GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,063
Composer 4,318
Erlang 31
GitHub Actions 21
Go 2,074
Maven 5,249
npm 3,746
NuGet 674
pip 3,434
Pub 12
RubyGems 892
Rust 880
Swift 37

Unreviewed advisories

All unreviewed 241,079

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,810 advisories

Filter by severity

Sort by

Least recently updated

Active Directory Federation Server Spoofing Vulnerability Moderate Unreviewed

CVE-2025-21193 was published Jan 14, 2025

A vulnerability has been identified in SIMATIC S7-1200 CPU 1211C AC/DC/Rly (6ES7211-1BE40-0XB0),... High Unreviewed

CVE-2024-47100 was published Jan 14, 2025

The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed

CVE-2025-0393 was published Jan 14, 2025

The Smart Agenda – Prise de rendez-vous en ligne plugin for WordPress is vulnerable to Cross-Site... Moderate Unreviewed

CVE-2024-13348 was published Jan 14, 2025

Teedy through 1.11 allows CSRF for account takeover via POST /api/user/admin. High Unreviewed

CVE-2025-22963 was published Jan 13, 2025

An issue was discovered in REDCap 14.9.6. It has an action=myprojects&logout=1 CSRF issue in the... Low Unreviewed

CVE-2025-23113 was published Jan 11, 2025

Websites managed by MegaBIP in versions below 5.15 are vulnerable to Cross-Site Request Forgery ... High Unreviewed

CVE-2024-6662 was published Jan 10, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Minify JS allows Cross Site Request... Moderate Unreviewed

CVE-2024-13304 was published Jan 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Migrate queue importer allows Cross... High Unreviewed

CVE-2024-13260 was published Jan 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Gutenberg allows Cross Site Request... High Unreviewed

CVE-2024-13284 was published Jan 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Drupal POST File allows Cross Site Request... Low Unreviewed

CVE-2024-13293 was published Jan 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Acquia DAM allows Cross Site Request... Low Unreviewed

CVE-2024-13261 was published Jan 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Migrate Tools allows Cross Site Request... High Unreviewed

CVE-2024-13244 was published Jan 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Drupal Symfony Mailer Lite allows Cross... High Unreviewed

CVE-2024-13250 was published Jan 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Dylan James Zephyr Admin Theme allows Cross... High Unreviewed

CVE-2025-22814 was published Jan 9, 2025

The Action Network plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2024-12394 was published Jan 9, 2025

The AI Scribe – SEO AI Writer, Content Generator, Humanizer, Blog Writer, SEO Optimizer, DALLE-3,... Moderate Unreviewed

CVE-2024-12605 was published Jan 9, 2025

The Woocommerce check pincode/zipcode for shipping plugin for WordPress is vulnerable to Cross... Moderate Unreviewed

CVE-2024-12218 was published Jan 9, 2025

The WordPress Header Builder Plugin – Pearl plugin for WordPress is vulnerable to Cross-Site... Moderate Unreviewed

CVE-2024-12206 was published Jan 9, 2025

A vulnerability was found in kurniaramadhan E-Commerce-PHP 1.0. It has been classified as... Moderate Unreviewed

CVE-2024-13203 was published Jan 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in bozdoz Quote Tweet allows Stored XSS.This... High Unreviewed

CVE-2025-22589 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Noel Jarencio. Smoothness Slider Shortcode... High Unreviewed

CVE-2025-22555 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Mario Mansour and Geoff Peters TubePress.NET... High Unreviewed

CVE-2025-22559 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Faaiq Pretty Url allows Cross Site Request... Moderate Unreviewed

CVE-2025-22563 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Jason Funk Title Experiments Free allows Cross... Moderate Unreviewed

CVE-2025-22562 was published Jan 7, 2025

Previous 1 2 3 4 5 … 232 233 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

5,810 advisories