Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

973 advisories

Loading
In habitica versions v4.119.0 through v4.232.2 are vulnerable to open redirect via the login page. Moderate Unreviewed
CVE-2022-23078 was published Jun 23, 2022
An attacker can change the content of an SAP Commerce - versions 1905, 2005, 2105, 2011, 2205,... High Unreviewed
CVE-2022-41204 was published Oct 12, 2022
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10... Moderate Unreviewed
CVE-2017-2497 was published May 17, 2022
IBM Tivoli Endpoint Manager could allow a remote attacker to conduct phishing attacks, using an... Moderate Unreviewed
CVE-2017-1223 was published May 17, 2022
A vulnerability classified as problematic has been found in TrueConf Server 4.3.7. This affects... Moderate Unreviewed
CVE-2017-20119 was published Jun 30, 2022
Intent redirection vulnerability using implict intent in Camera prior to versions 12.0.01.64 ,12... Moderate Unreviewed
CVE-2022-33712 was published Jul 13, 2022
Microsoft Exchange Server 2010 SP3, Exchange Server 2013 SP3, Exchange Server 2013 CU16, and... Moderate Unreviewed
CVE-2017-8621 was published May 17, 2022
Open Redirect vulnerability in Hitachi Device Manager before 8.5.2-01 and Hitachi Tuning Manager... Moderate Unreviewed
CVE-2017-9296 was published May 17, 2022
IBM Business Process Manager 8.0 and 8.5 could allow a remote attacker to conduct phishing... Moderate Unreviewed
CVE-2017-1159 was published May 17, 2022
Open redirect vulnerability in Splunk Enterprise 6.4.x prior to 6.4.2, Splunk Enterprise 6.3.x... Moderate Unreviewed
CVE-2016-4857 was published May 17, 2022
Open redirect vulnerability in Splunk Enterprise 6.4.x prior to 6.4.3, Splunk Enterprise 6.3.x... Moderate Unreviewed
CVE-2016-4859 was published May 17, 2022
An Open Redirect vulnerability in Fortinet FortiAnalyzer 5.4.0 through 5.4.2 and FortiManager 5.4... Moderate Unreviewed
CVE-2017-3126 was published May 17, 2022
Open redirect vulnerability in Opsview Monitor Pro (Prior to 5.1.0.162300841, prior to 5.0.2... Moderate Unreviewed
CVE-2016-10368 was published May 17, 2022
Open Redirect in microweber Moderate
CVE-2022-2252 was published for microweber/microweber (Composer) Jun 30, 2022
Open redirect in web2py Moderate
CVE-2022-33146 was published for web2py (pip) Jun 28, 2022
ApiFest OAuth 2.0 Server 0.3.1 does not validate the redirect URI in accordance with RFC 6749 and... Moderate Unreviewed
CVE-2020-26877 was published Jun 30, 2022
IBM Marketing Platform 10.0 could allow a remote attacker to conduct phishing attacks, caused by... Moderate Unreviewed
CVE-2016-0228 was published May 17, 2022
A vulnerability in the web-based GUI of Cisco Unified Communications Domain Manager could allow... Moderate Unreviewed
CVE-2017-6670 was published May 17, 2022
An open redirect vulnerability in GitLab EE/CE affecting all versions from 11.1 prior to 14.10.5,... Moderate Unreviewed
CVE-2022-2250 was published Jul 2, 2022
An open redirect vulnerability in Fortinet FortiPortal 4.0.0 and below allows attacker to execute... Moderate Unreviewed
CVE-2017-7343 was published May 17, 2022
Open redirect vulnerability in the proxyimages function in wowproxy.php in the Wow Moodboard Lite... Moderate Unreviewed
CVE-2015-4070 was published May 17, 2022
Jensen of Scandinavia AS Air:Link 3G (AL3G) version 2.23m (Rev. 3), Air:Link 5000AC (AL5000AC)... Moderate Unreviewed
CVE-2016-10315 was published May 17, 2022
IBM Sterling B2B Integrator Standard Edition could allow a remote attacker to conduct phishing... Moderate Unreviewed
CVE-2016-6020 was published May 17, 2022
Sleipnir 4 Black Edition for Mac 4.5.3 and earlier and Sleipnir 4 for Mac 4.5.3 and earlier (Mac... Moderate Unreviewed
CVE-2016-7831 was published May 17, 2022
Open redirect vulnerability in comment.php in Serendipity through 2.0.5 allows remote attackers... Moderate Unreviewed
CVE-2017-5474 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database