Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,761
Maven
5,000+
npm
4,368
NuGet
767
pip
4,137
Pub
12
RubyGems
962
Rust
1,070
Swift
45
Unreviewed advisories
All unreviewed
5,000+

345 advisories

Loading
Symfony Open Redirect Moderate
CVE-2018-19790 was published for symfony/security (Composer) May 14, 2022
Keycloak Open Redirect Moderate
CVE-2018-14658 was published for org.keycloak:keycloak-core (Maven) May 13, 2022
Moodle Stored HTML in assignment submission comments allowed links to be opened directly Moderate
CVE-2019-3850 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Credited to MarkLee131
Moodle Open Redirect in Calendar Set Page Moderate
CVE-2011-4582 was published for moodle/moodle (Composer) May 13, 2022
Moodle Open Redirect Via Error Messages Moderate
CVE-2011-4294 was published for moodle/moodle (Composer) May 13, 2022
Moodle Arbitrary Redirect Moderate
CVE-2015-3175 was published for moodle/moodle (Composer) May 13, 2022
MarkLee131
Credited to MarkLee131
Joomla! Open Redirect vulnerability Moderate
CVE-2008-4104 was published for joomla/framework (Composer) May 2, 2022
Trac Open Redirect vulnerability Moderate
CVE-2008-2951 was published for trac (pip) May 1, 2022
OIDC Logout redirect in keycloak Low
CVE-2020-10734 was published for org.keycloak:keycloak-oidc-client-adapter-pom (Maven) Apr 28, 2022
sonOfRa
Credited to sonOfRa
NextAuth.js default redirect callback vulnerable to open redirects Moderate
CVE-2022-24858 was published for next-auth (npm) Apr 22, 2022
rustyguts
Credited to rustyguts
TYPO3 Open Redirection vulnerability on the backend Moderate
CVE-2010-3661 was published for typo3/cms-backend (Composer) Apr 21, 2022
Phoenix Arbitrary URL Redirect Moderate
CVE-2017-1000163 was published for phoenix (Erlang) Apr 12, 2022
HTTP Proxy header vulnerability High
CVE-2016-5385 was published for amphp/artax (Composer) Apr 7, 2022
Open redirect in wwbn/avideo Moderate
CVE-2022-27463 was published for wwbn/avideo (Composer) Apr 6, 2022
URL Confusion When Scheme Not Supplied in medialize/uri.js Moderate
CVE-2022-1233 was published for urijs (npm) Apr 5, 2022
URL Redirection to Untrusted Site ('Open Redirect') in express-openid-connect High
CVE-2022-24794 was published for express-openid-connect (npm) Mar 31, 2022
jviding kurt-r2c
Credited to jviding and kurt-r2c
Open Redirect in Flask-AppBuilder Moderate
CVE-2022-24776 was published for Flask-AppBuilder (pip) Mar 25, 2022
Gitea Open Redirect Moderate
CVE-2022-1058 was published for code.gitea.io/gitea (Go) Mar 25, 2022
Server-Side Request Forgery in Apache Dubbo Moderate
CVE-2021-25640 was published for com.alibaba:dubbo (Maven) Mar 18, 2022
Open Redirect Moderate
CVE-2021-32645 was published for hyn/multi-tenant (Composer) Mar 18, 2022
JaZo
Credited to JaZo
Server-Side Request Forgery and Open Redirect in AllTube Download High
CVE-2022-24739 was published for rudloff/alltube (Composer) Mar 9, 2022
Rudloff
Credited to Rudloff
Open Redirect in archivy Moderate
CVE-2022-0697 was published for archivy (pip) Mar 8, 2022
Open Redirect in django-spirit Moderate
CVE-2022-0869 was published for django-spirit (pip) Mar 7, 2022
Open Redirect in urijs Moderate
CVE-2022-0868 was published for urijs (npm) Mar 7, 2022
Open Redirect in CPython that affects users of OpenStack Nova Moderate
CVE-2021-3654 was published for nova (pip) Mar 4, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database