Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,758
Maven
5,000+
npm
4,364
NuGet
766
pip
4,132
Pub
12
RubyGems
961
Rust
1,070
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

907 advisories

Loading
Improper management of Path-relative stylesheet import in HCL BigFix Remote Control Lite Web... Low Unreviewed
CVE-2025-55254 was published Dec 17, 2025
AVideo versions prior to 20.0 contain an open redirect vulnerability caused by insufficient... Moderate Unreviewed
CVE-2025-34440 was published Dec 17, 2025
AVideo versions prior to 20.0 are vulnerable to an open redirect flaw due to missing validation... Moderate Unreviewed
CVE-2025-34439 was published Dec 17, 2025
Mattermost versions 10.11.x <= 10.11.4 fail to validate redirect URLs on the /error page, which... Low Unreviewed
CVE-2025-62690 was published Dec 17, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in wpWax Directorist... Moderate Unreviewed
CVE-2025-64250 was published Dec 16, 2025
WBCE CMS 1.6.1 contains a cross-site scripting vulnerability that allows attackers to inject... High Unreviewed
CVE-2023-53901 was published Dec 16, 2025
KodExplorer 4.52 contains an open redirect vulnerability in the user login page that allows... Moderate Unreviewed
CVE-2025-34504 was published Dec 12, 2025
The Solutions Ad Manager plugin for WordPress is vulnerable to Open Redirect in all versions up... Moderate Unreviewed
CVE-2025-14451 was published Dec 13, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in flexmls Flexmls® IDX flexmls... Moderate Unreviewed
CVE-2025-67585 was published Dec 9, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms... Moderate Unreviewed
CVE-2025-67587 was published Dec 9, 2025
In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and Splunk Cloud Platform... Low Unreviewed
CVE-2025-20382 was published Dec 3, 2025
Open redirect in the web server component of MiR Robot and Fleet software allows a remote... Moderate Unreviewed
CVE-2025-13819 was published Dec 1, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Frank Goossens WP YouTube... Low Unreviewed
CVE-2025-66062 was published Nov 21, 2025
Open Redirect in URL parameter in Automated Logic WebCTRL and Carrier i-Vu versions 6.0, 6.5, 7.0... High Unreviewed
CVE-2024-8527 was published Nov 19, 2025
SolarWinds Observability Self-Hosted is susceptible to an open redirection vulnerability. The URL... Moderate Unreviewed
CVE-2025-40545 was published Nov 18, 2025
Inappropriate implementation in Lens in Google Chrome on iOS prior to 136.0.7103.59 allowed a... Moderate Unreviewed
CVE-2024-13983 was published Nov 14, 2025
A vulnerability in the web-based management interface of Cisco Catalyst Center Virtual Appliance... Moderate Unreviewed
CVE-2025-20355 was published Nov 13, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms... Moderate Unreviewed
CVE-2025-62981 was published Oct 27, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks WP Gravity Forms... High Unreviewed
CVE-2025-60151 was published Oct 22, 2025
An Open Redirect vulnerability exists in the OAuth callback handler in file onlook/apps/web... Moderate Unreviewed
CVE-2025-63784 was published Nov 7, 2025
In Splunk Enterprise versions below 10.0.1, 9.4.5, 9.3.7, 9.2.9, and Splunk Cloud Platform... Low Unreviewed
CVE-2025-20378 was published Nov 12, 2025
Due to an Open Redirect vulnerability in SAP Business Connector, an unauthenticated attacker... Moderate Unreviewed
CVE-2025-42893 was published Nov 11, 2025
SAP S/4HANA landscape SAP E-Recruiting BSP allows an unauthenticated attacker to craft malicious... Moderate Unreviewed
CVE-2025-42924 was published Nov 11, 2025
A flaw was found in Red Hat Single Sign-On. This issue is an Open Redirect vulnerability that... Moderate Unreviewed
CVE-2025-12789 was published Nov 7, 2025
Python 3.x through 3.10 has an open redirection vulnerability in lib/http/server.py due to no... High Unreviewed
CVE-2021-28861 was published Aug 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database