GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,683
Erlang
29
GitHub Actions
16
Go
1,708
Maven
4,944
npm
3,473
NuGet
603
pip
2,995
Pub
10
RubyGems
826
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+
2,469 advisories
Filter by severity
Cross-Site Request Forgery (CSRF) vulnerability in WP Automatic Automatic allows Privilege...
High
Unreviewed
CVE-2024-27955
was published
May 17, 2024
Cross-Site Request Forgery (CSRF) vulnerability in WP Hive Events Rich Snippets for Google allows...
High
Unreviewed
CVE-2023-44478
was published
May 17, 2024
eZ Platform CSRF token in login form is disabled by default
High
GHSA-45qm-j4m9-whv9
was published
for
ezsystems/ezplatform
(Composer)
May 15, 2024
Cross-Site Request Forgery (CSRF) vulnerability in WebinarPress.This issue affects WebinarPress:...
High
Unreviewed
CVE-2024-34818
was published
May 14, 2024
Cross-Site Request Forgery vulnerability in Socomec Net Vision, version 7.20. This vulnerability...
High
Unreviewed
CVE-2024-4600
was published
May 7, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Popup Box Team Popup box allows Cross-Site...
High
Unreviewed
CVE-2024-34367
was published
May 6, 2024
Werkzeug debugger vulnerable to remote execution when interacting with attacker controlled domain
High
CVE-2024-34069
was published
for
Werkzeug
(pip)
May 6, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Sandor Kovacs Regenerate post permalink allows...
High
Unreviewed
CVE-2024-33681
was published
Apr 29, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Toast Plugins Sticky Anything allows Cross...
High
Unreviewed
CVE-2024-33646
was published
Apr 29, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Giorgos Sarigiannidis Slash Admin allows Cross...
High
Unreviewed
CVE-2024-32958
was published
Apr 24, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Webangon The Pack Elementor addons allows...
High
Unreviewed
CVE-2024-32785
was published
Apr 24, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Seers allows Cross-Site Scripting (XSS).This...
High
Unreviewed
CVE-2024-32789
was published
Apr 24, 2024
Cross-Site Request Forgery (CSRF) vulnerability in ValvePress Automatic.This issue affects...
High
Unreviewed
CVE-2024-32693
was published
Apr 22, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Joshua Eldridge Easy CountDowner allows Stored...
High
Unreviewed
CVE-2024-32538
was published
Apr 17, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Microkid Related Posts for WordPress allows...
High
Unreviewed
CVE-2024-32549
was published
Apr 17, 2024
Cross-Site Request Forgery (CSRF) vulnerability in BMI Adult & Kid Calculator allows Stored XSS...
High
Unreviewed
CVE-2024-32550
was published
Apr 17, 2024
Dolibarr vulnerable to Cross-Site Request Forgery
High
CVE-2024-31503
was published
for
dolibarr/dolibarr
(Composer)
Apr 17, 2024
Cross-Site Request Forgery vulnerability in WBSAirback 21.02.04, which could allow an attacker to...
High
Unreviewed
CVE-2024-3782
was published
Apr 15, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Hamid Alinia - idehweb Login with phone number...
High
Unreviewed
CVE-2024-31424
was published
Apr 15, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Venugopal Change default login logo,url and...
High
Unreviewed
CVE-2024-31086
was published
Apr 15, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Nick Powers Social Author Bio allows Stored...
High
Unreviewed
CVE-2024-30545
was published
Apr 15, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Kaloyan K. Tsvetkov Broken Images allows Cross...
High
Unreviewed
CVE-2024-31093
was published
Apr 15, 2024
Cross-Site Request Forgery (CSRF) vulnerability in kp4coder Sync Post With Other Site allows...
High
Unreviewed
CVE-2024-32082
was published
Apr 15, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Tooltip WordPress Tooltips allows Stored XSS...
High
Unreviewed
CVE-2024-31285
was published
Apr 11, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Planet IGS-4215-16T2S, affecting firmware...
High
Unreviewed
CVE-2024-2741
was published
Apr 11, 2024
ProTip!
Advisories are also available from the
GraphQL API