GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
961 advisories
Filter by severity
Portainer before 2.20.0 allows redirects when the target is not index.yaml.
Critical
Unreviewed
CVE-2024-33661
was published
Apr 26, 2024
Privilege Escalation in Kubernetes
Moderate
CVE-2020-8559
was published
for
k8s.io/apimachinery
(Go)
Apr 24, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Foliovision FV Flowplayer...
Moderate
Unreviewed
CVE-2024-32078
was published
Apr 24, 2024
cg vulnerable to an Open Redirect Vulnerability on Referer Header
Moderate
GHSA-w228-rfpx-fhm4
was published
for
cg
(pip)
Apr 23, 2024
The SolarWinds Platform was susceptible to a Arbitrary Open Redirection Vulnerability. A...
High
Unreviewed
CVE-2024-28076
was published
Apr 18, 2024
Keycloak Cross-site Scripting (XSS) via assertion consumer service URL in SAML POST-binding flow
Moderate
CVE-2023-6717
was published
for
org.keycloak:keycloak-services
(Maven)
Apr 17, 2024
Keycloak path traversal vulnerability in the redirect validation
High
CVE-2024-2419
was published
for
org.keycloak:keycloak-services
(Maven)
Apr 17, 2024
Spring Framework URL Parsing with Host Validation
High
CVE-2024-22262
was published
for
org.springframework:spring-web
(Maven)
Apr 16, 2024
gradio Server-Side Request Forgery vulnerability
Moderate
CVE-2024-1183
was published
for
gradio
(pip)
Apr 16, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Freshworks Freshdesk ...
Moderate
Unreviewed
CVE-2024-32129
was published
Apr 15, 2024
An Open Redirect vulnerability was found in Sipwise C5 NGCP Dashboard below mr11.5.1. The Open...
Low
Unreviewed
CVE-2024-28344
was published
Apr 10, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Appcheap.Io App Builder.This...
Moderate
Unreviewed
CVE-2024-31282
was published
Apr 10, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WP OAuth Server OAuth Server...
Moderate
Unreviewed
CVE-2024-31253
was published
Apr 10, 2024
A DOM-based open redirection in the returnUrl parameter of INSTINCT UI Web Client 6.5.0 allows...
High
Unreviewed
CVE-2024-28287
was published
Apr 2, 2024
In JetBrains TeamCity before 2024.03 open redirect was possible on the login page
Moderate
Unreviewed
CVE-2024-31135
was published
Mar 28, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Uncanny Owl Uncanny Toolkit...
Moderate
Unreviewed
CVE-2023-34020
was published
Mar 27, 2024
Express.js Open Redirect in malformed URLs
Moderate
CVE-2024-29041
was published
for
express
(npm)
Mar 25, 2024
Open redirection vulnerability in CDeX application allows to redirect users to arbitrary websites...
Unknown
Unreviewed
CVE-2024-2465
was published
Mar 21, 2024
An open redirect in the Login/Logout functionality of web management in AVSystem Unified...
Moderate
Unreviewed
CVE-2024-25657
was published
Mar 18, 2024
Spring Framework URL Parsing with Host Validation Vulnerability
High
CVE-2024-22259
was published
for
org.springframework:spring-web
(Maven)
Mar 16, 2024
URL Redirection to Untrusted Site in OAuth2/OpenID in directus
Moderate
CVE-2024-28239
was published
for
directus
(npm)
Mar 12, 2024
An open redirect vulnerability, the exploitation of which could allow an attacker to create a...
Moderate
Unreviewed
CVE-2024-1227
was published
Mar 12, 2024
Docassemble open redirect
Moderate
CVE-2024-27291
was published
for
docassemble.webapp
(pip)
Feb 29, 2024
Inadequate parsing of URLs could result into an open redirect.
Unknown
Unreviewed
CVE-2024-21723
was published
Feb 29, 2024
Spring Web vulnerable to Open Redirect or Server Side Request Forgery
High
CVE-2024-22243
was published
for
org.springframework:spring-web
(Maven)
Feb 23, 2024
ProTip!
Advisories are also available from the
GraphQL API