Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,335
Erlang
31
GitHub Actions
22
Go
2,097
Maven
5,000+
npm
3,762
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
883
Swift
37
Unreviewed advisories
All unreviewed
5,000+

6,704 advisories

Loading
Cross-Site Request Forgery (CSRF) vulnerability in ThemeFarmer Ultimate Subscribe allows... High Unreviewed
CVE-2025-23806 was published Jan 22, 2025
A Cross-Site Request Forgery (CSRF) vulnerability has been found in SpagoBI v3.5.1 in the user... Moderate Unreviewed
CVE-2024-54792 was published Jan 21, 2025
The Digits plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to,... High Unreviewed
CVE-2024-0203 was published Mar 7, 2024
Cross-Site Request Forgery in CodeChecker API High
CVE-2024-53829 was published for codechecker (pip) Jan 21, 2025
Discookie
Cross-Site Request Forgery (CSRF) vulnerability in anyroad.com AnyRoad allows Cross Site Request... Moderate Unreviewed
CVE-2025-23996 was published Jan 21, 2025
Cross-Site Request Forgery (CSRF) in strawberry-graphql Moderate
CVE-2024-47082 was published for strawberry-graphql (pip) Sep 25, 2024
DoctorJohn graingert
Speedy1991
Cross-Site Request Forgery (CSRF) vulnerability in PPO Việt Nam (ppo.vn) PPO Call To Actions... High Unreviewed
CVE-2025-24001 was published Jan 21, 2025
The wp-greet plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up... Moderate Unreviewed
CVE-2024-13444 was published Jan 21, 2025
The WP-BibTeX plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up... Moderate Unreviewed
CVE-2024-12005 was published Jan 21, 2025
The WP Abstracts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... Moderate Unreviewed
CVE-2024-12385 was published Jan 18, 2025
The Webcamconsult plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed
CVE-2024-13432 was published Jan 18, 2025
The ShipWorks Connector for Woocommerce plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed
CVE-2024-13317 was published Jan 18, 2025
The Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions plugin... Moderate Unreviewed
CVE-2024-0588 was published Apr 9, 2024
The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is... High Unreviewed
CVE-2024-1315 was published Apr 9, 2024
All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.9.19 are vulnerable to cross... Moderate Unreviewed
CVE-2024-26153 was published Jan 17, 2025
The Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions plugin... Moderate Unreviewed
CVE-2024-3215 was published May 2, 2024
The Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions plugin... Moderate Unreviewed
CVE-2024-1407 was published Jun 19, 2024
The Complianz – GDPR/CCPA Cookie Consent plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed
CVE-2024-1592 was published Mar 2, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Taras Dashkevych Error Notification allows... High Unreviewed
CVE-2025-23902 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Harsh iSpring Embedder allows Upload a Web... Critical Unreviewed
CVE-2025-23922 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Chris Roberts Annie allows Cross Site Request... High Unreviewed
CVE-2025-23884 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Ivo Brett – ApplyMetrics Apply with LinkedIn... High Unreviewed
CVE-2025-23898 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Katz Web Services, Inc. Debt Calculator allows... High Unreviewed
CVE-2025-23861 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in PayForm PayForm allows Stored XSS.This issue... High Unreviewed
CVE-2025-23872 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Oliver Schaal GravatarLocalCache allows Cross... High Unreviewed
CVE-2025-23901 was published Jan 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database