GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,904
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,504
Maven 5,949
npm 4,149
NuGet 735
pip 3,949
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,762

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

7,977 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Due to insufficient CSRF protection in SAP Fiori App Manage Work Center Groups, an authenticated... Moderate Unreviewed

CVE-2025-42923 was published Sep 9, 2025

dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the... Low Unreviewed

CVE-2024-48341 was published Sep 8, 2025

Cross-Site Request Forgery (CSRF) vulnerability in fullworks Quick Paypal Payments allows Cross... Moderate Unreviewed

CVE-2025-27003 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in ericzane Floating Window Music Player allows... High Unreviewed

CVE-2025-48104 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in usamafarooq Woocommerce Gifts Product allows... Moderate Unreviewed

CVE-2025-58878 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Simasicher SimaCookie allows Stored XSS. This... Moderate Unreviewed

CVE-2025-58869 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in aakash1911 WP likes allows Reflected XSS. This... High Unreviewed

CVE-2025-58848 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Subhash Kumar Database to Excel allows Stored... High Unreviewed

CVE-2025-58844 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in David Merinas Auto Last Youtube Video allows... High Unreviewed

CVE-2025-58843 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Dejan Markovic WordPress Buffer – HYPESocial.... High Unreviewed

CVE-2025-58846 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in INVELITY Invelity MyGLS connect allows Object... High Unreviewed

CVE-2025-58833 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Deepak S Hide Real Download Path allows Stored... High Unreviewed

CVE-2025-58849 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in ChrisHurst Bulk Watermark allows Reflected XSS... High Unreviewed

CVE-2025-58845 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Yaidier WN Flipbox Pro allows Reflected XSS.... High Unreviewed

CVE-2025-58847 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in OTWthemes Popping Sidebars and Widgets Light... High Unreviewed

CVE-2025-58853 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Mark O'Donnell MSTW League Manager allows... High Unreviewed

CVE-2025-58852 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Samer Bechara Ultimate AJAX Login allows... High Unreviewed

CVE-2025-58854 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in David Merinas Add to Feedly allows Stored XSS.... High Unreviewed

CVE-2025-58859 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in KaizenCoders Enable Latex allows Stored XSS.... High Unreviewed

CVE-2025-58860 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in WP Corner Quick Event Calendar allows Stored... High Unreviewed

CVE-2025-58861 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in reimund Compact Admin allows Cross Site... Moderate Unreviewed

CVE-2025-58865 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in ablancodev Woocommerce Notify Updated Product... Moderate Unreviewed

CVE-2025-58856 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in themelocation Custom WooCommerce Checkout... Moderate Unreviewed

CVE-2025-58799 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in snagysandor Parallax Scrolling Enllax.js... Moderate Unreviewed

CVE-2025-58831 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in michalzagdan TrustMate.io – WooCommerce... Moderate Unreviewed

CVE-2025-58802 was published Sep 5, 2025

Previous 12…320 Next

Previous 1 2 3 4 5 … 319 320 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

7,977 advisories