Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,411
Erlang
33
GitHub Actions
22
Go
2,146
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
899
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,053 advisories

Loading
Microsoft Edge (Chromium-based) Spoofing Vulnerability Moderate Unreviewed
CVE-2023-24935 was published Apr 11, 2023
Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability High Unreviewed
CVE-2023-24892 was published Mar 14, 2023
Beter Auth has an Open Redirect via Scheme-Less Callback Parameter Moderate
CVE-2025-27143 was published for better-auth (npm) Feb 24, 2025
sumeet-darekar Shivaraj-Kolekar
Better Auth allows bypassing the trustedOrigins Protection which leads to ATO Critical
GHSA-vp58-j275-797x was published for better-auth (npm) Feb 24, 2025
castilho101
The WPO365 | MICROSOFT 365 GRAPH MAILER plugin for WordPress is vulnerable to Open Redirect in... Moderate Unreviewed
CVE-2025-1488 was published Feb 24, 2025
The WPMobile.App plugin for WordPress is vulnerable to Open Redirect in all versions up to, and... High Unreviewed
CVE-2024-13888 was published Feb 20, 2025
smartbanner.js rel noopener vulnerability Low
CVE-2025-25300 was published for smartbanner.js (npm) Sep 13, 2019
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in HAVELSAN Liman MYS allows... Moderate Unreviewed
CVE-2025-1269 was published Feb 18, 2025
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Moderate Unreviewed
CVE-2025-21401 was published Feb 15, 2025
Dedecms 5.71sp1 and earlier is vulnerable to URL redirect. In the web application, a logic error... Moderate Unreviewed
CVE-2024-57241 was published Feb 12, 2025
Spring Web vulnerable to Open Redirect or Server Side Request Forgery High
CVE-2024-22243 was published for org.springframework:spring-web (Maven) Feb 23, 2024
yoshizawa-masatoshi
Spring Framework URL Parsing with Host Validation Vulnerability High
CVE-2024-22259 was published for org.springframework:spring-web (Maven) Mar 16, 2024
yoshizawa-masatoshi
Spring Framework URL Parsing with Host Validation High
CVE-2024-22262 was published for org.springframework:spring-web (Maven) Apr 16, 2024
Authentication bypass in @sap/approuter High
CVE-2025-24876 was published for @sap/approuter (npm) Feb 11, 2025
rosenblueh
A vulnerability has been identified in Teamcenter (All versions < V14.3.0.0). The SSO login... Moderate Unreviewed
CVE-2025-23363 was published Feb 11, 2025
The User Account and Authentication service (UAA) for SAP HANA extended application services,... High Unreviewed
CVE-2025-24868 was published Feb 11, 2025
A Host Header Poisoning Open Redirect issue in slabiak Appointment Scheduler v.1.0.5 allows a... Moderate Unreviewed
CVE-2024-42671 was published Jan 31, 2025
Incorrect access control in BYD QIN PLUS DM-i Dilink OS 3.0_13.1.7.2204050.1 allows unauthorized... Moderate Unreviewed
CVE-2024-54728 was published Jan 28, 2025
A vulnerability was found in Zenvia Movidesk up to 25.01.22. It has been declared as problematic.... Moderate Unreviewed
CVE-2025-0970 was published Feb 3, 2025
General OpenMRS Security Advisory, January 2025: Penetration Testing Results and Patches Critical
GHSA-vpxm-cr3r-pjp9 was published for org.openmrs.module:addresshierarchy (Maven) Jan 30, 2025
slubwama mseaton
An issue in Zhiyuan Yuedu (Guangzhou) Literature Information Technology Co., Ltd Shuqi Novel iOS... Moderate Unreviewed
CVE-2024-56971 was published Jan 27, 2025
An issue in Guangzhou Polar Future Culture Technology Co., Ltd University Search iOS 2.27.0... Moderate Unreviewed
CVE-2024-56949 was published Jan 27, 2025
An issue in Beijing Baidu Netcom Science & Technology Co Ltd Baidu Lite app (iOS version) 6.40.0... Moderate Unreviewed
CVE-2024-56952 was published Jan 27, 2025
An issue in Baidu (China) Co Ltd Baidu Input Method (iOS version) v12.6.13 allows attackers to... Moderate Unreviewed
CVE-2024-56953 was published Jan 27, 2025
An issue in Tencent Technology (Shanghai) Co., Ltd WeSing iOS v9.3.39 allows attackers to access... Moderate Unreviewed
CVE-2024-56962 was published Jan 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database