Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,339
Erlang
31
GitHub Actions
22
Go
2,099
Maven
5,000+
npm
3,763
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
883
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,653 advisories

Loading
Cross-Site Request Forgery (CSRF) vulnerability in anmari amr personalise allows Cross Site... High Unreviewed
CVE-2025-23880 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Genkisan Genki Announcement allows Cross Site... High Unreviewed
CVE-2025-23900 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Dan Cameron Add RSS allows Stored XSS.This... High Unreviewed
CVE-2025-23895 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in wellwisher Custom Widget Classes allows Cross... High Unreviewed
CVE-2025-23844 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Robert Nicholson Copyright Safeguard Footer... High Unreviewed
CVE-2025-23870 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in David Hamilton OrangeBox allows Cross Site... High Unreviewed
CVE-2025-23800 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Benjamin Guy Style Admin allows Stored XSS... High Unreviewed
CVE-2025-23801 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Matt van Andel Custom List Table Example... High Unreviewed
CVE-2025-23808 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in linickx root Cookie allows Cross Site Request... High Unreviewed
CVE-2025-23815 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Laxman Thapa Content Security Policy Pro... High Unreviewed
CVE-2025-23820 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in jprintf CNZZ&51LA for WordPress allows Cross... High Unreviewed
CVE-2025-23823 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in SEOReseller Team SEOReseller Partner allows... High Unreviewed
CVE-2025-23805 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Mahadir Ahmad MHR-Custom-Anti-Copy allows... High Unreviewed
CVE-2025-23817 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Igor Sazonov Len Slider allows Reflected XSS... High Unreviewed
CVE-2025-23810 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Peggy Kuo More Link Modifier allows Stored XSS... High Unreviewed
CVE-2025-23818 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Shiv Prakash Tiwari WP Service Payment Form... High Unreviewed
CVE-2025-23804 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Turcu Ciprian Auto FTP allows Stored XSS. This... High Unreviewed
CVE-2025-23793 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Aleapp WP Cookies Alert allows Cross Site... High Unreviewed
CVE-2025-23821 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Cornea Alexandru Category Custom Fields allows... High Unreviewed
CVE-2025-23822 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in ArtkanMedia Book a Place allows Stored XSS... High Unreviewed
CVE-2025-23690 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Iván R. Delgado Martínez WP Custom Google... High Unreviewed
CVE-2025-23698 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in CS : ABS-Hosting.nl / Walchum.net Free... High Unreviewed
CVE-2025-23703 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Mozilla Web Push allows Stored XSS.This issue... High Unreviewed
CVE-2025-23720 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in RaymondDesign Post & Page Notes allows Stored... High Unreviewed
CVE-2025-23715 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Artem Anikeev Hack me if you can allows Stored... High Unreviewed
CVE-2025-23713 was published Jan 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database