Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,350
Erlang
31
GitHub Actions
22
Go
2,119
Maven
5,000+
npm
3,778
NuGet
680
pip
3,459
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

6,784 advisories

Loading
The VikBooking Hotel Booking Engine & PMS plugin for WordPress is vulnerable to Cross-Site... High Unreviewed
CVE-2024-11641 was published Jan 26, 2025
The Linear plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to... Moderate Unreviewed
CVE-2024-13709 was published Jan 25, 2025
Cross-Site Request Forgery (CSRF) vulnerability in RadiusTheme Radius Blocks allows Cross Site... Moderate Unreviewed
CVE-2025-24712 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Herd Effects allows Cross Site... Moderate Unreviewed
CVE-2025-24716 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Modal Window allows Cross Site... Moderate Unreviewed
CVE-2025-24717 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in FluentSMTP & WPManageNinja Team FluentSMTP... Moderate Unreviewed
CVE-2025-24739 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in mgplugin Roi Calculator allows Stored XSS.... High Unreviewed
CVE-2025-24756 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Button Generator – easily Button... Moderate Unreviewed
CVE-2025-24713 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Bubble Menu – circle floating menu... Moderate Unreviewed
CVE-2025-24714 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Sticky Buttons allows Cross Site... Moderate Unreviewed
CVE-2025-24720 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in NowButtons.com Call Now Button allows Cross... Moderate Unreviewed
CVE-2025-24738 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Popup Box allows Cross Site... Moderate Unreviewed
CVE-2025-24711 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Counter Box allows Cross Site... Moderate Unreviewed
CVE-2025-24715 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Side Menu Lite allows Cross Site... Moderate Unreviewed
CVE-2025-24724 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Laymance Technologies LLC MachForm Shortcode... High Unreviewed
CVE-2025-24636 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in datafeedr.com WooCommerce Cloak Affiliate... Moderate Unreviewed
CVE-2025-24647 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in G5Theme Essential Real Estate allows Cross... Moderate Unreviewed
CVE-2025-24698 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in WP Attire Attire Blocks allows Cross Site... Moderate Unreviewed
CVE-2025-24696 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Brainstorm Force Starter Templates allows... Moderate Unreviewed
CVE-2025-24568 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Really Simple Security Really Simple SSL... Moderate Unreviewed
CVE-2025-24623 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Optimal Access Inc. KBucket allows Stored XSS.... High Unreviewed
CVE-2025-24562 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in PickPlugins Job Board Manager allows Cross... Moderate Unreviewed
CVE-2025-24622 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in SubscriptionDNA.com Subscription DNA allows... High Unreviewed
CVE-2025-24555 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in ReviewsTap ReviewsTap allows Stored XSS. This... High Unreviewed
CVE-2025-24561 was published Jan 24, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Epsiloncool WP Fast Total Search allows Cross... Moderate Unreviewed
CVE-2025-24572 was published Jan 24, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database