GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,350
Composer 4,652
Erlang 34
GitHub Actions 26
Go 2,257
Maven 5,512
npm 3,909
NuGet 704
pip 3,680
Pub 12
RubyGems 915
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 253,217

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,569 advisories

Filter by severity

Sort by

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in Codebangers All in One Time Clock Lite allows... Moderate Unreviewed

CVE-2025-46513 was published Apr 24, 2025

Cross-Site Request Forgery (CSRF) vulnerability in tomontoast Drop Caps allows Stored XSS. This... Moderate Unreviewed

CVE-2025-46495 was published Apr 24, 2025

Cross-Site Request Forgery (CSRF) vulnerability in nghialuu Zalo Official Live Chat allows Cross... Moderate Unreviewed

CVE-2025-46498 was published Apr 24, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Trân Minh-Quân WPVN allows Cross Site Request... Moderate Unreviewed

CVE-2025-46462 was published Apr 24, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Sebastian Echeverry SCSS-Library allows Cross... Moderate Unreviewed

CVE-2025-46436 was published Apr 24, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Search API Solr allows Cross Site... Moderate Unreviewed

CVE-2025-3907 was published Apr 23, 2025

SAP Learning Solution is vulnerable to Cross-Site Request Forgery (CSRF), allowing an attacker to... Moderate Unreviewed

CVE-2025-31328 was published Apr 22, 2025

Cross-Site Request Forgery (CSRF) vulnerability in SERVIT Software Solutions affiliate-toolkit... Moderate Unreviewed

CVE-2025-46231 was published Apr 22, 2025

Cross-Site Request Forgery (CSRF) vulnerability in CreativeMindsSolutions CM Ad Changer allows... Moderate Unreviewed

CVE-2025-46245 was published Apr 22, 2025

Cross-Site Request Forgery (CSRF) vulnerability in sonalsinha21 Recover abandoned cart for... Moderate Unreviewed

CVE-2025-46243 was published Apr 22, 2025

Cross-Site Request Forgery (CSRF) vulnerability in CreativeMindsSolutions CM Answers allows Cross... Moderate Unreviewed

CVE-2025-46246 was published Apr 22, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Michael Simple calendar for Elementor allows... Moderate Unreviewed

CVE-2025-46249 was published Apr 22, 2025

A vulnerability was found in panhainan DS-Java 1.0. It has been classified as problematic.... Moderate Unreviewed

CVE-2025-3843 was published Apr 22, 2025

A vulnerability has been found in zhenfeng13 My-BBS 1.0 and classified as problematic. This... Moderate Unreviewed

CVE-2025-3808 was published Apr 19, 2025

The User Registration & Membership – Custom Registration Form, Login Form, and User Profile... Moderate Unreviewed

CVE-2025-3284 was published Apr 19, 2025

Volmarg Personal Management System 1.4.65 is vulnerable to Cross Site Request Forgery (CSRF)... Moderate Unreviewed

CVE-2025-28355 was published Apr 18, 2025

A CSRF vulnerability in Commercify v1.0 allows remote attackers to perform unauthorized actions... Moderate Unreviewed

CVE-2025-29722 was published Apr 17, 2025

An arbitrary file deletion vulnerability in the /post/{postTitle} component of flaskBlog v2.6.1... Moderate Unreviewed

CVE-2025-28101 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Boone Gorges Anthologize allows Cross Site... Moderate Unreviewed

CVE-2025-39437 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in momen2009 Theme Changer allows Cross Site... Moderate Unreviewed

CVE-2025-39438 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Soft8Soft LLC Verge3D allows Cross Site... Moderate Unreviewed

CVE-2025-39443 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in algol.plus Advanced Dynamic Pricing for... Moderate Unreviewed

CVE-2025-39453 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in pixelgrade Style Manager allows Cross Site... Moderate Unreviewed

CVE-2025-39425 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in illow illow – Cookies Consent allows Cross... Moderate Unreviewed

CVE-2025-39426 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in WPWeb WooCommerce Social Login allows Cross... Moderate Unreviewed

CVE-2025-39472 was published Apr 16, 2025

Previous 1 2 3 4 5 … 142 143 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,569 advisories