GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,009
Composer 4,300
Erlang 31
GitHub Actions 21
Go 2,065
Maven 5,241
npm 3,744
NuGet 668
pip 3,427
Pub 12
RubyGems 892
Rust 877
Swift 36

Unreviewed advisories

All unreviewed 240,127

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,526 advisories

Filter by severity

Sort by

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in bozdoz Quote Tweet allows Stored XSS.This... High Unreviewed

CVE-2025-22589 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Noel Jarencio. Smoothness Slider Shortcode... High Unreviewed

CVE-2025-22555 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Mario Mansour and Geoff Peters TubePress.NET... High Unreviewed

CVE-2025-22559 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Greg Whitehead Norse Rune Oracle Plugin allows... High Unreviewed

CVE-2025-22556 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Instabot Instabot allows Cross Site Request... High Unreviewed

CVE-2025-22571 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in WPMagic News Publisher Autopilot allows Cross... High Unreviewed

CVE-2025-22557 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Jason Keeley, Bryan Nielsen Affiliate... High Unreviewed

CVE-2025-22552 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in mmrs151 Prayer Times Anywhere allows Stored... High Unreviewed

CVE-2025-22590 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Scott Nellé Uptime Robot allows Stored XSS... High Unreviewed

CVE-2025-22582 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Tock Tock Widget allows Cross Site Request... High Unreviewed

CVE-2025-22520 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Ofek Nakar Virtual Bot allows Stored XSS.This... High Unreviewed

CVE-2025-22538 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Nik Chankov Autocompleter allows Stored XSS... High Unreviewed

CVE-2025-22325 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in WordPress 智库 Wizhi Multi Filters by Wenprise... High Unreviewed

CVE-2025-22336 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Elevio Elevio allows Stored XSS.This issue... High Unreviewed

CVE-2025-22328 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Dennis Koot wpSOL allows Stored XSS.This issue... High Unreviewed

CVE-2025-22343 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in BannerSky.com BSK Forms Blacklist allows Blind... High Unreviewed

CVE-2025-22347 was published Jan 7, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Jens Törnell WP Simple Sitemap allows Stored... High Unreviewed

CVE-2025-22342 was published Jan 7, 2025

The ThePerfectWedding.nl Widget plugin for WordPress is vulnerable to Cross-Site Request Forgery... High Unreviewed

CVE-2024-12322 was published Jan 7, 2025

Grocy through 4.3.0 has no CSRF protection, as demonstrated by changing the Administrator's... High Unreviewed

CVE-2024-55076 was published Jan 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in CridioStudio ListingPro allows Authentication... High Unreviewed

CVE-2024-39623 was published Jan 2, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Amarjeet Amar allows Authentication Bypass... High Unreviewed

CVE-2024-56206 was published Dec 31, 2024

Cross-Site Request Forgery (CSRF) vulnerability in EditionGuard Dev Team EditionGuard for... High Unreviewed

CVE-2024-56207 was published Dec 31, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Yonatan Reinberg of Social Ink Sinking... High Unreviewed

CVE-2024-56204 was published Dec 31, 2024

Cross-Site Request Forgery (CSRF) vulnerability in George Holmes II Wayne Audio Player allows... High Unreviewed

CVE-2024-56203 was published Dec 31, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Alexander Volkov WP Nice Loader allows Stored... High Unreviewed

CVE-2024-56232 was published Dec 31, 2024

Previous 1 2 3 4 5 … 101 102 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,526 advisories