Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,411
Erlang
33
GitHub Actions
22
Go
2,146
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
899
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,053 advisories

Loading
Better Auth allows bypassing the trustedOrigins Protection which leads to ATO Critical
GHSA-vp58-j275-797x was published for better-auth (npm) Feb 24, 2025
castilho101
Beter Auth has an Open Redirect via Scheme-Less Callback Parameter Moderate
CVE-2025-27143 was published for better-auth (npm) Feb 24, 2025
sumeet-darekar Shivaraj-Kolekar
The WPO365 | MICROSOFT 365 GRAPH MAILER plugin for WordPress is vulnerable to Open Redirect in... Moderate Unreviewed
CVE-2025-1488 was published Feb 24, 2025
The WPMobile.App plugin for WordPress is vulnerable to Open Redirect in all versions up to, and... High Unreviewed
CVE-2024-13888 was published Feb 20, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in HAVELSAN Liman MYS allows... Moderate Unreviewed
CVE-2025-1269 was published Feb 18, 2025
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2025-21401 was published Feb 15, 2025
Dedecms 5.71sp1 and earlier is vulnerable to URL redirect. In the web application, a logic error... Moderate Unreviewed
CVE-2024-57241 was published Feb 12, 2025
A vulnerability has been identified in Teamcenter (All versions < V14.3.0.0). The SSO login... Moderate Unreviewed
CVE-2025-23363 was published Feb 11, 2025
Authentication bypass in @sap/approuter High
CVE-2025-24876 was published for @sap/approuter (npm) Feb 11, 2025
rosenblueh
The User Account and Authentication service (UAA) for SAP HANA extended application services,... High Unreviewed
CVE-2025-24868 was published Feb 11, 2025
A vulnerability was found in Zenvia Movidesk up to 25.01.22. It has been declared as problematic.... Moderate Unreviewed
CVE-2025-0970 was published Feb 3, 2025
A Host Header Poisoning Open Redirect issue in slabiak Appointment Scheduler v.1.0.5 allows a... Moderate Unreviewed
CVE-2024-42671 was published Jan 31, 2025
General OpenMRS Security Advisory, January 2025: Penetration Testing Results and Patches Critical
GHSA-vpxm-cr3r-pjp9 was published for org.openmrs.module:addresshierarchy (Maven) Jan 30, 2025
slubwama mseaton
Incorrect access control in BYD QIN PLUS DM-i Dilink OS 3.0_13.1.7.2204050.1 allows unauthorized... Moderate Unreviewed
CVE-2024-54728 was published Jan 28, 2025
An issue in Beijing Baidu Netcom Science & Technology Co Ltd Baidu Lite app (iOS version) 6.40.0... Moderate Unreviewed
CVE-2024-56952 was published Jan 27, 2025
An issue in Baidu (China) Co Ltd Baidu Input Method (iOS version) v12.6.13 allows attackers to... Moderate Unreviewed
CVE-2024-56953 was published Jan 27, 2025
An issue in Tencent Technology (Shanghai) Co., Ltd WeSing iOS v9.3.39 allows attackers to access... Moderate Unreviewed
CVE-2024-56962 was published Jan 27, 2025
An issue in Shenzhen Intellirocks Tech Co. Ltd Govee Home iOS 6.5.01 allows attackers to access... Moderate Unreviewed
CVE-2024-56968 was published Jan 27, 2025
An issue in Beijing Baidu Netcom Science & Technology Co Ltd Haokan Video iOS 7.70.0 allows... Moderate Unreviewed
CVE-2024-56954 was published Jan 27, 2025
An issue in Hangzhou Bobo Technology Co Ltd UU Game Booster iOS 10.6.13 allows attackers to... Moderate Unreviewed
CVE-2024-56951 was published Jan 27, 2025
An issue in Shanghai Xuan Ting Entertainment Information & Technology Co., Ltd Qidian Reader iOS... Moderate Unreviewed
CVE-2024-56966 was published Jan 27, 2025
An issue in Shanghai Shizhi Information Technology Co., Ltd Shihuo iOS 8.16.0 allows attackers to... Moderate Unreviewed
CVE-2024-56965 was published Jan 27, 2025
An issue in Kingsoft Office Software Corporation Limited WPS Office iOS 12.20.0 allows attackers... Moderate Unreviewed
CVE-2024-56957 was published Jan 27, 2025
An issue in Mashang Consumer Finance Co., Ltd Anyihua iOS 3.6.2 allows attackers to access... Moderate Unreviewed
CVE-2024-56959 was published Jan 27, 2025
An issue in Pixocial Technology (Singapore) Pte. Ltd BeautyPlus iOS 7.8.010 allows attackers to... Moderate Unreviewed
CVE-2024-56969 was published Jan 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database