GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,117
Composer 4,330
Erlang 31
GitHub Actions 21
Go 2,091
Maven 5,253
npm 3,756
NuGet 678
pip 3,443
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 241,974

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,201 advisories

Filter by severity

Sort by

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in anyroad.com AnyRoad allows Cross Site Request... Moderate Unreviewed

CVE-2025-23996 was published Jan 21, 2025

A Cross-Site Request Forgery (CSRF) vulnerability has been found in SpagoBI v3.5.1 in the user... Moderate Unreviewed

CVE-2024-54792 was published Jan 21, 2025

The wp-greet plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up... Moderate Unreviewed

CVE-2024-13444 was published Jan 21, 2025

The WP-BibTeX plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up... Moderate Unreviewed

CVE-2024-12005 was published Jan 21, 2025

The WP Abstracts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... Moderate Unreviewed

CVE-2024-12385 was published Jan 18, 2025

The Webcamconsult plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2024-13432 was published Jan 18, 2025

The ShipWorks Connector for Woocommerce plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed

CVE-2024-13317 was published Jan 18, 2025

All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.9.19 are vulnerable to cross... Moderate Unreviewed

CVE-2024-26153 was published Jan 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in W3speedster W3SPEEDSTER allows Cross Site... Moderate Unreviewed

CVE-2025-23765 was published Jan 16, 2025

The WP User Profile Avatar plugin for WordPress is vulnerable to Cross-Site Request Forgery in... Moderate Unreviewed

CVE-2024-10789 was published Jan 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in silverplugins217 Build Private Store For... Moderate Unreviewed

CVE-2025-22731 was published Jan 15, 2025

Active Directory Federation Server Spoofing Vulnerability Moderate Unreviewed

CVE-2025-21193 was published Jan 14, 2025

The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed

CVE-2025-0393 was published Jan 14, 2025

The Smart Agenda – Prise de rendez-vous en ligne plugin for WordPress is vulnerable to Cross-Site... Moderate Unreviewed

CVE-2024-13348 was published Jan 14, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Minify JS allows Cross Site Request... Moderate Unreviewed

CVE-2024-13304 was published Jan 9, 2025

The AI Scribe – SEO AI Writer, Content Generator, Humanizer, Blog Writer, SEO Optimizer, DALLE-3,... Moderate Unreviewed

CVE-2024-12605 was published Jan 9, 2025

The Action Network plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2024-12394 was published Jan 9, 2025

The Woocommerce check pincode/zipcode for shipping plugin for WordPress is vulnerable to Cross... Moderate Unreviewed

CVE-2024-12218 was published Jan 9, 2025

The WordPress Header Builder Plugin – Pearl plugin for WordPress is vulnerable to Cross-Site... Moderate Unreviewed

CVE-2024-12206 was published Jan 9, 2025

A vulnerability was found in kurniaramadhan E-Commerce-PHP 1.0. It has been classified as... Moderate Unreviewed

CVE-2024-13203 was published Jan 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Jason Funk Title Experiments Free allows Cross... Moderate Unreviewed

CVE-2025-22562 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Faaiq Pretty Url allows Cross Site Request... Moderate Unreviewed

CVE-2025-22563 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Digital Zoom Studio Admin debug wordpress –... Moderate Unreviewed

CVE-2025-22503 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in PixelYourSite PixelYourSite – Your smart PIXEL... Moderate Unreviewed

CVE-2025-22300 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Stormhill Media MyBookTable Bookstore allows... Moderate Unreviewed

CVE-2025-22301 was published Jan 7, 2025

Previous 1 2 3 4 5 … 128 129 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,201 advisories