Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,761
Maven
5,000+
npm
4,368
NuGet
767
pip
4,137
Pub
12
RubyGems
962
Rust
1,070
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,077 advisories

Loading
An open redirect vulnerability in gnuboard5 v.5.5.16 allows a remote attacker to obtain sensitive... Moderate Unreviewed
CVE-2024-37656 was published Jul 7, 2025
An open redirect vulnerability in gnuboard5 v.5.5.16 allows a remote attacker to obtain sensitive... Moderate Unreviewed
CVE-2024-37657 was published Jul 7, 2025
An open redirect vulnerability in gnuboard5 v.5.5.16 allows a remote attacker to obtain sensitive... Moderate Unreviewed
CVE-2024-37658 was published Jul 7, 2025
Due to an open redirect vulnerability in SAP NetWeaver Application Server ABAP, an... Moderate Unreviewed
CVE-2025-42981 was published Jul 8, 2025
Due to insufficient sanitization in the SAP BusinessObjects Content Administrator Workbench,... Moderate Unreviewed
CVE-2025-42985 was published Jul 8, 2025
urllib3 does not control redirects in browsers and Node.js Moderate
CVE-2025-50182 was published for urllib3 (pip) Jun 18, 2025
illia-v pquentin
sethmlarson
Credited to illia-v, pquentin, and sethmlarson
n8n allows open redirects via the /signin endpoint Moderate
CVE-2025-49592 was published for n8n (npm) Jun 27, 2025
tatianahub
Credited to tatianahub
URL redirection to an untrusted site ('Open Redirect') in Kibana can lead to sending a user to an... Moderate Unreviewed
CVE-2025-25012 was published Jun 26, 2025
When a URL was provided in a link querystring parameter, Firefox for Android would follow that... Moderate Unreviewed
CVE-2025-6428 was published Jun 26, 2025
A vulnerability was found in java-aodeng Hope-Boot 1.0.0. It has been classified as problematic.... Moderate Unreviewed
CVE-2025-6552 was published Jun 26, 2025
Arbitrary redirects under /new endpoint Moderate
CVE-2021-29622 was published for github.com/prometheus/prometheus (Go) Feb 15, 2022
dodek
Credited to dodek
IBM Process Mining 2.0.1 IF001 and 2.0.1 could allow a remote attacker to conduct phishing... Moderate Unreviewed
CVE-2025-36016 was published Jun 23, 2025
The WordPress Toolbar WordPress plugin through 2.2.6 redirects to any URL via the "wptbto"... Moderate Unreviewed
CVE-2023-6389 was published Jan 29, 2024
Open redirect vulnerability in Access analysis CGI An-Analyzer released in 2023 December 31 and... Moderate Unreviewed
CVE-2024-22113 was published Jan 22, 2024
The T1 WordPress theme through 19.0 is vulnerable to unauthenticated open redirect with which any... Moderate Unreviewed
CVE-2023-3771 was published Jan 16, 2024
A flaw was found in Yelp. The Gnome user help application allows the help document to execute... Moderate Unreviewed
CVE-2025-3155 was published Apr 3, 2025
A vulnerability classified as problematic has been found in PHPGurukul COVID19 Testing Management... Moderate Unreviewed
CVE-2025-6286 was published Jun 20, 2025
urllib3 redirects are not disabled when retries are disabled on PoolManager instantiation Moderate
CVE-2025-50181 was published for urllib3 (pip) Jun 18, 2025
sandumjacob illia-v
pquentin sethmlarson
Credited to sandumjacob, illia-v, pquentin, and sethmlarson
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FunnelKit Automation By... Moderate Unreviewed
CVE-2025-49868 was published Jun 17, 2025
A vulnerability has been found in Astun Technology iShare Maps 5.4.0 and classified as... Moderate Unreviewed
CVE-2025-6089 was published Jun 15, 2025
The Payment Gateway for Telcell WordPress plugin through 2.0.1 does not validate the api_url... Moderate Unreviewed
CVE-2023-6786 was published May 15, 2025
The wccp-pro WordPress plugin before 15.3 contains an open-redirect flaw via the referrer... Moderate Unreviewed
CVE-2024-6690 was published May 15, 2025
SolarWinds Observability Self-Hosted is susceptible to an open redirection vulnerability. The... Moderate Unreviewed
CVE-2025-26394 was published Jun 10, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Automattic Newspack... Moderate Unreviewed
CVE-2025-49325 was published Jun 6, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms... Moderate Unreviewed
CVE-2025-30953 was published Jun 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database