Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

616 advisories

Loading
Open Redirect in GitHub repository mosparo/mosparo prior to 1.0.2. Moderate Unreviewed
CVE-2023-5375 was published Oct 4, 2023
An authenticated user can see and modify the value for ‘next’ query parameter in Symantec... Moderate Unreviewed
CVE-2023-23957 was published Sep 19, 2023
An issue in IceWarp Mail Server Deep Castle 2 v.13.0.1.2 allows a remote attacker to execute... Moderate Unreviewed
CVE-2023-40779 was published Sep 14, 2023
An open redirect vulnerability in the sanitize_url() parameter of CouchCMS v2.3 allows attackers... Moderate Unreviewed
CVE-2023-41609 was published Sep 11, 2023
SAP S/4HANA Manage Catalog Items and Cross-Catalog searches Fiori apps allow an attacker to... Moderate Unreviewed
CVE-2023-40306 was published Sep 9, 2023
A vulnerability in the web-based management interface of Cisco HyperFlex HX Data Platform could... Moderate Unreviewed
CVE-2023-20263 was published Sep 6, 2023
Open redirect vulnerability in VI Web Client prior to 7.9.6 allows a remote unauthenticated... Moderate Unreviewed
CVE-2023-38574 was published Sep 5, 2023
StarTrinity Softswitch version 2023-02-16 - Open Redirect (CWE-601) Moderate Unreviewed
CVE-2023-39371 was published Sep 3, 2023
An issue has been discovered in GitLab affecting all versions starting from 4.1 before 16.1.5,... Moderate Unreviewed
CVE-2023-1279 was published Sep 1, 2023
There is an open redirect vulnerability in Titan FTP server 19.0 and below. Users are redirected... Moderate Unreviewed
CVE-2022-44215 was published Aug 22, 2023
Unauth. Open Redirect vulnerability in Arscode Ninja Popups plugin <= 4.7.5 versions. Moderate Unreviewed
CVE-2022-27861 was published Aug 10, 2023
An open redirect in the Login page of OPNsense before 23.7 allows attackers to redirect a victim... Moderate Unreviewed
CVE-2023-38998 was published Aug 9, 2023
Fuge CMS v1.0 contains an Open Redirect vulnerability in member/RegisterAct.java. Moderate Unreviewed
CVE-2023-34917 was published Jul 31, 2023
Fuge CMS v1.0 contains an Open Redirect vulnerability via /front/ProcessAct.java. Moderate Unreviewed
CVE-2023-34916 was published Jul 31, 2023
Vound Intella Connect 2.6.0.3 has an Open Redirect vulnerability. Moderate Unreviewed
CVE-2023-35791 was published Jul 31, 2023
Open Redirect vulnerability exists in IceWarp MailServer IceWarp Server Deep Castle 2 Update 1 ... Moderate Unreviewed
CVE-2021-36580 was published Jul 27, 2023
Netdisco before v2.063000 was discovered to contain an open redirect vulnerability. An attacker... Moderate Unreviewed
CVE-2023-37624 was published Jul 26, 2023
SeedDMS v6.0.15 was discovered to contain an open redirect vulnerability. An attacker may exploit... Moderate Unreviewed
CVE-2021-39425 was published Jul 20, 2023
IBM Security Verify Access 10.0 could allow a remote attacker to conduct phishing attacks, using... Moderate Unreviewed
CVE-2023-30433 was published Jul 19, 2023
 URL redirection in Login page in HCL BigFix WebUI allows malicious user to redirect the client... Moderate Unreviewed
CVE-2023-28020 was published Jul 18, 2023
A vulnerability was found in LivelyWorks Articart 2.0.1 and classified as problematic. Affected... Moderate Unreviewed
CVE-2023-3684 was published Jul 16, 2023
Open redirect vulnerability in ELECOM wireless LAN routers and ELECOM wireless LAN repeaters... Moderate Unreviewed
CVE-2023-37561 was published Jul 13, 2023
Improper Input Validation in GitHub repository fossbilling/fossbilling prior to 0.5.4. Moderate Unreviewed
CVE-2023-3568 was published Jul 10, 2023
VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect... Moderate Unreviewed
CVE-2023-20884 was published Jul 6, 2023
Devices using Snap One OvrC cloud are sent to a web address when... Moderate Unreviewed
CVE-2023-31245 was published Jul 6, 2023
ProTip! Advisories are also available from the GraphQL API