Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

7,981 advisories

Loading
A vulnerability, which was classified as problematic, was found in CodeAstro Patient Record... Moderate Unreviewed
CVE-2025-6664 was published Jun 26, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Drupal Open Social allows Cross Site Request... High Unreviewed
CVE-2025-48921 was published Jun 26, 2025
Cross-site request forgery vulnerability exists in iroha Board versions v0.10.12 and earlier. If... Moderate Unreviewed
CVE-2025-48497 was published Jun 26, 2025
A vulnerability was found in SourceCodester Gym Management System 1.0. It has been classified as... Moderate Unreviewed
CVE-2025-6476 was published Jun 23, 2025
A vulnerability was found in CodeAstro Expense Management System 1.0. It has been rated as... Moderate Unreviewed
CVE-2025-6478 was published Jun 23, 2025
An issue has been discovered in GitLab CE/EE affecting all versions from 16.1.0 before 16.11.5,... High Unreviewed
CVE-2024-4994 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in aharonyan WP Front User Submit / Front Editor... High Unreviewed
CVE-2025-52795 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Rameez Iqbal Real Estate Manager allows... High Unreviewed
CVE-2025-52825 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in BoldGrid Post and Page Builder by BoldGrid –... Moderate Unreviewed
CVE-2025-52711 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Adnan Haque (a11n) Virtual Moderator allows... High Unreviewed
CVE-2025-52772 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Mohammad Parsa Logo Manager For Samandehi... High Unreviewed
CVE-2025-52780 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in George Lewe Lewe ChordPress allows Stored XSS.... High Unreviewed
CVE-2025-52789 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Creative-Solutions Creative Contact Form... High Unreviewed
CVE-2025-52794 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in themelocation Change Cart button Colors... High Unreviewed
CVE-2025-52783 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Beee TinyNav allows Stored XSS. This issue... High Unreviewed
CVE-2025-52781 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in hideoguchi Bluff Post allows Stored XSS. This... High Unreviewed
CVE-2025-52784 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in r-win WP-DownloadCounter allows Stored XSS.... High Unreviewed
CVE-2025-52790 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in devfelixmoira Knowledge Base – Knowledge... High Unreviewed
CVE-2025-52791 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Esselink.nu Esselink.nu Settings allows... High Unreviewed
CVE-2025-52793 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in vgstef WP User Stylesheet Switcher allows... High Unreviewed
CVE-2025-52792 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Rameez Iqbal Real Estate Manager allows Cross... Moderate Unreviewed
CVE-2025-50044 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Yamna Khawaja Mailing Group Listserv allows... Moderate Unreviewed
CVE-2025-50036 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Hossni Mubarak JobWP allows Cross Site Request... Moderate Unreviewed
CVE-2025-49975 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in WP Inventory WP Inventory Manager allows Cross... Moderate Unreviewed
CVE-2025-49977 was published Jun 20, 2025
Cross-Site Request Forgery (CSRF) vulnerability in David Wood TM Replace Howdy allows Cross Site... Moderate Unreviewed
CVE-2025-49972 was published Jun 20, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database