GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,298
Erlang
31
GitHub Actions
21
Go
2,063
Maven
5,000+
npm
3,744
NuGet
668
pip
3,424
Pub
12
RubyGems
892
Rust
876
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
3,148 advisories
Filter by severity
The Binary MLM Woocommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in...
Moderate
Unreviewed
CVE-2024-12383
was published
Jan 7, 2025
The Backup and Restore WordPress – Backup Plugin plugin for WordPress is vulnerable to Cross-Site...
Moderate
Unreviewed
CVE-2024-12208
was published
Jan 7, 2025
The ViewMedica 9 plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions...
Moderate
Unreviewed
CVE-2024-12291
was published
Jan 7, 2025
The ViewMedica 9 plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions...
Moderate
Unreviewed
CVE-2024-12170
was published
Jan 7, 2025
The Simple add pages or posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in...
Moderate
Unreviewed
CVE-2024-12288
was published
Jan 7, 2025
The Chative Live chat and Chatbot plugin for WordPress is vulnerable to Cross-Site Request...
Moderate
Unreviewed
CVE-2024-12541
was published
Jan 7, 2025
The Transporters.io plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
Moderate
Unreviewed
CVE-2024-12557
was published
Jan 7, 2025
The WP Social AutoConnect plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
Moderate
Unreviewed
CVE-2024-12279
was published
Jan 4, 2025
The Scratch & Win – Giveaways and Contests. Boost subscribers, traffic, repeat visits, referrals...
Moderate
Unreviewed
CVE-2024-12545
was published
Jan 4, 2025
Cross-Site Request Forgery (CSRF) vulnerability in VolThemes Patricia Blog allows Cross Site...
Moderate
Unreviewed
CVE-2024-38732
was published
Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Marsian i-amaze allows Cross Site Request...
Moderate
Unreviewed
CVE-2024-38731
was published
Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in FS-code FS Poster allows Cross Site Request...
Moderate
Unreviewed
CVE-2024-37237
was published
Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Automattic WP Job Manager - Resume Manager...
Moderate
Unreviewed
CVE-2024-37241
was published
Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in MyThemeShop Schema Lite allows Cross Site...
Moderate
Unreviewed
CVE-2024-37452
was published
Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Uncanny Owl Uncanny Toolkit Pro for LearnDash...
Moderate
Unreviewed
CVE-2024-37438
was published
Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Creativthemes Point allows Cross Site Request...
Moderate
Unreviewed
CVE-2024-37931
was published
Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in BUDDYBOSS LLC BuddyBoss Theme allows Cross...
Moderate
Unreviewed
CVE-2024-37925
was published
Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Epsiloncool WP Fast Total Search.This issue...
Moderate
Unreviewed
CVE-2024-38778
was published
Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Marsian allows Cross Site Request Forgery.This...
Moderate
Unreviewed
CVE-2024-38764
was published
Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Event Espresso Event Espresso 4 Decaf allows...
Moderate
Unreviewed
CVE-2024-56251
was published
Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Labib Ahmed Animated Rotating Words allows...
Moderate
Unreviewed
CVE-2024-38753
was published
Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Tagbox Taggbox allows Cross Site Request...
Moderate
Unreviewed
CVE-2024-38754
was published
Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Themes4WP Popularis Verse allows Cross Site...
Moderate
Unreviewed
CVE-2024-38763
was published
Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Marco Milesi Telegram Bot & Channel allows...
Moderate
Unreviewed
CVE-2024-38789
was published
Jan 2, 2025
Cross-Site Request Forgery (CSRF) vulnerability in The Events Calendar Event Tickets allows Cross...
Moderate
Unreviewed
CVE-2024-38762
was published
Jan 2, 2025
ProTip!
Advisories are also available from the
GraphQL API