GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,174

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,439 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in dactum Clickbank WordPress Plugin (Niche... High Unreviewed

CVE-2025-48353 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Gary Illyes Google XML News Sitemap plugin... High Unreviewed

CVE-2025-48304 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in developers savyour Savyour Affiliate Partner... High Unreviewed

CVE-2025-48306 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in shmish111 WP Admin Theme allows Stored XSS.... High Unreviewed

CVE-2025-48325 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in cuckoohello 百度分享按钮 allows Stored XSS. This... High Unreviewed

CVE-2025-48320 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in dyiosah Ultimate twitter profile widget allows... High Unreviewed

CVE-2025-48321 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Aaron Axelsen WPMU Ldap Authentication allows... High Unreviewed

CVE-2025-48343 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in kasonzhao SEO For Images allows Stored XSS.... High Unreviewed

CVE-2025-48307 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in web-able BetPress allows Stored XSS. This... High Unreviewed

CVE-2025-48309 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in nonletter Newsletter subscription optin module... High Unreviewed

CVE-2025-48308 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in OffClicks Invisible Optin allows Stored XSS.... High Unreviewed

CVE-2025-48311 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Xavier Media XM-Backup allows Stored XSS. This... High Unreviewed

CVE-2025-48109 was published Aug 28, 2025

The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-7812 was published Aug 28, 2025

Cross-Site Request Forgery (CSRF) vulnerability in GeroNikolov Instant Breaking News allows... High Unreviewed

CVE-2025-58217 was published Aug 27, 2025

The Inspiro theme for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to... High Unreviewed

CVE-2025-8592 was published Aug 21, 2025

Cross Site Request Forgery (CSRF) vulnerability in old-peanut Open-Shop (aka old-peanut... High Unreviewed

CVE-2025-50902 was published Aug 20, 2025

Liferay Portal Vulnerable to Cross-Site Request Forgery High

CVE-2025-43748 was published for com.liferay.portal:release.portal.bom (Maven) Aug 20, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Realtyna Realtyna Organic IDX plugin allows... High Unreviewed

CVE-2025-54052 was published Aug 20, 2025

Cross-Site Request Forgery (CSRF) vulnerability in DexignZone JobZilla - Job Board WordPress... High Unreviewed

CVE-2025-49382 was published Aug 20, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Basix NEX-Forms allows Cross Site Request... High Unreviewed

CVE-2025-49399 was published Aug 20, 2025

Cross-Site Request Forgery (CSRF) vulnerability in iThemes ServerBuddy by PluginBuddy.Com allows... High Unreviewed

CVE-2025-49895 was published Aug 16, 2025

Cross-Site Request Forgery (CSRF) vulnerability in ApusTheme Findgo allows Cross Site Request... High Unreviewed

CVE-2025-53587 was published Aug 14, 2025

Cross-Site Request Forgery (CSRF) vulnerability in lisensee NetInsight Analytics Implementation... High Unreviewed

CVE-2025-52765 was published Aug 14, 2025

Cross-Site Request Forgery (CSRF) vulnerability in josepsitjar StoryMap allows SQL Injection.... High Unreviewed

CVE-2025-52797 was published Aug 14, 2025

The KuWFi 4G LTE AC900 router 1.0.13 is vulnerable to Cross-Site Request Forgery (CSRF) on its... High Unreviewed

CVE-2024-53946 was published Aug 14, 2025

Previous 12…138 Next

Previous 1 2 3 4 5 … 137 138 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,439 advisories