Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,831
Maven
5,000+
npm
4,462
NuGet
775
pip
4,226
Pub
12
RubyGems
972
Rust
1,093
Swift
47
Unreviewed advisories
All unreviewed
5,000+

8,463 advisories

Loading
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Identity Services... Moderate Unreviewed
CVE-2015-4267 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in Cisco FireSIGHT System Software 5.4.1.2 and 6... Moderate Unreviewed
CVE-2015-4242 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence ISDN Gateway devices with... Moderate Unreviewed
CVE-2015-4252 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence Serial Gateway devices with... Moderate Unreviewed
CVE-2015-4253 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence IP Gateway devices with... Moderate Unreviewed
CVE-2015-4255 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence MCU 4500 devices with... Moderate Unreviewed
CVE-2015-4257 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence IP VCR devices with... Moderate Unreviewed
CVE-2015-4256 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in Cisco TelePresence Server software 3.0(2.24)... Moderate Unreviewed
CVE-2015-6304 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability on Cisco TelePresence MSE 8000 devices allows... Moderate Unreviewed
CVE-2015-4258 was published May 17, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in ProjectForge before 5.3 allow... Moderate Unreviewed
CVE-2013-7251 was published May 17, 2022
Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X... Moderate Unreviewed
CVE-2015-3096 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in Zoho NetFlow Analyzer build 10250 and earlier... Moderate Unreviewed
CVE-2015-2961 was published May 17, 2022
The navigator.sendBeacon implementation in Mozilla Firefox before 37.0, Firefox ESR 31.x before... Moderate Unreviewed
CVE-2015-0807 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in Cisco Headend Digital Broadband Delivery... Moderate Unreviewed
CVE-2015-0759 was published May 17, 2022
A vulnerability in the web-based management interface of Cisco Emergency Responder could allow an... High Unreviewed
CVE-2016-6468 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in the SOAP API endpoints of the web-services... Moderate Unreviewed
CVE-2015-0705 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in the Dashboard page in the monitoring-and... Moderate Unreviewed
CVE-2015-0700 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in Cisco Unified Customer Voice Portal (CVP) 10.5... Moderate Unreviewed
CVE-2015-0735 was published May 17, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in API features in Cisco Unified... Moderate Unreviewed
CVE-2015-0704 was published May 17, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in Cisco Prime Central for Hosted... Moderate Unreviewed
CVE-2015-0741 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in Cisco Unified Intelligence Center 10.6(1)... Moderate Unreviewed
CVE-2015-0740 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in Cisco MediaSense 10.5(1) and earlier allows... Moderate Unreviewed
CVE-2015-0736 was published May 17, 2022
The response function in the JSONP endpoint in WebService/Server/JSONRPC.pm in jsonrpc.cgi in... Moderate Unreviewed
CVE-2014-1546 was published May 17, 2022
The JSONP endpoint in includes/api/ApiFormatJson.php in MediaWiki before 1.19.18, 1.20.x through... Moderate Unreviewed
CVE-2014-5241 was published May 17, 2022
Web2py Cross-Site Request Forgery vulnerability Moderate
CVE-2016-4808 was published for web2py (pip) May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database