Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,838
Erlang
36
GitHub Actions
33
Go
2,460
Maven
5,000+
npm
4,082
NuGet
723
pip
3,872
Pub
12
RubyGems
943
Rust
1,010
Swift
39
Unreviewed advisories
All unreviewed
5,000+

1,178 advisories

Loading
The mirror-registry doesn't properly sanitize the host header HTTP header in HTTP request... Moderate Unreviewed
CVE-2025-7777 was published Aug 20, 2025
URL redirection to untrusted site ('Open Redirect') issue exists in Movable Type. If this... Moderate Unreviewed
CVE-2025-55706 was published Aug 20, 2025
A flaw has been found in TOTVS Portal Meu RH up to 12.1.17. Impacted is an unknown function of... Moderate Unreviewed
CVE-2025-9193 was published Aug 20, 2025
Malicious pages could use Firefox for iOS to pass FIDO: links to the OS and trigger the hybrid... Critical Unreviewed
CVE-2025-55031 was published Aug 19, 2025
Focus for iOS would not respect a Content-Disposition header of type Attachment and would... Moderate Unreviewed
CVE-2025-55032 was published Aug 19, 2025
The URL scheme used by Firefox to facilitate searching of text queries could incorrectly allow... Moderate Unreviewed
CVE-2025-54144 was published Aug 19, 2025
The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a... Critical Unreviewed
CVE-2025-54145 was published Aug 19, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Bunkerity Bunker Web on... Moderate Unreviewed
CVE-2025-8066 was published Aug 15, 2025
@astrojs/node's trailing slash handling causes open redirect issue Moderate
CVE-2025-55207 was published for @astrojs/node (npm) Aug 15, 2025
florian-lefebvre ematipico
Fryuni delucis
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in CRM Perks Connector for... Moderate Unreviewed
CVE-2025-54681 was published Aug 14, 2025
svg-sanitizer Bypasses Attribute Sanitization Moderate
CVE-2025-55166 was published for enshrined/svg-sanitize (Composer) Aug 12, 2025
ohader realazizk
A vulnerability has been found in atjiu pybbs up to 6.0.0 and classified as problematic. This... Moderate Unreviewed
CVE-2025-8813 was published Aug 10, 2025
A vulnerability, which was classified as problematic, was found in zlt2000 microservices-platform... Moderate Unreviewed
CVE-2025-8737 was published Aug 8, 2025
Astros's duplicate trailing slash feature leads to an open redirection security issue Moderate
CVE-2025-54793 was published for astro (npm) Aug 7, 2025
ghiyastfarisi ascorbic
ematipico
IBM Operational Decision Manager 8.11.0.1, 8.11.1.0, 8.12.0.1, 9.0.0.1, and 9.5.0 could allow a... High Unreviewed
CVE-2025-2824 was published Aug 1, 2025
An open redirect in Sielox AnyWare v2.1.2 allows attackers to execute a man-in-the-middle attack... Moderate Unreviewed
CVE-2024-34328 was published Jul 31, 2025
Koa Open Redirect via Referrer Header (User-Controlled) Low
CVE-2025-8129 was published for koa (npm) Jul 29, 2025
NinjaGPT zast-ai
fengmk2
Duplicate Advisory: Koa Open Redirect via Referrer Header (User-Controlled) Low
GHSA-mvw6-62qv-vmqf was published for koa (npm) Jul 25, 2025 withdrawn
A URL redirection in Pinokio v3.6.23 allows attackers to redirect victim users to attacker... Moderate Unreviewed
CVE-2025-44109 was published Jul 23, 2025
A URL redirection in lbry-desktop v0.53.9 allows attackers to redirect victim users to attacker... Moderate Unreviewed
CVE-2025-50477 was published Jul 23, 2025
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in HotelRunner B2B allows... Moderate Unreviewed
CVE-2025-4296 was published Jul 23, 2025
A vulnerability, which was classified as problematic, has been found in Sanluan PublicCMS up to 5... Moderate Unreviewed
CVE-2025-7953 was published Jul 22, 2025
A vulnerability was found in Sanluan PublicCMS up to 5.202506.a. It has been declared as... Moderate Unreviewed
CVE-2025-7949 was published Jul 22, 2025
A vulnerability was found in thinkgem JeeSite up to 5.12.0 and classified as problematic.... Moderate Unreviewed
CVE-2025-7863 was published Jul 20, 2025
A vulnerability classified as problematic was found in thinkgem JeeSite up to 5.12.0. This... Moderate Unreviewed
CVE-2025-7785 was published Jul 18, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database