Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,801
Erlang
36
GitHub Actions
29
Go
2,382
Maven
5,000+
npm
4,011
NuGet
720
pip
3,810
Pub
12
RubyGems
930
Rust
987
Swift
38
Unreviewed advisories
All unreviewed
5,000+

7,804 advisories

Loading
An issue was discovered in HongCMS v3.0.0. There is a CSRF vulnerability that can add an... High Unreviewed
CVE-2018-10265 was published May 14, 2022
IBM BigFix Platform 9.2 and 9.5 is vulnerable to cross-site request forgery which could allow an... High Unreviewed
CVE-2018-1479 was published May 14, 2022
The edit/ URI in Datenstrom Yellow 0.7.3 has CSRF via a delete action that can delete articles. Moderate Unreviewed
CVE-2018-10758 was published May 14, 2022
The web management interface in the TP-Link EAP Controller and Omada Controller versions 2.5... High Unreviewed
CVE-2018-10166 was published May 14, 2022
CSRF exists on D-Link DIR-868L devices, leading to (for example) a change to the Admin password.... High Unreviewed
CVE-2018-10957 was published May 14, 2022
Easy Hosting Control Panel (EHCP) v0.37.12.b allows remote attackers to conduct cross-site... High Unreviewed
CVE-2018-6458 was published May 14, 2022
Fastweb FASTgate 0.00.47 devices are vulnerable to CSRF, with impacts including Wi-Fi password... High Unreviewed
CVE-2018-6023 was published May 14, 2022
An issue was discovered in YXcms 1.4.7. Cross-site request forgery (CSRF) vulnerability in... Moderate Unreviewed
CVE-2018-11003 was published May 14, 2022
An issue was discovered in SDcms v1.5. Cross-site request forgery (CSRF) vulnerability in /WWW/... High Unreviewed
CVE-2018-11004 was published May 14, 2022
An issue was discovered in PbootCMS v1.0.7. Cross-site request forgery (CSRF) vulnerability in... High Unreviewed
CVE-2018-11018 was published May 14, 2022
dg-user/?controller=users&action=add in doorGets 7.0 has CSRF that results in adding an... High Unreviewed
CVE-2018-11126 was published May 14, 2022
e107 2.1.7 has CSRF resulting in arbitrary user deletion. Moderate Unreviewed
CVE-2018-11127 was published May 14, 2022
Horse Market Sell & Rent Portal Script 1.5.7 has a CSRF vulnerability through which an attacker... Moderate Unreviewed
CVE-2018-11096 was published May 14, 2022
An issue was discovered in the Admin Notes plugin 1.1 for MyBB. CSRF allows an attacker to... Moderate Unreviewed
CVE-2018-11092 was published May 14, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in includes/campaignmonitor_lists... Moderate Unreviewed
CVE-2015-4364 was published May 14, 2022
An issue was discovered in GreenCMS v2.3.0603. There is a CSRF vulnerability that can add an... High Unreviewed
CVE-2018-11671 was published May 14, 2022
An issue was discovered in GreenCMS v2.3.0603. There is a CSRF vulnerability that allows... High Unreviewed
CVE-2018-11670 was published May 14, 2022
An issue was discovered in CScms v4.1. A Cross-site request forgery (CSRF) vulnerability in... High Unreviewed
CVE-2018-11527 was published May 14, 2022
An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF vulnerability that can add a... High Unreviewed
CVE-2018-11493 was published May 14, 2022
An issue was discovered in PublicCMS V4.0.20180210. There is a CSRF vulnerability in "admin... High Unreviewed
CVE-2018-11500 was published May 14, 2022
An issue was discovered in the MULTIDOTS Woo Checkout for Digital Goods plugin 2.1 for WordPress.... Moderate Unreviewed
CVE-2018-11633 was published May 14, 2022
SkyCaiji 1.2 allows CSRF to add an Administrator user. High Unreviewed
CVE-2018-11371 was published May 14, 2022
An issue was discovered in the MULTIDOTS Add Social Share Messenger Buttons Whatsapp and Viber... Moderate Unreviewed
CVE-2018-11632 was published May 14, 2022
Kliqqi 2.0.2 has CSRF in admin/admin_users.php. High Unreviewed
CVE-2018-11405 was published May 14, 2022
A CSRF issue was discovered on the User Add/System Settings Page (system-settings-user-new2.php)... High Unreviewed
CVE-2018-11445 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database