Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

973 advisories

Loading
Authenticated OpenRedirect Vulnerability Moderate
CVE-2022-41965 was published for org.opencastproject:opencast-common (Maven) Nov 30, 2022
geichelberger
An issue was discovered in WSO2 Identity Server through 5.10.0 and WSO2 IS as Key Manager through... Moderate Unreviewed
CVE-2020-14446 was published May 24, 2022
OpenAM Consortium Edition version 14.0.0 provided by OpenAM Consortium contains an open redirect... Moderate Unreviewed
CVE-2022-31735 was published Sep 16, 2022
By exploiting an Open Redirect vulnerability on a website, an attacker could have spoofed the... Moderate Unreviewed
CVE-2020-15677 was published May 24, 2022
Jenkins Google Login Plugin Open Redirect vulnerability Moderate
CVE-2018-1000174 was published for org.jenkins-ci.plugins:google-login (Maven) May 14, 2022
Optergy Proton/Enterprise devices allow Open Redirect. Moderate Unreviewed
CVE-2019-7275 was published May 24, 2022
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository jgraph/drawio... Moderate Unreviewed
CVE-2022-1774 was published May 19, 2022
The workspace client, openspace client, and app development client of TIBCO Software Inc.'s TIBCO... Moderate Unreviewed
CVE-2019-8995 was published May 24, 2022
Open redirect via user-controlled query parameter. The following products are affected: Acronis... Moderate Unreviewed
CVE-2022-30992 was published May 19, 2022
Moodle Plugin - SAML Auth may allow Open Redirect through unspecified vectors. Moderate Unreviewed
CVE-2022-39183 was published Jan 12, 2023
Jenkins Google Login Plugin Open Redirect vulnerability Moderate
CVE-2022-46683 was published for org.jenkins-ci.plugins:google-login (Maven) Dec 12, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.4 prior to... Moderate Unreviewed
CVE-2023-0042 was published Jan 12, 2023
The ChangeSharedFilterOwner resource in Jira before version 7.13.6, from version 8.0.0 before... Moderate Unreviewed
CVE-2019-11589 was published May 24, 2022
The startup.jsp resource in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3,... Moderate Unreviewed
CVE-2019-11585 was published May 24, 2022
An open redirect vulnerability in LabKey Server Community Edition before 18.3.0-61806.763 via the... Moderate Unreviewed
CVE-2019-3912 was published May 13, 2022
Keycloak vulnerable to Server-Side Request Forgery Moderate
CVE-2020-10770 was published for org.keycloak:keycloak-core (Maven) May 24, 2022
Flask-Security vulnerable to Open Redirect Moderate
CVE-2021-23385 was published for Flask-Security (pip) Oct 7, 2022
RStudio Connect is affected by an Open Redirect issue. The vulnerability could allow an attacker... Moderate Unreviewed
CVE-2022-38131 was published Sep 7, 2022
There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11 and below that may... Moderate Unreviewed
CVE-2022-38208 was published Dec 29, 2022
There is an improper restriction of rendered UI layers or frames vulnerability in Micro Focus... Moderate Unreviewed
CVE-2020-9517 was published May 24, 2022
Stormshield Network Security 310 3.7.10 devices have an auth/lang.html?rurl= Open Redirect... Moderate Unreviewed
CVE-2020-8430 was published May 24, 2022
Open Redirect vulnerability exists in VMware vRealize Log Insight prior to 8.1.0 due to improper... Moderate Unreviewed
CVE-2020-3954 was published May 24, 2022
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to enumerate... Moderate Unreviewed
CVE-2019-20417 was published May 24, 2022
The login.jsp resource in Jira before version 8.5.2, and from version 8.6.0 before version 8.6.1... Moderate Unreviewed
CVE-2019-20901 was published May 24, 2022
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC)... Moderate Unreviewed
CVE-2020-3558 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database