Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

6,150 advisories

Loading
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401 and 6.00PL01. Due to... Moderate Unreviewed
CVE-2024-45172 was published Sep 4, 2024
A vulnerability has been found in SourceCodester Insurance Management System 1.0 and classified... Moderate Unreviewed
CVE-2024-8414 was published Sep 4, 2024
The DN Popup WordPress plugin through 1.2.2 does not have CSRF check in place when updating its... Moderate Unreviewed
CVE-2024-7690 was published Sep 2, 2024
REDCap 14.7.0 allows HTML injection via the project title of a New Project action. This can lead... Moderate Unreviewed
CVE-2024-45527 was published Sep 2, 2024
WordPress plugin "Carousel Slider" provided by Sayful Islam contains a cross-site request forgery... Moderate Unreviewed
CVE-2024-45270 was published Sep 2, 2024
WordPress plugin "Carousel Slider" provided by Sayful Islam contains a cross-site request forgery... Moderate Unreviewed
CVE-2024-45269 was published Sep 2, 2024
The Tourfic plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up... Moderate Unreviewed
CVE-2024-8319 was published Aug 30, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Dinesh Karki WP Armour Extended.This issue... Moderate Unreviewed
CVE-2024-43947 was published Aug 29, 2024
A Cross-Site Request Forgery (CSRF) vulnerability was found in Kashipara Music Management System... Moderate Unreviewed
CVE-2024-42793 was published Aug 28, 2024
A cross-site request forgery (CSRF) vulnerability in the admin panel in SkySystem Arfa-CMS before... High Unreviewed
CVE-2024-45264 was published Aug 27, 2024
The Reviews Feed – Add Testimonials and Customer Reviews From Google Reviews, Yelp, TripAdvisor,... Moderate Unreviewed
CVE-2024-8200 was published Aug 27, 2024
The Visual Sound plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... Moderate Unreviewed
CVE-2024-8197 was published Aug 27, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Checkout Plugins Stripe Payments For... Moderate Unreviewed
CVE-2024-43316 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Fonts Plugin Fonts allows Stored XSS.This... High Unreviewed
CVE-2024-43301 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Naiche Dark Mode for WP Dashboard.This issue... Moderate Unreviewed
CVE-2024-43325 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Softaculous Team SpeedyCache.This issue... Moderate Unreviewed
CVE-2024-43299 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in bobbingwide.This issue affects oik: from n/a... Moderate Unreviewed
CVE-2024-43356 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Nasirahmed Advanced Form Integration.This... Moderate Unreviewed
CVE-2024-43340 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in WPBackItUp Backup and Restore WordPress.This... Moderate Unreviewed
CVE-2024-43269 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in WP User Manager.This issue affects WP User... Moderate Unreviewed
CVE-2024-43336 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Brave Brave Popup Builder.This issue affects... Moderate Unreviewed
CVE-2024-43337 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Passionate Programmers B.V. WP Data Access... Moderate Unreviewed
CVE-2024-43295 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in WebinarPress allows Cross-Site Scripting (XSS)... Moderate Unreviewed
CVE-2024-43339 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Saturday Drive Ninja Forms.This issue affects... Moderate Unreviewed
CVE-2024-39628 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Brevo Newsletter, SMTP, Email marketing and... Moderate Unreviewed
CVE-2024-43287 was published Aug 26, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database