moderate
Unreviewed
CVE-2024-8897
was published
Sep 17, 2024
ProTip!
Advisories are also available from the
GraphQL API