GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,943
Composer 4,873
Erlang 37
GitHub Actions 36
Go 2,518
Maven 5,956
npm 4,156
NuGet 736
pip 3,955
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 270,194

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

7,982 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in WP Legal Pages WP Cookie Notice for GDPR, CCPA... Moderate Unreviewed

CVE-2025-49285 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in WP Table Builder WP Table Builder allows Cross... Moderate Unreviewed

CVE-2025-49286 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in tychesoftwares Print Invoice & Delivery Notes... Moderate Unreviewed

CVE-2025-49239 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in everestthemes Everest Backup allows Cross Site... Moderate Unreviewed

CVE-2025-49238 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in POEditor POEditor allows Path Traversal. This... High Unreviewed

CVE-2025-49237 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in OTWthemes Widgetize Pages Light allows Stored... High Unreviewed

CVE-2025-30995 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Giraphix Creative Layouts for Elementor allows... Moderate Unreviewed

CVE-2025-30948 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in jokerbr313 Advanced Post List allows Cross... Moderate Unreviewed

CVE-2025-30968 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in _CreativeMedia_ Elite Video Player allows... Moderate Unreviewed

CVE-2025-30986 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Michael Cannon Custom Bulk/Quick Edit allows... Moderate Unreviewed

CVE-2025-30946 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Booqable Rental Software Booqable Rental... Moderate Unreviewed

CVE-2025-30956 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in tggfref WP-Recall allows Privilege Escalation.... Moderate Unreviewed

CVE-2025-30981 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Emraan Cheema CubeWP – All-in-One Dynamic... Moderate Unreviewed

CVE-2025-30994 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Alessandro Piconi Simple Keyword to Link... Moderate Unreviewed

CVE-2025-30980 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in pozzad Global Translator allows Cross Site... Moderate Unreviewed

CVE-2025-30632 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Codehaveli Bitly URL Shortener allows Cross... Moderate Unreviewed

CVE-2025-30629 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in wphobby Backwp allows Path Traversal. This... High Unreviewed

CVE-2025-28954 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in David Shabtai Post Author allows Stored XSS.... High Unreviewed

CVE-2025-28950 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Vadim Bogaiskov Bg Orthodox Calendar allows... High Unreviewed

CVE-2025-28958 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in dilemma123 Recent Posts Slider Responsive... High Unreviewed

CVE-2025-28966 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in mangup Personal Favicon allows Stored XSS.... High Unreviewed

CVE-2025-28964 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in weblizar HR Management Lite allows Cross Site... Moderate Unreviewed

CVE-2025-29005 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in codedraft Mediabay - WordPress Media Library... High Unreviewed

CVE-2025-28948 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Seerox WP Media File Type Manager allows Cross... Moderate Unreviewed

CVE-2025-27359 was published Jun 6, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Webaholicson Epicwin Plugin allows SQL... High Unreviewed

CVE-2025-28986 was published Jun 6, 2025

Previous 1…14…320 Next

Previous 1 2 … 12 13 14 15 16 … 319 320 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

7,982 advisories