GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 28,852
Composer 5,572
Erlang 49
GitHub Actions 49
Go 3,489
Maven 6,401
npm 5,722
NuGet 892
pip 4,745
Pub 13
RubyGems 1,033
Rust 1,228
Swift 53

Unreviewed advisories

All unreviewed 297,646

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

851 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Due to an Open Redirect vulnerability in SAP NetWeaver Application Server ABAP, an... Moderate Unreviewed

CVE-2026-34257 was published Apr 14, 2026

The User Registration & Membership plugin for WordPress is vulnerable to Open Redirect in... Moderate Unreviewed

CVE-2026-6203 was published Apr 14, 2026

An open redirect in Ascertia SigningHub User v10.0 allows attackers to redirect users to a... Moderate Unreviewed

CVE-2025-61166 was published Apr 6, 2026

XenForo before 2.2.17 and 2.3.1 allows open redirect via a specially crafted URL. The... Moderate Unreviewed

CVE-2024-58342 was published Apr 1, 2026

In Search Guard FLX up to version 4.0.1, it is possible to use specially crafted requests to... Moderate Unreviewed

CVE-2026-4799 was published Mar 31, 2026

Open Redirect vulnerability in Hitachi Ops Center Administrator.This issue affects Hitachi Ops... Moderate Unreviewed

CVE-2026-1166 was published Mar 25, 2026

A flaw was found in mirror-registry where an authenticated user can trick the system into... Moderate Unreviewed

CVE-2026-2376 was published Mar 12, 2026

IFTOP developed by WellChoose has an Open redirect vulnerability, allowing authenticated remote... Moderate Unreviewed

CVE-2026-3824 was published Mar 11, 2026

A vulnerability in the web-based management interface of AOS-CX Switches could allow an... Moderate Unreviewed

CVE-2026-23817 was published Mar 11, 2026

An issue pertaining to CWE-601: URL Redirection to Untrusted Site was discovered in Sunbird-Ed... Moderate Unreviewed

CVE-2025-70032 was published Mar 9, 2026

An issue pertaining to CWE-601: URL Redirection to Untrusted Site was discovered in linagora... Moderate Unreviewed

CVE-2025-70037 was published Mar 9, 2026

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Kings Plugins B2BKing... Moderate Unreviewed

CVE-2026-28106 was published Mar 6, 2026

In JetBrains TeamCity before 2025.11.3 open redirect was possible in the React project creation flow Moderate Unreviewed

CVE-2026-28194 was published Feb 25, 2026

A vulnerability was detected in horilla-opensource horilla up to 1.0.2. This issue affects the... Moderate Unreviewed

CVE-2026-3049 was published Feb 24, 2026

The Conditional CAPTCHA WordPress plugin through 4.0.0 does not validate a parameter before... Moderate Unreviewed

CVE-2026-1369 was published Feb 22, 2026

An Open Redirect vulnerability in the go-chi/chi >=5.2.2 RedirectSlashes function allows remote... Moderate Unreviewed

CVE-2025-69725 was published Feb 19, 2026

SPIP before 4.4.5 and 4.3.9 allows an Open Redirect via the login form when used in AJAX mode. An... Moderate Unreviewed

CVE-2025-71244 was published Feb 19, 2026

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in KaizenCoders Update URLs &... Moderate Unreviewed

CVE-2026-25392 was published Feb 19, 2026

A flaw has been found in busy up to 2.5.5. The affected element is an unknown function of the... Moderate Unreviewed

CVE-2026-2709 was published Feb 19, 2026

The Frontend Post Submission Manager Lite plugin for WordPress is vulnerable to Open Redirection... Moderate Unreviewed

CVE-2026-1296 was published Feb 18, 2026

The URL Shortify plugin for WordPress is vulnerable to Open Redirect in all versions up to, and... Moderate Unreviewed

CVE-2026-1277 was published Feb 18, 2026

IBM DB2 Recovery Expert for LUW 5.5 Interim Fix 002 could allow a remote attacker to conduct... Moderate Unreviewed

CVE-2025-27900 was published Feb 17, 2026

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in TR7 Cyber Defense Inc. Web... Moderate Unreviewed

CVE-2025-2418 was published Feb 16, 2026

SAP TAF_APPLAUNCHER within Business Server Pages allows unauthenticated attacker to craft... Moderate Unreviewed

CVE-2026-24328 was published Feb 10, 2026

The BSP applications allow an unauthenticated user to inject malicious script content via user... Moderate Unreviewed

CVE-2026-24323 was published Feb 10, 2026

Previous1…35 Next

Previous 1 2 3 4 5 … 34 35 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

851 advisories