GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,330
Composer 4,361
Erlang 33
GitHub Actions 22
Go 2,127
Maven 5,308
npm 3,794
NuGet 685
pip 3,473
Pub 12
RubyGems 895
Rust 894
Swift 38

Unreviewed advisories

All unreviewed 245,038

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

6,825 advisories

Filter by severity

Sort by

Least recently updated

The Ecwid by Lightspeed Ecommerce Shopping Cart plugin for WordPress is vulnerable to Cross-Site... Moderate Unreviewed

CVE-2024-13795 was published Feb 18, 2025

The Flexible Wishlist for WooCommerce – Ecommerce Wishlist & Save for later plugin for WordPress... Moderate Unreviewed

CVE-2024-13718 was published Feb 18, 2025

The MemorialDay plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... Moderate Unreviewed

CVE-2024-13523 was published Feb 18, 2025

The Reset plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to,... High Unreviewed

CVE-2024-13684 was published Feb 18, 2025

The Option Editor plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 1.0... High Unreviewed

CVE-2024-13852 was published Feb 18, 2025

The Mortgage Lead Capture System plugin for WordPress is vulnerable to Cross-Site Request Forgery... Moderate Unreviewed

CVE-2025-0796 was published Feb 18, 2025

The SpeedSize Image & Video AI-Optimizer plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed

CVE-2024-13438 was published Feb 18, 2025

The Shopwarden – Automated WooCommerce monitoring & testing plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-13315 was published Feb 18, 2025

The magayo Lottery Results plugin for WordPress is vulnerable to Cross-Site Request Forgery in... Moderate Unreviewed

CVE-2024-13522 was published Feb 18, 2025

The 1 Click WordPress Migration Plugin – 100% FREE for a limited time plugin for WordPress is... Moderate Unreviewed

CVE-2024-13555 was published Feb 18, 2025

Cross-Site Request Forgery (CSRF) vulnerability in what3words what3words Address Field allows... High Unreviewed

CVE-2025-26768 was published Feb 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in alexvtn Content Snippet Manager allows Stored... High Unreviewed

CVE-2025-26759 was published Feb 17, 2025

A vulnerability classified as problematic was found in Pix Software Vivaz 6.0.10. This... Moderate Unreviewed

CVE-2025-1358 was published Feb 16, 2025

The DirectoryPress Frontend plugin for WordPress is vulnerable to Cross-Site Request Forgery in... Moderate Unreviewed

CVE-2024-10581 was published Feb 15, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company WP Coder allows Cross-Site... High Unreviewed

CVE-2025-24699 was published Feb 14, 2025

Cross-Site Request Forgery (CSRF) vulnerability in godthor Disqus Popular Posts allows Reflected... High Unreviewed

CVE-2025-22705 was published Feb 14, 2025

mySCADA myPRO Manager is vulnerable to cross-site request forgery (CSRF), which could allow an... Moderate Unreviewed

CVE-2025-23411 was published Feb 14, 2025

Cross-Site Request Forgery (CSRF) vulnerability in wibiya Wibiya Toolbar allows Cross Site... High Unreviewed

CVE-2025-26571 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in daxiawp DX-auto-publish allows Stored XSS.... High Unreviewed

CVE-2025-26577 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in jensmueller Easy Amazon Product Information... High Unreviewed

CVE-2025-26568 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in mathieuhays Simple Documentation allows Stored... High Unreviewed

CVE-2025-26578 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in callmeforsox Post Thumbs allows Stored XSS.... High Unreviewed

CVE-2025-26569 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in uamv Glance That allows Cross Site Request... High Unreviewed

CVE-2025-26570 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in jesseheap WP PHPList allows Cross Site Request... High Unreviewed

CVE-2025-26572 was published Feb 13, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Blackbam TinyMCE Advanced qTranslate fix... High Unreviewed

CVE-2025-26582 was published Feb 13, 2025

Previous 1 2 3 4 5 … 272 273 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,825 advisories