GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,990
Composer 4,293
Erlang 31
GitHub Actions 21
Go 2,061
Maven 5,239
npm 3,744
NuGet 668
pip 3,423
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,462

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,139 advisories

Filter by severity

Sort by

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in Jake H. Youtube Video Grid allows Exploiting... Moderate Unreviewed

CVE-2024-54408 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Ryan Bet sport Free allows Cross Site Request... Moderate Unreviewed

CVE-2024-54396 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Diversified Technology Corp., WPYog, and Gagan... Moderate Unreviewed

CVE-2024-54418 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Mansur Ahamed Ui Slider Filter By Price allows... Moderate Unreviewed

CVE-2024-54419 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Bastien Ho EELV Newsletter allows Cross Site... Moderate Unreviewed

CVE-2024-54430 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in WPENGINE, INC. Advanced Custom Fields PRO.This... Moderate Unreviewed

CVE-2024-37251 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in vCita.com Online Booking & Scheduling Calendar... Moderate Unreviewed

CVE-2024-54356 was published Dec 16, 2024

Cross-Site Request Forgery (CSRF) vulnerability in brandtoss WP Mailster allows Cross Site... Moderate Unreviewed

CVE-2024-54355 was published Dec 16, 2024

The SIP Calculator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2024-12555 was published Dec 14, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Hive Support Hive Support – WordPress Help... Moderate Unreviewed

CVE-2024-54321 was published Dec 13, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Neuralabz LTD. AutoWP allows Cross Site... Moderate Unreviewed

CVE-2024-54300 was published Dec 13, 2024

Cross-Site Request Forgery (CSRF) vulnerability in KCT AIKCT Engine Chatbot, ChatGPT, Gemini, GPT... Moderate Unreviewed

CVE-2024-54306 was published Dec 13, 2024

Cross-Site Request Forgery (CSRF) vulnerability in AIpost AIcomments allows Cross Site Request... Moderate Unreviewed

CVE-2024-54307 was published Dec 13, 2024

Cross-Site Request Forgery (CSRF) vulnerability in ilGhera Woocommerce Support System allows... Moderate Unreviewed

CVE-2023-41686 was published Dec 13, 2024

The Themify Store Locator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2024-12414 was published Dec 13, 2024

The Hello In All Languages plugin for WordPress is vulnerable to Cross-Site Request Forgery in... Moderate Unreviewed

CVE-2024-12572 was published Dec 13, 2024

The Arena.IM – Live Blogging for real-time events plugin for WordPress is vulnerable to Cross... Moderate Unreviewed

CVE-2024-12526 was published Dec 12, 2024

The dejure.org Vernetzungsfunktion plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed

CVE-2024-11417 was published Dec 12, 2024

The Password for WP plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2024-11419 was published Dec 12, 2024

The web application is not protected against cross-site request forgery attacks. Therefore, an... Moderate Unreviewed

CVE-2024-28141 was published Dec 11, 2024

The WPC Order Notes for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed

CVE-2024-12004 was published Dec 11, 2024

Cross-Site Request Forgery (CSRF) vulnerability in ThemeHunk TH Variation Swatches allows Cross... Moderate Unreviewed

CVE-2023-28688 was published Dec 9, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Tickera.com Tickera allows Cross Site Request... Moderate Unreviewed

CVE-2023-23726 was published Dec 9, 2024

A vulnerability was found in JFinalCMS 1.0. It has been declared as problematic. Affected by this... Moderate Unreviewed

CVE-2024-12349 was published Dec 9, 2024

The Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2024-12115 was published Dec 7, 2024

Previous 1 2 3 4 5 6 … 125 126 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,139 advisories