GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,990
Composer 4,293
Erlang 31
GitHub Actions 21
Go 2,061
Maven 5,239
npm 3,744
NuGet 668
pip 3,423
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,490

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,506 advisories

Filter by severity

Sort by

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in CridioStudio ListingPro allows Authentication... High Unreviewed

CVE-2024-39623 was published Jan 2, 2025

A Cross-Site Request Forgery vulnerability in Amiro.CMS before 7.8.4 allows remote attackers to... High Unreviewed

CVE-2024-56116 was published Dec 19, 2024

Cross-Site Request Forgery (CSRF) vulnerability in George Holmes II Wayne Audio Player allows... High Unreviewed

CVE-2024-56203 was published Dec 31, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Amarjeet Amar allows Authentication Bypass... High Unreviewed

CVE-2024-56206 was published Dec 31, 2024

Cross-Site Request Forgery (CSRF) vulnerability in EditionGuard Dev Team EditionGuard for... High Unreviewed

CVE-2024-56207 was published Dec 31, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Yonatan Reinberg of Social Ink Sinking... High Unreviewed

CVE-2024-56204 was published Dec 31, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Alexander Volkov WP Nice Loader allows Stored... High Unreviewed

CVE-2024-56232 was published Dec 31, 2024

REDCap through 15.0.0 has a security flaw in the Notes section of calendar events, exposing users... High Unreviewed

CVE-2024-56311 was published Dec 22, 2024

REDCap through 15.0.0 has a security flaw in the Project Dashboards name, exposing users to a... High Unreviewed

CVE-2024-56310 was published Dec 22, 2024

The eCommerce Product Catalog Plugin for WordPress plugin for WordPress is vulnerable to Cross... High Unreviewed

CVE-2024-12771 was published Dec 21, 2024

GetSimple CMS CE 3.3.19 is vulnerable to Server-Side Request Forgery (SSRF) in the backend plugin... High Unreviewed

CVE-2024-55088 was published Dec 18, 2024

Improper access control in the endpoint /RoleMenuMapping/AddRoleMenu of Digiteam v4.21.0.0 allows... High Unreviewed

CVE-2024-37758 was published Dec 20, 2024

A Cross-Site Request Forgery (CSRF) in Sunbird DCIM dcTrack v9.1.2 allows authenticated attackers... High Unreviewed

CVE-2024-37774 was published Dec 17, 2024

The User Role Editor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... High Unreviewed

CVE-2024-12293 was published Dec 17, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Tom Royal Stop Registration Spam allows Stored... High Unreviewed

CVE-2024-56017 was published Dec 17, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Andy Fradelakis LeaderBoard Plugin allows... High Unreviewed

CVE-2024-54426 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Shambhu Prasad Patnaik WP Flipkart Importer... High Unreviewed

CVE-2024-54432 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Ivan Ovsyannikov Aphorismus allows Stored XSS... High Unreviewed

CVE-2024-54429 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in John Godley Tidy Up allows Reflected XSS.This... High Unreviewed

CVE-2024-56015 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Ecommerce Templates ECT Product Carousel... High Unreviewed

CVE-2024-54412 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Cyle Conoly WP-HideThat allows Stored XSS.This... High Unreviewed

CVE-2024-54415 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in onigetoc Add image to Post allows Stored XSS... High Unreviewed

CVE-2024-54428 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Aleksander Novikov Metrika allows Cross Site... High Unreviewed

CVE-2024-54420 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Nazmul Ahsan MDC Comment Toolbar allows Stored... High Unreviewed

CVE-2024-54404 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Jettochkin Jet Footer Code allows Stored XSS... High Unreviewed

CVE-2024-54436 was published Dec 16, 2024

Previous 1 2 3 4 5 … 100 101 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,506 advisories