Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,440 advisories

Loading
Multiple cross-site request forgery (CSRF) vulnerabilities in totemomail Encryption Gateway... High Unreviewed
CVE-2018-6563 was published May 14, 2022
A security vulnerability was identified in 3PAR Service Processor (SP) prior to SP-4.4.0.GA-110... High Unreviewed
CVE-2018-7097 was published May 14, 2022
In SAP BusinessObjects Business Intelligence, versions 4.0, 4.1 and 4.2, while viewing a Web... High Unreviewed
CVE-2018-2442 was published May 14, 2022
Cross-site request forgery (CSRF) vulnerability in the wpcr_do_options_page function in WP... High Unreviewed
CVE-2008-4734 was published May 14, 2022
Pimcore CSRF Vulnerability High
CVE-2018-14057 was published for pimcore/pimcore (Composer) May 14, 2022
An issue was discovered in daveismyname simple-cms through 2014-03-11. There is a CSRF... High Unreviewed
CVE-2018-15564 was published May 14, 2022
An issue was discovered in daveismyname simple-cms through 2014-03-11. admin/addpage.php does not... High Unreviewed
CVE-2018-15565 was published May 14, 2022
Cross-site request forgery (CSRF) vulnerability in IBM Flash System V9000 7.4 before 7.4.1.4, 7.5... High Unreviewed
CVE-2015-7446 was published May 14, 2022
Gleez CMS CSRF Allows Adding of Administrator Accounts High
CVE-2018-15845 was published for gleez/cms (Composer) May 14, 2022
An issue was discovered in REDAXO CMS 4.7.2. There is a CSRF vulnerability that can add an... High Unreviewed
CVE-2018-15850 was published May 14, 2022
An issue was discovered in DamiCMS 6.0.0. There is an CSRF vulnerability that can revise the... High Unreviewed
CVE-2018-15844 was published May 14, 2022
An issue was discovered in fledrCMS through 2014-02-03. There is a CSRF vulnerability that can... High Unreviewed
CVE-2018-15846 was published May 14, 2022
An issue was discovered in portfolioCMS 1.0.5. There is CSRF to create new pages via admin... High Unreviewed
CVE-2018-15848 was published May 14, 2022
An issue was discovered in Flexo CMS v0.1.6. There is a CSRF vulnerability that can add an... High Unreviewed
CVE-2018-15851 was published May 14, 2022
Cross-site scripting (XSS) vulnerability in opac-addbybiblionumber.pl in Koha 3.14.x before 3.14... High Unreviewed
CVE-2015-4639 was published May 14, 2022
\upload\plugins\sys\admin\Setting.php in CScms 4.1 allows CSRF via admin.php/setting/ftp_save. High Unreviewed
CVE-2018-16732 was published May 14, 2022
Xovis PC2, PC2R, and PC3 devices through 3.6.0 allow CSRF. High Unreviewed
CVE-2018-11718 was published May 14, 2022
admin.php?s=/Admin/doedit in DamiCMS v6.0.0 allows CSRF to change the administrator account's... High Unreviewed
CVE-2018-16331 was published May 14, 2022
Cscms 4 allows CSRF for creating a member via upload/admin.php/user/save, authenticating vip... High Unreviewed
CVE-2018-16448 was published May 14, 2022
An issue was discovered in iCMS 7.0.9. There is an admincp.php?app=article&do=update CSRF... High Unreviewed
CVE-2018-16332 was published May 14, 2022
Elefant CMS CSRF Vulnerability High
CVE-2018-16387 was published for elefant/cms (Composer) May 14, 2022
An issue was discovered in AuraCMS 2.3. There is a CSRF vulnerability that can change the... High Unreviewed
CVE-2018-16338 was published May 14, 2022
An issue was discovered in EmpireCMS 7.0. There is a CSRF vulnerability that can add... High Unreviewed
CVE-2018-16339 was published May 14, 2022
Cross-site request forgery (CSRF) vulnerability in my_profile/edit?inline= in FUEL CMS 1.4 allows... High Unreviewed
CVE-2018-16416 was published May 14, 2022
Cross-site request forgery (CSRF) vulnerability in WL-330NUL Firmware version prior to 3.0.0.46... High Unreviewed
CVE-2018-0647 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database