Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,454
Erlang
33
GitHub Actions
22
Go
2,153
Maven
5,000+
npm
3,818
NuGet
693
pip
3,492
Pub
12
RubyGems
902
Rust
903
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,058 advisories

Loading
Jenkins Open Redirect vulnerability Moderate
CVE-2025-27625 was published for org.jenkins-ci.main:jenkins-core (Maven) Mar 6, 2025
Malicious websites utilizing a server-side redirect to an internal error page could result in a... Moderate Unreviewed
CVE-2025-27426 was published Mar 4, 2025
Websites redirecting to a non-HTTP scheme URL could allow a website address to be spoofed for a... Moderate Unreviewed
CVE-2025-27424 was published Mar 4, 2025
CodeChecker open redirect when URL contains multiple slashes after the product name Moderate
CVE-2025-1300 was published for codechecker (pip) Mar 3, 2025
Discookie
Nagios XI 2024R1.2.2 is vulnerable to an open redirect flaw on the Tools page, exploitable by... Moderate Unreviewed
CVE-2024-54957 was published Feb 27, 2025
Better Auth allows bypassing the trustedOrigins Protection which leads to ATO Critical
GHSA-vp58-j275-797x was published for better-auth (npm) Feb 24, 2025
castilho101
Beter Auth has an Open Redirect via Scheme-Less Callback Parameter Moderate
CVE-2025-27143 was published for better-auth (npm) Feb 24, 2025
sumeet-darekar Shivaraj-Kolekar
The WPO365 | MICROSOFT 365 GRAPH MAILER plugin for WordPress is vulnerable to Open Redirect in... Moderate Unreviewed
CVE-2025-1488 was published Feb 24, 2025
The WPMobile.App plugin for WordPress is vulnerable to Open Redirect in all versions up to, and... High Unreviewed
CVE-2024-13888 was published Feb 20, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in HAVELSAN Liman MYS allows... Moderate Unreviewed
CVE-2025-1269 was published Feb 18, 2025
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2025-21401 was published Feb 15, 2025
Dedecms 5.71sp1 and earlier is vulnerable to URL redirect. In the web application, a logic error... Moderate Unreviewed
CVE-2024-57241 was published Feb 12, 2025
A vulnerability has been identified in Teamcenter (All versions < V14.3.0.0). The SSO login... Moderate Unreviewed
CVE-2025-23363 was published Feb 11, 2025
Authentication bypass in @sap/approuter High
CVE-2025-24876 was published for @sap/approuter (npm) Feb 11, 2025
rosenblueh
The User Account and Authentication service (UAA) for SAP HANA extended application services,... High Unreviewed
CVE-2025-24868 was published Feb 11, 2025
A vulnerability was found in Zenvia Movidesk up to 25.01.22. It has been declared as problematic.... Moderate Unreviewed
CVE-2025-0970 was published Feb 3, 2025
A Host Header Poisoning Open Redirect issue in slabiak Appointment Scheduler v.1.0.5 allows a... Moderate Unreviewed
CVE-2024-42671 was published Jan 31, 2025
General OpenMRS Security Advisory, January 2025: Penetration Testing Results and Patches Critical
GHSA-vpxm-cr3r-pjp9 was published for org.openmrs.module:addresshierarchy (Maven) Jan 30, 2025
slubwama mseaton
Incorrect access control in BYD QIN PLUS DM-i Dilink OS 3.0_13.1.7.2204050.1 allows unauthorized... Moderate Unreviewed
CVE-2024-54728 was published Jan 28, 2025
An issue in KuGou Technology Co., Ltd KuGou Concept iOS 4.0.61 allows attackers to access... Moderate Unreviewed
CVE-2024-56950 was published Jan 27, 2025
An issue in Beijing Baidu Netcom Science & Technology Co Ltd Baidu Lite app (iOS version) 6.40.0... Moderate Unreviewed
CVE-2024-56952 was published Jan 27, 2025
An issue in Tencent Technology (Shenzhen) Company Limited QQMail iOS 6.6.4 allows attackers to... Moderate Unreviewed
CVE-2024-56955 was published Jan 27, 2025
An issue in Hangzhou Bobo Technology Co Ltd UU Game Booster iOS 10.6.13 allows attackers to... Moderate Unreviewed
CVE-2024-56951 was published Jan 27, 2025
An issue in Beijing Baidu Netcom Science & Technology Co Ltd Haokan Video iOS 7.70.0 allows... Moderate Unreviewed
CVE-2024-56954 was published Jan 27, 2025
An issue in Kingsoft Office Software Corporation Limited WPS Office iOS 12.20.0 allows attackers... Moderate Unreviewed
CVE-2024-56957 was published Jan 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database