GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,087
Composer 4,324
Erlang 31
GitHub Actions 21
Go 2,086
Maven 5,251
npm 3,747
NuGet 674
pip 3,436
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,582

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,637 advisories

Filter by severity

Sort by

Least recently updated

FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) via /admin/?/user/add High Unreviewed

CVE-2024-46394 was published Sep 19, 2024

FrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed

CVE-2024-46086 was published Sep 18, 2024

Cross-Site Request Forgery (CSRF) vulnerability in LikeBtn Like Button Rating allows Cross-Site... High Unreviewed

CVE-2024-44064 was published Sep 18, 2024

FrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed

CVE-2024-46085 was published Sep 17, 2024

FrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed

CVE-2024-46362 was published Sep 17, 2024

The PropertyHive plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... High Unreviewed

CVE-2024-8490 was published Sep 17, 2024

The Stream plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to... High Unreviewed

CVE-2024-7423 was published Sep 13, 2024

The Favicon Generator (CLOSED) WordPress plugin before 2.1 does not validate files to be uploaded... High Unreviewed

CVE-2024-7863 was published Sep 13, 2024

A cross-site request forgery (CSRF) vulnerability in the admin panel in SkySystem Arfa-CMS before... High Unreviewed

CVE-2024-45264 was published Aug 27, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Fonts Plugin Fonts allows Stored XSS.This... High Unreviewed

CVE-2024-43301 was published Aug 26, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Stormhill Media MyBookTable Bookstore allows... High Unreviewed

CVE-2024-43255 was published Aug 26, 2024

Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed

CVE-2024-42619 was published Aug 20, 2024

Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed

CVE-2024-42612 was published Aug 20, 2024

A Cross-Site Request Forgery (CSRF) in the component categorie.php of Warehouse Inventory System... High Unreviewed

CVE-2024-42586 was published Aug 20, 2024

A Cross-Site Request Forgery (CSRF) in the component delete_media.php of Warehouse Inventory... High Unreviewed

CVE-2024-42585 was published Aug 20, 2024

A Cross-Site Request Forgery (CSRF) in the component edit_categorie.php of Warehouse Inventory... High Unreviewed

CVE-2024-42576 was published Aug 20, 2024

A Cross-Site Request Forgery (CSRF) in the component delete_categorie.php of Warehouse Inventory... High Unreviewed

CVE-2024-42582 was published Aug 20, 2024

Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed

CVE-2024-42605 was published Aug 20, 2024

A Cross-Site Request Forgery (CSRF) in the component delete_user.php of Warehouse Inventory... High Unreviewed

CVE-2024-42583 was published Aug 20, 2024

A Cross-Site Request Forgery (CSRF) in the component edit_product.php of Warehouse Inventory... High Unreviewed

CVE-2024-42578 was published Aug 20, 2024

Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed

CVE-2024-42608 was published Aug 20, 2024

Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed

CVE-2024-42621 was published Aug 20, 2024

Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed

CVE-2024-42618 was published Aug 20, 2024

Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed

CVE-2024-42616 was published Aug 20, 2024

A Cross-Site Request Forgery (CSRF) in the component delete_product.php of Warehouse Inventory... High Unreviewed

CVE-2024-42584 was published Aug 20, 2024

Previous 1 2 … 12 13 14 15 16 … 105 106 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,637 advisories