GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,352
Composer 4,362
Erlang 33
GitHub Actions 22
Go 2,134
Maven 5,313
npm 3,797
NuGet 687
pip 3,473
Pub 12
RubyGems 896
Rust 897
Swift 38

Unreviewed advisories

All unreviewed 245,318

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,120 advisories

Filter by severity

Sort by

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in godthor Disqus Popular Posts allows Reflected... High Unreviewed

CVE-2025-22705 was published Feb 14, 2025

mySCADA myPRO Manager is vulnerable to cross-site request forgery (CSRF), which could allow an... Moderate Unreviewed

CVE-2025-23411 was published Feb 14, 2025

Cross-Site Request Forgery (CSRF) vulnerability in wibiya Wibiya Toolbar allows Cross Site... High Unreviewed

CVE-2025-26571 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in daxiawp DX-auto-publish allows Stored XSS.... High Unreviewed

CVE-2025-26577 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in jensmueller Easy Amazon Product Information... High Unreviewed

CVE-2025-26568 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in mathieuhays Simple Documentation allows Stored... High Unreviewed

CVE-2025-26578 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in callmeforsox Post Thumbs allows Stored XSS.... High Unreviewed

CVE-2025-26569 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in uamv Glance That allows Cross Site Request... High Unreviewed

CVE-2025-26570 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in jesseheap WP PHPList allows Cross Site Request... High Unreviewed

CVE-2025-26572 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Blackbam TinyMCE Advanced qTranslate fix... High Unreviewed

CVE-2025-26582 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in CompleteWebResources Page/Post Specific Social... High Unreviewed

CVE-2025-26580 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in nagarjunsonti My Login Logout Plugin allows... High Unreviewed

CVE-2025-26547 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in pa1 WP Html Page Sitemap allows Stored XSS.... High Unreviewed

CVE-2025-26549 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Kunal Shivale Global Meta Keyword &... High Unreviewed

CVE-2025-26550 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Shambhu Patnaik RSS Filter allows Stored XSS.... High Unreviewed

CVE-2025-26562 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Pukhraj Suthar Simple Responsive Menu allows... High Unreviewed

CVE-2025-26543 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in shisuh Related Posts Line-up-Exactly by... High Unreviewed

CVE-2025-26545 was published Feb 13, 2025

The Book a Room plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... Moderate Unreviewed

CVE-2024-13437 was published Feb 12, 2025

The WP Abstracts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... High Unreviewed

CVE-2024-12386 was published Feb 12, 2025

The Houzez Property Feed plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2025-0808 was published Feb 12, 2025

SAP Commerce, by default, sets certain cookies with the SameSite attribute configured to None ... Moderate Unreviewed

CVE-2025-24875 was published Feb 11, 2025

The WP All Import Pro plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2024-9661 was published Feb 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in gabrieldarezzo InLocation allows Stored XSS.... High Unreviewed

CVE-2025-25166 was published Feb 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Mark Barnes Style Tweaker allows Stored XSS.... High Unreviewed

CVE-2025-25160 was published Feb 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in blackandwhitedigital BookPress – For Book... High Unreviewed

CVE-2025-25168 was published Feb 7, 2025

Previous 1 2 3 4 5 … 244 245 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,120 advisories