GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,627
Composer 4,226
Erlang 31
GitHub Actions 19
Go 1,991
Maven 5,174
npm 3,708
NuGet 661
pip 3,339
Pub 11
RubyGems 884
Rust 846
Swift 36

Unreviewed advisories

All unreviewed 234,545

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,450 advisories

Filter by severity

Sort by

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in Suresh Kumar wp-login customizer allows Stored... High Unreviewed

CVE-2024-52424 was published Nov 18, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Skpstorm SK WP Settings Backup allows Object... High Unreviewed

CVE-2024-52415 was published Nov 17, 2024

The EleForms – All In One Form Integration including DB for Elementor plugin for WordPress is... Moderate Unreviewed

CVE-2024-6628 was published Nov 16, 2024

The 404 Error Monitor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2024-11118 was published Nov 16, 2024

A vulnerability in the REST API of Cisco Expressway Series and Cisco TelePresence VCS... High Unreviewed

CVE-2022-20853 was published Nov 15, 2024

Cross-Site Request Forgery (CSRF) vulnerability in GentleSource Appointmind allows Stored XSS... High Unreviewed

CVE-2024-51679 was published Nov 15, 2024

Cross-Site Request Forgery (CSRF) vulnerability in GeekRMX Twitter @Anywhere Plus allows Stored... High Unreviewed

CVE-2024-51659 was published Nov 15, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Henrik Hoff WP Course Manager allows Stored... High Unreviewed

CVE-2024-51658 was published Nov 15, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Ciprian Popescu W3P SEO allows Stored XSS.This... High Unreviewed

CVE-2024-51684 was published Nov 14, 2024

Cross-Site Request Forgery (CSRF) vulnerability in FraudLabs Pro FraudLabs Pro SMS Verification... High Unreviewed

CVE-2024-51688 was published Nov 14, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Platform.Ly Platform.Ly Official allows Stored... High Unreviewed

CVE-2024-51687 was published Nov 14, 2024

VaeMendis - CWE-352: Cross-Site Request Forgery (CSRF) Moderate Unreviewed

CVE-2024-47914 was published Nov 14, 2024

The WPForms – Easy Form Builder for WordPress – Contact Forms, Payment Forms, Surveys, & More... Moderate Unreviewed

CVE-2024-10593 was published Nov 13, 2024

The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed

CVE-2024-11143 was published Nov 13, 2024

A vulnerability was found in GetSimpleCMS 3.3.16 and classified as problematic. This issue... Moderate Unreviewed

CVE-2024-11125 was published Nov 12, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Lars Schenk Responsive Flickr Gallery allows... High Unreviewed

CVE-2024-51630 was published Nov 9, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Chaser324 Featured Posts Scroll allows Stored... High Unreviewed

CVE-2024-51647 was published Nov 9, 2024

07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component... Moderate Unreviewed

CVE-2024-51157 was published Nov 8, 2024

dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the... Critical Unreviewed

CVE-2024-50966 was published Nov 8, 2024

An issue was discovered on Epson Expression Home XP255 20.08.FM10I8 devices. POST requests don't... High Unreviewed

CVE-2019-20460 was published Nov 7, 2024

An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. There is no CSRF protection. High Unreviewed

CVE-2020-11919 was published Nov 7, 2024

The Featured Posts Scroll plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2024-10922 was published Nov 7, 2024

Cross-Site Request Forgery (CSRF) vulnerability in JATOS v3.9.3 allows an attacker to reset the... High Unreviewed

CVE-2024-51382 was published Nov 5, 2024

Cross-Site Request Forgery (CSRF) vulnerability in JATOS v3.9.3 that allows attackers to perform... High Unreviewed

CVE-2024-51381 was published Nov 5, 2024

The WooCommerce Report plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... High Unreviewed

CVE-2024-10711 was published Nov 5, 2024

Previous 1 2 3 4 5 … 217 218 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

5,450 advisories