GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
5,493 advisories
Filter by severity
The WP-Orphanage Extended plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
High
Unreviewed
CVE-2024-11415
was published
Nov 23, 2024
Cross Site Request Forgery vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink...
Moderate
Unreviewed
CVE-2024-28731
was published
Nov 13, 2024
Zimbra GraphQL Cross-Site Request Forgery Information Disclosure Vulnerability. This...
Moderate
Unreviewed
CVE-2024-9665
was published
Nov 22, 2024
Broken Access Control vulnerability in Nickolas Bossinas WordPress File Upload allows Exploiting...
Moderate
Unreviewed
CVE-2024-39639
was published
Nov 1, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Veribo, Roland Murg WP Simple Booking Calendar...
Moderate
Unreviewed
CVE-2023-51525
was published
Mar 15, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Advanced Order Export For WooCommerce plugin <...
Moderate
Unreviewed
CVE-2022-40128
was published
Nov 9, 2022
Cross-Site Request Forgery (CSRF) vulnerability in Buying Buddy Buying Buddy IDX CRM allows...
High
Unreviewed
CVE-2024-52446
was published
Nov 20, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Aaron Robbins Post Ideas allows SQL Injection...
High
Unreviewed
CVE-2024-52451
was published
Nov 20, 2024
Cross-Site Request Forgery (CSRF) vulnerability in W3speedster W3SPEEDSTER.This issue affects...
Moderate
Unreviewed
CVE-2024-52392
was published
Nov 20, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Vivwebs Dynamic Widgets.This issue affects...
Moderate
Unreviewed
CVE-2024-51669
was published
Nov 20, 2024
Cross-Site Request Forgery (CSRF) vulnerability in 荒野无灯 Hacklog DownloadManager allows Upload a...
Critical
Unreviewed
CVE-2024-52401
was published
Nov 19, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Creative Motion Disable Admin Notices...
Moderate
Unreviewed
CVE-2024-52420
was published
Nov 19, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Mike “Mikeage” Miller Hebrew Date allows...
High
Unreviewed
CVE-2024-52388
was published
Nov 19, 2024
Cross-Site Request Forgery (CSRF) vulnerability in wp-buy WP Popup Window Maker allows Stored XSS...
High
Unreviewed
CVE-2024-52421
was published
Nov 19, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Repute InfoSystems ARMember, Repute...
Moderate
Unreviewed
CVE-2022-47424
was published
Nov 19, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Cliconomics Exclusive Content Password Protect...
Critical
Unreviewed
CVE-2024-52402
was published
Nov 19, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Hands, Inc e-shops allows Reflected XSS.This...
High
Unreviewed
CVE-2024-51648
was published
Nov 19, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Z.com by GMO GMO Social Connection allows...
High
Unreviewed
CVE-2024-51636
was published
Nov 19, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Scott @ MyDollarPlan.com Random Featured Post...
High
Unreviewed
CVE-2024-51650
was published
Nov 19, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Prem Nawaz Khan, Victor Tsaran, Ron Feathers,...
High
Unreviewed
CVE-2024-51652
was published
Nov 19, 2024
Cross-Site Request Forgery (CSRF) vulnerability in webhostri Seo Free allows Stored XSS.This...
High
Unreviewed
CVE-2024-51642
was published
Nov 19, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Rajan Agaskar Amazon Associate Filter allows...
High
Unreviewed
CVE-2024-51643
was published
Nov 19, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Patrick Lumumba Mobilize allows Stored XSS...
High
Unreviewed
CVE-2024-51649
was published
Nov 19, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Mario Spinaci UPDATE NOTIFICATIONS allows...
High
Unreviewed
CVE-2024-51653
was published
Nov 19, 2024
Cross-Site Request Forgery (CSRF) vulnerability in APK.Support APK Downloader allows Stored XSS...
High
Unreviewed
CVE-2024-51654
was published
Nov 19, 2024
ProTip!
Advisories are also available from the
GraphQL API