GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,070
Composer 4,319
Erlang 31
GitHub Actions 21
Go 2,077
Maven 5,250
npm 3,746
NuGet 674
pip 3,435
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,285

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,536 advisories

Filter by severity

Sort by

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in Johan Ström Background Control allows Path... High Unreviewed

CVE-2025-22784 was published Jan 15, 2025

Multiple endpoints in GestioIP v3.5.7 are vulnerable to Cross-Site Request Forgery (CSRF). An... High Unreviewed

CVE-2024-50858 was published Jan 15, 2025

A vulnerability has been identified in SIMATIC S7-1200 CPU 1211C AC/DC/Rly (6ES7211-1BE40-0XB0),... High Unreviewed

CVE-2024-47100 was published Jan 14, 2025

Teedy through 1.11 allows CSRF for account takeover via POST /api/user/admin. High Unreviewed

CVE-2025-22963 was published Jan 13, 2025

Websites managed by MegaBIP in versions below 5.15 are vulnerable to Cross-Site Request Forgery ... High Unreviewed

CVE-2024-6662 was published Jan 10, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Migrate queue importer allows Cross... High Unreviewed

CVE-2024-13260 was published Jan 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Gutenberg allows Cross Site Request... High Unreviewed

CVE-2024-13284 was published Jan 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Migrate Tools allows Cross Site Request... High Unreviewed

CVE-2024-13244 was published Jan 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Drupal Symfony Mailer Lite allows Cross... High Unreviewed

CVE-2024-13250 was published Jan 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Dylan James Zephyr Admin Theme allows Cross... High Unreviewed

CVE-2025-22814 was published Jan 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in bozdoz Quote Tweet allows Stored XSS.This... High Unreviewed

CVE-2025-22589 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Noel Jarencio. Smoothness Slider Shortcode... High Unreviewed

CVE-2025-22555 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Mario Mansour and Geoff Peters TubePress.NET... High Unreviewed

CVE-2025-22559 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Greg Whitehead Norse Rune Oracle Plugin allows... High Unreviewed

CVE-2025-22556 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Instabot Instabot allows Cross Site Request... High Unreviewed

CVE-2025-22571 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in WPMagic News Publisher Autopilot allows Cross... High Unreviewed

CVE-2025-22557 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Jason Keeley, Bryan Nielsen Affiliate... High Unreviewed

CVE-2025-22552 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in mmrs151 Prayer Times Anywhere allows Stored... High Unreviewed

CVE-2025-22590 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Scott Nellé Uptime Robot allows Stored XSS... High Unreviewed

CVE-2025-22582 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Tock Tock Widget allows Cross Site Request... High Unreviewed

CVE-2025-22520 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Ofek Nakar Virtual Bot allows Stored XSS.This... High Unreviewed

CVE-2025-22538 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Nik Chankov Autocompleter allows Stored XSS... High Unreviewed

CVE-2025-22325 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in WordPress 智库 Wizhi Multi Filters by Wenprise... High Unreviewed

CVE-2025-22336 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Elevio Elevio allows Stored XSS.This issue... High Unreviewed

CVE-2025-22328 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Dennis Koot wpSOL allows Stored XSS.This issue... High Unreviewed

CVE-2025-22343 was published Jan 7, 2025

Previous 1 2 3 4 5 … 101 102 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,536 advisories