GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
269 advisories
Filter by severity
Open redirect vulnerability in Jenkins OpenID Plugin
Moderate
CVE-2023-24445
was published
for
org.jenkins-ci.plugins:openid
(Maven)
Jan 26, 2023
scs-library-client may leak user credentials to third-party service via HTTP redirect
Moderate
CVE-2022-23538
was published
for
github.com/sylabs/scs-library-client
(Go)
Jan 20, 2023
Open Redirect Vulnerability in Action Pack
Moderate
CVE-2023-22797
was published
for
actionpack
(RubyGems)
Jan 18, 2023
pgAdmin 4 Open Redirect vulnerability
Moderate
CVE-2023-22298
was published
for
pgadmin4
(pip)
Jan 17, 2023
Apache Superset Open Redirect vulnerability
Moderate
CVE-2022-43721
was published
for
apache-superset
(pip)
Jan 16, 2023
@okta/oidc-middlewareOpen Redirect vulnerability
Moderate
CVE-2022-3145
was published
for
@okta/oidc-middleware
(npm)
Jan 9, 2023
Symbiote Seed Open Redirect vulnerability
Moderate
CVE-2017-20164
was published
for
symbiote/silverstripe-seed
(Composer)
Jan 7, 2023
hyper-staticfile's location header incorporates user input, allowing open redirect
Moderate
GHSA-5wvv-q5fv-2388
was published
for
hyper-staticfile
(Rust)
Dec 30, 2022
rdiffweb vulnerable to Open Redirect
High
CVE-2022-4720
was published
for
rdiffweb
(pip)
Dec 27, 2022
Macaron i18n Open Redirect vulnerability
Moderate
CVE-2020-36627
was published
for
github.com/go-macaron/i18n
(Go)
Dec 25, 2022
rdiffweb Open Redirect vulnerability
Moderate
CVE-2022-4644
was published
for
rdiffweb
(pip)
Dec 22, 2022
Oils JS vulnerable to Open Redirect
Moderate
CVE-2021-4260
was published
for
oils
(npm)
Dec 19, 2022
Apache Helix UI vulnerable to Open Redirect
Moderate
CVE-2022-47500
was published
for
org.apache.helix:helix
(Maven)
Dec 19, 2022
Terms and Conditions Module vulnerable to Open Redirect
Moderate
CVE-2022-4589
was published
for
django-termsandconditions
(pip)
Dec 17, 2022
Jenkins Google Login Plugin Open Redirect vulnerability
Moderate
CVE-2022-46683
was published
for
org.jenkins-ci.plugins:google-login
(Maven)
Dec 12, 2022
Authenticated OpenRedirect Vulnerability
Moderate
CVE-2022-41965
was published
for
org.opencastproject:opencast-common
(Maven)
Nov 30, 2022
Apache Airflow Contains Open Redirect
Moderate
CVE-2022-45402
was published
for
apache-airflow
(pip)
Nov 15, 2022
Apache Airflow Open Redirect vulnerability
Moderate
CVE-2022-43985
was published
for
apache-airflow
(pip)
Nov 2, 2022
rdiffweb vulnerable to Open Redirect
Moderate
CVE-2022-3438
was published
for
rdiffweb
(pip)
Oct 10, 2022
Flask-Security vulnerable to Open Redirect
Moderate
CVE-2021-23385
was published
for
Flask-Security
(pip)
Oct 7, 2022
Labstack Echo Open Redirect vulnerability
Critical
CVE-2022-40083
was published
for
github.com/labstack/echo/v4
(Go)
Sep 29, 2022
Apache Airflow contains open redirect
Moderate
CVE-2022-40754
was published
for
apache-airflow
(pip)
Sep 22, 2022
OAuthLib vulnerable to DoS when attacker provides malicious IPV6 URI
Moderate
CVE-2022-36087
was published
for
oauthlib
(pip)
Sep 16, 2022
Gophish before 0.12.0 vulnerable to Open Redirect
Moderate
CVE-2022-25295
was published
for
github.com/gophish/gophish
(Go)
Sep 12, 2022
oauth2-server through 3.1.1 vulnerable to Open Redirect
High
CVE-2020-26938
was published
for
oauth2-server
(npm)
Aug 30, 2022
ProTip!
Advisories are also available from the
GraphQL API