GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 18,873
Composer 3,683
Erlang 29
GitHub Actions 16
Go 1,708
Maven 4,944
npm 3,473
NuGet 603
pip 2,995
Pub 10
RubyGems 826
Rust 773
Swift 34

Unreviewed advisories

All unreviewed 218,409

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,469 advisories

Filter by severity

Sort by

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in WP Automatic Automatic allows Privilege... High Unreviewed

CVE-2024-27955 was published May 17, 2024

Cross-Site Request Forgery (CSRF) vulnerability in WP Hive Events Rich Snippets for Google allows... High Unreviewed

CVE-2023-44478 was published May 17, 2024

eZ Platform CSRF token in login form is disabled by default High

GHSA-45qm-j4m9-whv9 was published for ezsystems/ezplatform (Composer) May 15, 2024

Cross-Site Request Forgery (CSRF) vulnerability in WebinarPress.This issue affects WebinarPress:... High Unreviewed

CVE-2024-34818 was published May 14, 2024

Cross-Site Request Forgery vulnerability in Socomec Net Vision, version 7.20. This vulnerability... High Unreviewed

CVE-2024-4600 was published May 7, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Popup Box Team Popup box allows Cross-Site... High Unreviewed

CVE-2024-34367 was published May 6, 2024

Werkzeug debugger vulnerable to remote execution when interacting with attacker controlled domain High

CVE-2024-34069 was published for Werkzeug (pip) May 6, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Sandor Kovacs Regenerate post permalink allows... High Unreviewed

CVE-2024-33681 was published Apr 29, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Toast Plugins Sticky Anything allows Cross... High Unreviewed

CVE-2024-33646 was published Apr 29, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Giorgos Sarigiannidis Slash Admin allows Cross... High Unreviewed

CVE-2024-32958 was published Apr 24, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Webangon The Pack Elementor addons allows... High Unreviewed

CVE-2024-32785 was published Apr 24, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Seers allows Cross-Site Scripting (XSS).This... High Unreviewed

CVE-2024-32789 was published Apr 24, 2024

Cross-Site Request Forgery (CSRF) vulnerability in ValvePress Automatic.This issue affects... High Unreviewed

CVE-2024-32693 was published Apr 22, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Joshua Eldridge Easy CountDowner allows Stored... High Unreviewed

CVE-2024-32538 was published Apr 17, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Microkid Related Posts for WordPress allows... High Unreviewed

CVE-2024-32549 was published Apr 17, 2024

Cross-Site Request Forgery (CSRF) vulnerability in BMI Adult & Kid Calculator allows Stored XSS... High Unreviewed

CVE-2024-32550 was published Apr 17, 2024

Dolibarr vulnerable to Cross-Site Request Forgery High

CVE-2024-31503 was published for dolibarr/dolibarr (Composer) Apr 17, 2024

Cross-Site Request Forgery vulnerability in WBSAirback 21.02.04, which could allow an attacker to... High Unreviewed

CVE-2024-3782 was published Apr 15, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Hamid Alinia - idehweb Login with phone number... High Unreviewed

CVE-2024-31424 was published Apr 15, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Venugopal Change default login logo,url and... High Unreviewed

CVE-2024-31086 was published Apr 15, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Nick Powers Social Author Bio allows Stored... High Unreviewed

CVE-2024-30545 was published Apr 15, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Kaloyan K. Tsvetkov Broken Images allows Cross... High Unreviewed

CVE-2024-31093 was published Apr 15, 2024

Cross-Site Request Forgery (CSRF) vulnerability in kp4coder Sync Post With Other Site allows... High Unreviewed

CVE-2024-32082 was published Apr 15, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Tooltip WordPress Tooltips allows Stored XSS... High Unreviewed

CVE-2024-31285 was published Apr 11, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Planet IGS-4215-16T2S, affecting firmware... High Unreviewed

CVE-2024-2741 was published Apr 11, 2024

Previous 1 2 3 4 5 … 98 99 Next

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,469 advisories