Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
40
Go
2,971
Maven
5,000+
npm
4,616
NuGet
788
pip
4,316
Pub
12
RubyGems
984
Rust
1,126
Swift
49
Unreviewed advisories
All unreviewed
5,000+

8,552 advisories

Loading
tnftpd before 20080929 splits large command strings into multiple commands, which allows remote... Moderate Unreviewed
CVE-2008-7016 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in Live 5.x before 5.x-0.1, a module for Drupal,... Moderate Unreviewed
CVE-2008-7151 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in VirtueMart 1.0.13a and earlier allows remote... Moderate Unreviewed
CVE-2008-7204 was published May 17, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in the Chaos Tool Suite (aka CTools)... Moderate Unreviewed
CVE-2010-1547 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in AlegroCart 1.1 allows remote attackers to... Moderate Unreviewed
CVE-2010-1611 was published May 17, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in Mahara before 1.0.15, 1.1.x before... Moderate Unreviewed
CVE-2010-1668 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in gpEasy CMS 1.6.2, 1.6.1, and earlier allows... Moderate Unreviewed
CVE-2010-2039 was published May 17, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in The Uniform Server 5.6.5 allow... Low Unreviewed
CVE-2010-2113 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in user/user-set.do in Pacific Timesheet 6.74... Moderate Unreviewed
CVE-2010-2111 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in odCMS 1.06, and possibly earlier, allows... Moderate Unreviewed
CVE-2010-2345 was published May 17, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in user/main/update_user in... Moderate Unreviewed
CVE-2010-3024 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in Microsoft Outlook Web Access (owa/ev.owa) 2007... Moderate Unreviewed
CVE-2010-3213 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in the file manager service (Services/FileService... Moderate Unreviewed
CVE-2010-3603 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in HP Insight Control Performance Management... Moderate Unreviewed
CVE-2010-4032 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in HP Insight Control for Linux before 6.2 allows... Moderate Unreviewed
CVE-2010-4106 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in usercp2.php in MyBB (aka MyBulletinBoard)... Moderate Unreviewed
CVE-2010-4627 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in Mahara 1.2.x before 1.2.7 and 1.3.x before 1.3... Moderate Unreviewed
CVE-2011-0440 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in Adobe ColdFusion 8.0, 8.0.1, 9.0, and 9.0.1... Moderate Unreviewed
CVE-2011-0629 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in admin/conf_users_edit.php in PHP Link... Moderate Unreviewed
CVE-2011-0643 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in news/admin.php in N-13 News 3.4, 3.7, and 4.0... Moderate Unreviewed
CVE-2011-0642 was published May 17, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in the configuration page in the... Moderate Unreviewed
CVE-2011-0759 was published May 17, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in the configuration screen in wp... Moderate Unreviewed
CVE-2011-0760 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in _ah/admin/interactive/execute (aka the... Moderate Unreviewed
CVE-2011-1364 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in the pieforms implementation in Mahara before 1... Moderate Unreviewed
CVE-2011-1403 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in the Translation Management module 6.x before 6... Moderate Unreviewed
CVE-2011-1664 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database