Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,951
Erlang
39
GitHub Actions
38
Go
2,607
Maven
5,000+
npm
4,251
NuGet
757
pip
4,017
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,055 advisories

Loading
A vulnerability, which was classified as problematic, was found in thinkgem JeeSite up to 5.12.0.... Moderate Unreviewed
CVE-2025-7763 was published Jul 18, 2025
DiracX-Web is vulnerable to attack through an Open Redirect on its login page Moderate
CVE-2025-54066 was published for @dirac-grid/diracx-web-components (npm) Jul 17, 2025
Robin-Van-de-Merghel
Credited to Robin-Van-de-Merghel
Due to insufficient sanitization in the SAP BusinessObjects Content Administrator Workbench,... Moderate Unreviewed
CVE-2025-42985 was published Jul 8, 2025
Due to an open redirect vulnerability in SAP NetWeaver Application Server ABAP, an... Moderate Unreviewed
CVE-2025-42981 was published Jul 8, 2025
An open redirect vulnerability in gnuboard5 v.5.5.16 allows a remote attacker to obtain sensitive... Moderate Unreviewed
CVE-2024-37658 was published Jul 7, 2025
An open redirect vulnerability in gnuboard5 v.5.5.16 allows a remote attacker to obtain sensitive... Moderate Unreviewed
CVE-2024-37656 was published Jul 7, 2025
An open redirect vulnerability in gnuboard5 v.5.5.16 allows a remote attacker to obtain sensitive... Moderate Unreviewed
CVE-2024-37657 was published Jul 7, 2025
n8n allows open redirects via the /signin endpoint Moderate
CVE-2025-49592 was published for n8n (npm) Jun 27, 2025
tatianahub
Credited to tatianahub
URL redirection to an untrusted site ('Open Redirect') in Kibana can lead to sending a user to an... Moderate Unreviewed
CVE-2025-25012 was published Jun 26, 2025
When a URL was provided in a link querystring parameter, Firefox for Android would follow that... Moderate Unreviewed
CVE-2025-6428 was published Jun 26, 2025
A vulnerability was found in java-aodeng Hope-Boot 1.0.0. It has been classified as problematic.... Moderate Unreviewed
CVE-2025-6552 was published Jun 26, 2025
IBM Process Mining 2.0.1 IF001 and 2.0.1 could allow a remote attacker to conduct phishing... Moderate Unreviewed
CVE-2025-36016 was published Jun 23, 2025
chi Allows Host Header Injection which Leads to Open Redirect in RedirectSlashes Moderate
GHSA-vrw8-fxc6-2r93 was published for github.com/go-chi/chi/v5 (Go) Jun 20, 2025
anuraagbaishya
Credited to anuraagbaishya
A vulnerability classified as problematic has been found in PHPGurukul COVID19 Testing Management... Moderate Unreviewed
CVE-2025-6286 was published Jun 20, 2025
urllib3 does not control redirects in browsers and Node.js Moderate
CVE-2025-50182 was published for urllib3 (pip) Jun 18, 2025
illia-v pquentin
sethmlarson
Credited to illia-v, pquentin, and sethmlarson
urllib3 redirects are not disabled when retries are disabled on PoolManager instantiation Moderate
CVE-2025-50181 was published for urllib3 (pip) Jun 18, 2025
sandumjacob illia-v
pquentin sethmlarson
Credited to sandumjacob, illia-v, pquentin, and sethmlarson
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FunnelKit Automation By... Moderate Unreviewed
CVE-2025-49868 was published Jun 17, 2025
An open redirection vulnerability in M-Files mobile applications for Android and iOS prior to... Moderate Unreviewed
CVE-2025-2091 was published Jun 16, 2025
A vulnerability has been found in Astun Technology iShare Maps 5.4.0 and classified as... Moderate Unreviewed
CVE-2025-6089 was published Jun 15, 2025
SolarWinds Observability Self-Hosted is susceptible to an open redirection vulnerability. The... Moderate Unreviewed
CVE-2025-26394 was published Jun 10, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Automattic Newspack... Moderate Unreviewed
CVE-2025-49325 was published Jun 6, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms... Moderate Unreviewed
CVE-2025-30954 was published Jun 6, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms... Moderate Unreviewed
CVE-2025-30953 was published Jun 6, 2025
WSO2 is vulnerable to Open Redirect through multi-option URL in its authentication endpoint Moderate
CVE-2024-1440 was published for org.wso2.carbon.identity.framework:org.wso2.carbon.identity.application.authentication.endpoint.util (Maven) Jun 2, 2025
Mautic has an Open Redirect vulnerability on user unlock path. Moderate
CVE-2025-5256 was published for mautic/core (Composer) May 28, 2025
tomekkowalczyk patrykgruszka
nick-vanpraet
Credited to tomekkowalczyk, patrykgruszka, and nick-vanpraet
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database