GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,916
Composer 4,270
Erlang 31
GitHub Actions 21
Go 2,046
Maven 5,231
npm 3,737
NuGet 663
pip 3,415
Pub 12
RubyGems 891
Rust 868
Swift 36

Unreviewed advisories

All unreviewed 238,331

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,494 advisories

Filter by severity

Sort by

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in Nicejob NiceJob allows Stored XSS.This issue... High Unreviewed

CVE-2024-44028 was published Oct 6, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Copyscape / Indigo Stream Technologies... High Unreviewed

CVE-2024-47644 was published Oct 5, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Microchip TimeProvider 4100 allows Cross Site... High Unreviewed

CVE-2024-43684 was published Oct 4, 2024

The TEM Opera Plus FM Family Transmitter application interface allows users to perform certain... High Unreviewed

CVE-2024-41987 was published Oct 3, 2024

Certain switch models from PLANET Technology have a web application that is vulnerable to Cross... High Unreviewed

CVE-2024-8458 was published Sep 30, 2024

Advantech ADAM-5630 contains a cross-site request forgery (CSRF) vulnerability. It allows an... High Unreviewed

CVE-2024-28948 was published Sep 27, 2024

A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an... High Unreviewed

CVE-2024-20437 was published Sep 25, 2024

The BA Book Everything plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... High Unreviewed

CVE-2024-8795 was published Sep 24, 2024

FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) via /admin/?/user/add High Unreviewed

CVE-2024-46394 was published Sep 19, 2024

FrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed

CVE-2024-46086 was published Sep 18, 2024

Cross-Site Request Forgery (CSRF) vulnerability in LikeBtn Like Button Rating allows Cross-Site... High Unreviewed

CVE-2024-44064 was published Sep 18, 2024

FrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed

CVE-2024-46362 was published Sep 17, 2024

FrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed

CVE-2024-46085 was published Sep 17, 2024

The PropertyHive plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... High Unreviewed

CVE-2024-8490 was published Sep 17, 2024

The Stream plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to... High Unreviewed

CVE-2024-7423 was published Sep 13, 2024

The Favicon Generator (CLOSED) WordPress plugin before 2.1 does not validate files to be uploaded... High Unreviewed

CVE-2024-7863 was published Sep 13, 2024

A cross-site request forgery (CSRF) vulnerability in the admin panel in SkySystem Arfa-CMS before... High Unreviewed

CVE-2024-45264 was published Aug 27, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Fonts Plugin Fonts allows Stored XSS.This... High Unreviewed

CVE-2024-43301 was published Aug 26, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Stormhill Media MyBookTable Bookstore allows... High Unreviewed

CVE-2024-43255 was published Aug 26, 2024

Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed

CVE-2024-42619 was published Aug 20, 2024

Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed

CVE-2024-42612 was published Aug 20, 2024

A Cross-Site Request Forgery (CSRF) in the component categorie.php of Warehouse Inventory System... High Unreviewed

CVE-2024-42586 was published Aug 20, 2024

A Cross-Site Request Forgery (CSRF) in the component edit_product.php of Warehouse Inventory... High Unreviewed

CVE-2024-42578 was published Aug 20, 2024

A Cross-Site Request Forgery (CSRF) in the component delete_media.php of Warehouse Inventory... High Unreviewed

CVE-2024-42585 was published Aug 20, 2024

A Cross-Site Request Forgery (CSRF) in the component edit_categorie.php of Warehouse Inventory... High Unreviewed

CVE-2024-42576 was published Aug 20, 2024

Previous 1 2 … 6 7 8 9 10 … 99 100 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,494 advisories