GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,884
Composer 4,474
Erlang 33
GitHub Actions 24
Go 2,203
Maven 5,429
npm 3,845
NuGet 696
pip 3,635
Pub 12
RubyGems 911
Rust 912
Swift 38

Unreviewed advisories

All unreviewed 248,921

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

7,046 advisories

Filter by severity

Sort by

Least recently updated

Vulnerability in the Oracle Financial Services Behavior Detection Platform product of Oracle... Moderate Unreviewed

CVE-2025-21550 was published Jan 21, 2025

07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via /erp.07fly.net... Low Unreviewed

CVE-2024-57159 was published Jan 16, 2025

The WP Fastest Cache plugin for WordPress is vulnerable to unauthorized arbitrary file deletion... High Unreviewed

CVE-2020-36836 was published Oct 16, 2024

An arbitrary file deletion vulnerability in ThinkSAAS v3.7 allows attackers to delete arbitrary... Low Unreviewed

CVE-2024-40455 was published Jul 16, 2024

A cross-site request forgery vulnerability exists in Sola Testimonials versions prior to 3.0.0.... High Unreviewed

CVE-2024-38345 was published Jul 4, 2024

Cross-site request forgery (CSRF) vulnerability exists in Ninja Forms prior to 3.4.31. If a... High Unreviewed

CVE-2024-25572 was published Apr 11, 2024

Cross-Site Request Forgery (CSRF) vulnerability in realmag777 HUSKY – Products Filter for... Moderate Unreviewed

CVE-2024-30462 was published Mar 29, 2024

Cross-Site Request Forgery (CSRF) vulnerability in realmag777 WOLF – WordPress Posts Bulk Editor... Moderate Unreviewed

CVE-2024-31430 was published Apr 10, 2024

A Cross-Site Request Forgery (CSRF) in the component /admin/users/user.form of Openmrs 2.4.3... High Unreviewed

CVE-2025-25928 was published Mar 11, 2025

tianti v2.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /user... High Unreviewed

CVE-2025-27910 was published Mar 11, 2025

A Cross-Site Request Forgery (CSRF) in Openmrs 2.4.3 Build 0ff0ed allows attackers to execute... Moderate Unreviewed

CVE-2025-25927 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Hieu Nguyen WATI Chat and Notification allows... High Unreviewed

CVE-2025-28925 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in ohtan Spam Byebye allows Cross Site Request... Moderate Unreviewed

CVE-2025-28941 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in PPDPurveyor Google News Editors Picks Feed... High Unreviewed

CVE-2025-28860 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in CodeVibrant Maintenance Notice allows Cross... Moderate Unreviewed

CVE-2025-28859 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in stesvis Frontpage category filter allows Cross... Moderate Unreviewed

CVE-2025-28867 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in ZipList ZipList Recipe allows Cross Site... Moderate Unreviewed

CVE-2025-28868 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Skrill_Team Skrill Official allows Cross Site... Moderate Unreviewed

CVE-2025-28876 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in mg12 Mobile Themes allows Cross Site Request... Moderate Unreviewed

CVE-2025-28881 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Fastmover Plugins Last Updated Column allows... Moderate Unreviewed

CVE-2025-28887 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in jazzigor price-calc allows Stored XSS. This... High Unreviewed

CVE-2025-28891 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in frucomerci List of Posts from each Category... High Unreviewed

CVE-2025-28894 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Steveorevo Domain Theme allows Stored XSS.... High Unreviewed

CVE-2025-28897 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Naren Members page only for logged in users... High Unreviewed

CVE-2025-28901 was published Mar 11, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Benjamin Pick Contact Form 7 Select Box Editor... Moderate Unreviewed

CVE-2025-28902 was published Mar 11, 2025

Previous 1 2 3 4 5 6 7 … 281 282 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

7,046 advisories