Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,741
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

6,384 advisories

Loading
Cross-Site Request Forgery (CSRF) vulnerability in CRUDLab CRUDLab Google Plus Button allows... High Unreviewed
CVE-2024-54399 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in WPGear Hack-Info allows Stored XSS.This issue... High Unreviewed
CVE-2024-54353 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Sheikh Heera WP Fiddle allows Stored XSS.This... High Unreviewed
CVE-2024-54393 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Web solution soft Mandrill WP allows Stored... High Unreviewed
CVE-2024-54394 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Ryan Bet sport Free allows Cross Site Request... Moderate Unreviewed
CVE-2024-54396 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Toby Cox SOPA Blackout allows Stored XSS.This... High Unreviewed
CVE-2024-54410 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Project Caruso Flaming Forms allows Stored XSS... High Unreviewed
CVE-2024-54398 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Matt Walters WordPress Filter allows Stored... High Unreviewed
CVE-2024-54391 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in brandtoss WP Mailster allows Cross Site... Moderate Unreviewed
CVE-2024-54355 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Get Push Monkey LLC Push Monkey Pro – Web Push... High Unreviewed
CVE-2024-54386 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Sabri Taieb Sogrid allows Privilege Escalation... High Unreviewed
CVE-2024-54352 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Sourov Amin Insertify allows Code Injection... Critical Unreviewed
CVE-2024-54372 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Antonio Gocaj Go Animate allows Stored XSS... High Unreviewed
CVE-2024-54397 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in geoWP Geoportail Shortcode allows Stored XSS... High Unreviewed
CVE-2024-54414 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in hosting.io, campaigns.io WP Controller allows... High Unreviewed
CVE-2024-54411 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Eduardo Chiaro addWeather allows Cross Site... High Unreviewed
CVE-2024-54389 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Turcu Ciprian Advanced Fancybox allows Stored... High Unreviewed
CVE-2024-54401 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Ruben Garza, Jr. GitSync allows Code Injection... Critical Unreviewed
CVE-2024-54368 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Ecommerce Templates ECT Product Carousel... High Unreviewed
CVE-2024-54412 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Cyle Conoly WP-HideThat allows Stored XSS.This... High Unreviewed
CVE-2024-54415 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in onigetoc Add image to Post allows Stored XSS... High Unreviewed
CVE-2024-54428 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Aleksander Novikov Metrika allows Cross Site... High Unreviewed
CVE-2024-54420 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Nazmul Ahsan MDC Comment Toolbar allows Stored... High Unreviewed
CVE-2024-54404 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Jettochkin Jet Footer Code allows Stored XSS... High Unreviewed
CVE-2024-54436 was published Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Thomas Hoefter Onlywire Multi Autosubmitter... High Unreviewed
CVE-2024-54435 was published Dec 16, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database