Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,466
Erlang
33
GitHub Actions
23
Go
2,166
Maven
5,000+
npm
3,830
NuGet
696
pip
3,507
Pub
12
RubyGems
909
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+

6,971 advisories

Loading
Cross-site request forgery (CSRF) vulnerability in attachment.cgi in Bugzilla 3.2 before 3.2.3, 3... Moderate Unreviewed
CVE-2009-1213 was published May 2, 2022
Cross-site request forgery (CSRF) vulnerability in the Plus 1 module before 6.x-2.6, a module for... Moderate Unreviewed
CVE-2009-1036 was published May 2, 2022
Cross-site request forgery (CSRF) vulnerability in account/settings/account/index.php in phpFoX 1... Moderate Unreviewed
CVE-2009-0969 was published May 2, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in the HP Embedded Web Server (EWS) on... Moderate Unreviewed
CVE-2009-0940 was published May 2, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in SemanticScuttle before 0.91 allow... Moderate Unreviewed
CVE-2009-0708 was published May 2, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in the manage_users handler in admin... Moderate Unreviewed
CVE-2009-0648 was published May 2, 2022
Cross-site request forgery (CSRF) vulnerability in the forum code in Moodle 1.7 before 1.7.7, 1.8... Moderate Unreviewed
CVE-2009-0499 was published May 2, 2022
Cross-site request forgery (CSRF) vulnerability in Bugzilla before 3.2 before 3.2.1, 3.3 before 3... Moderate Unreviewed
CVE-2009-0482 was published May 2, 2022
Bugzilla 3.2.1, 3.0.7, and 3.3.2, when running under mod_perl, calls the srand function at... High Unreviewed
CVE-2009-0486 was published May 2, 2022
Cross-site request forgery (CSRF) vulnerability in Bugzilla 3.0 before 3.0.7, 3.2 before 3.2.1,... Moderate Unreviewed
CVE-2009-0484 was published May 2, 2022
Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.17 to 2.22.7, 3.0 before 3.0.7, 3.2... Moderate Unreviewed
CVE-2009-0485 was published May 2, 2022
Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.22 before 2.22.7, 3.0 before 3.0.7,... Moderate Unreviewed
CVE-2009-0483 was published May 2, 2022
Cross-site request forgery (CSRF) vulnerability in the HTTP server in Cisco IOS 12.4(23) allows... Moderate Unreviewed
CVE-2009-0471 was published May 2, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in ajax.html in Profense Web... Moderate Unreviewed
CVE-2009-0468 was published May 2, 2022
Cross-site request forgery (CSRF) vulnerability in osCommerce 2.2 RC 2a allows remote attackers... Moderate Unreviewed
CVE-2009-0408 was published May 2, 2022
Cross-site request forgery (CSRF) vulnerability in Novell GroupWise WebAccess 6.5x, 7.0, 7.01, 7... Moderate Unreviewed
CVE-2009-0272 was published May 2, 2022
Cross-site request forgery (CSRF) vulnerability in admin/agent_edit.asp in PollPro 3.0 allows... Moderate Unreviewed
CVE-2009-0112 was published May 2, 2022
Cross-site request forgery (CSRF) vulnerability in the administration interface in Cisco IronPort... Moderate Unreviewed
CVE-2009-0055 was published May 2, 2022
Cross-site request forgery (CSRF) vulnerability in the administration interface in Cisco IronPort... Moderate Unreviewed
CVE-2009-0056 was published May 2, 2022
Apache Geronimo Application Server CSRF vulnerabilities Moderate
CVE-2009-0039 was published for org.apache.geronimo.plugins:console (Maven) May 2, 2022
westonsteimel MarkLee131
The redirect implementation in curl and libcurl 5.11 through 7.19.3, when CURLOPT_FOLLOWLOCATION... Moderate Unreviewed
CVE-2009-0037 was published May 2, 2022
Cross-site request forgery (CSRF) vulnerability in actions.php in Positive Software H-Sphere... Moderate Unreviewed
CVE-2008-4448 was published May 2, 2022
ProFTPD 1.3.1 interprets long commands from an FTP client as multiple commands, which allows... Moderate Unreviewed
CVE-2008-4242 was published May 2, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in the HTTP Administration component... High Unreviewed
CVE-2008-4128 was published May 2, 2022
Cross-site request forgery (CSRF) vulnerability in user_admin.php in Open Media Collectors... Moderate Unreviewed
CVE-2008-3938 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database