GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,155
Composer 4,335
Erlang 31
GitHub Actions 22
Go 2,096
Maven 5,269
npm 3,762
NuGet 678
pip 3,448
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,822

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

6,704 advisories

Filter by severity

Sort by

Least recently updated

The WP-BibTeX plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up... Moderate Unreviewed

CVE-2024-12005 was published Jan 21, 2025

The WP Abstracts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... Moderate Unreviewed

CVE-2024-12385 was published Jan 18, 2025

The Webcamconsult plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2024-13432 was published Jan 18, 2025

The ShipWorks Connector for Woocommerce plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed

CVE-2024-13317 was published Jan 18, 2025

All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.9.19 are vulnerable to cross... Moderate Unreviewed

CVE-2024-26153 was published Jan 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Harsh iSpring Embedder allows Upload a Web... Critical Unreviewed

CVE-2025-23922 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Robert Nicholson Copyright Safeguard Footer... High Unreviewed

CVE-2025-23870 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Chris Roberts Annie allows Cross Site Request... High Unreviewed

CVE-2025-23884 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Ivo Brett – ApplyMetrics Apply with LinkedIn... High Unreviewed

CVE-2025-23898 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Taras Dashkevych Error Notification allows... High Unreviewed

CVE-2025-23902 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Matt Gibbs Admin Cleanup allows Stored XSS... High Unreviewed

CVE-2025-23832 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Daniel Powney Hotspots Analytics allows Stored... High Unreviewed

CVE-2025-23848 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Nilesh Shiragave WordPress Gallery Plugin... High Unreviewed

CVE-2025-23842 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Katz Web Services, Inc. Debt Calculator allows... High Unreviewed

CVE-2025-23861 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Bas Matthee LSD Google Maps Embedder allows... High Unreviewed

CVE-2025-23871 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in PayForm PayForm allows Stored XSS.This issue... High Unreviewed

CVE-2025-23872 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Oliver Schaal GravatarLocalCache allows Cross... High Unreviewed

CVE-2025-23901 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in wellwisher Custom Widget Classes allows Cross... High Unreviewed

CVE-2025-23844 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Shibu Lijack a.k.a CyberJack CJ Custom Content... High Unreviewed

CVE-2025-23869 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Tim Ridgway Better Protected Pages allows... High Unreviewed

CVE-2025-23875 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in anmari amr personalise allows Cross Site... High Unreviewed

CVE-2025-23880 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Genkisan Genki Announcement allows Cross Site... High Unreviewed

CVE-2025-23900 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Dan Cameron Add RSS allows Stored XSS.This... High Unreviewed

CVE-2025-23895 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Aleapp WP Cookies Alert allows Cross Site... High Unreviewed

CVE-2025-23821 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Cornea Alexandru Category Custom Fields allows... High Unreviewed

CVE-2025-23822 was published Jan 16, 2025

Previous 1 2 3 4 5 … 268 269 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,704 advisories