Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

7,977 advisories

Loading
A vulnerability classified as problematic has been found in Atahualpa Theme. Affected is an... Moderate Unreviewed
CVE-2017-20088 was published Jun 24, 2022
JForum v2.8.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via http:/... High Unreviewed
CVE-2022-26173 was published Jun 17, 2022
Cross-site request forgery (CSRF) vulnerability in Piwigo through 2.9.1 allows remote attackers... High Unreviewed
CVE-2017-10680 was published May 17, 2022
Cross-site request forgery (CSRF) vulnerability in Toshiba Home gateway HEM-GW16A firmware HEM... High Unreviewed
CVE-2017-2238 was published May 17, 2022
The WP Maintenance Mode & Coming Soon WordPress plugin before 2.4.5 is lacking CSRF when emptying... Moderate Unreviewed
CVE-2022-1576 was published Jul 12, 2022
The Admin Management Xtended WordPress plugin before 2.4.5 does not have CSRF checks in some of... Moderate Unreviewed
CVE-2022-1599 was published Jul 12, 2022
The Comment License WordPress plugin before 1.4.0 does not have CSRF check in place when updating... Moderate Unreviewed
CVE-2022-1957 was published Jul 12, 2022
The MailPress WordPress plugin through 7.2.1 does not have CSRF checks in various places, which... Moderate Unreviewed
CVE-2022-1843 was published Jun 28, 2022
The Social Share Buttons by Supsystic WordPress plugin before 2.2.4 does not perform CSRF checks... Moderate Unreviewed
CVE-2022-1653 was published Jun 28, 2022
The OpenBook Book Data WordPress plugin through 3.5.2 does not have CSRF check in place when... Moderate Unreviewed
CVE-2022-1842 was published Jun 28, 2022
The My Private Site WordPress plugin before 3.0.8 does not have CSRF check in place when updating... Moderate Unreviewed
CVE-2022-1627 was published Jun 28, 2022
The Siemens web application RUGGEDCOM NMS < V1.2 on port 8080/TCP and 8081/TCP could allow a... High Unreviewed
CVE-2017-2682 was published May 17, 2022
A vulnerability in Cisco Finesse Agent and Supervisor Desktop Software could allow an... High Unreviewed
CVE-2016-6442 was published May 17, 2022
An issue was discovered in PESCMS-V2.3.3. There is a CSRF vulnerability that can delete import... Moderate Unreviewed
CVE-2021-31678 was published Jul 7, 2022
A vulnerability, which was classified as problematic, was found in Download Manager Plugin 2.8.99... Moderate Unreviewed
CVE-2017-20093 was published Jun 25, 2022
A vulnerability classified as problematic was found in TrueConf Server 4.3.7. This vulnerability... High Unreviewed
CVE-2017-20120 was published Jun 30, 2022
Cross-site request forgery (CSRF) vulnerability in Piwigo through 2.9.1 allows remote attackers... High Unreviewed
CVE-2017-10678 was published May 17, 2022
A vulnerability in the web-based management interface of Cisco Prime Collaboration Assurance... High Unreviewed
CVE-2017-6659 was published May 17, 2022
A vulnerability was found in Global Content Blocks Plugin 2.1.5. It has been declared as... High Unreviewed
CVE-2017-20090 was published Jun 24, 2022
A CVE-352 Cross-Site Request Forgery (CSRF) vulnerability exists that could allow an attacker to... High Unreviewed
CVE-2021-22724 was published Jan 29, 2022
A CVE-352 Cross-Site Request Forgery (CSRF) vulnerability exists that could allow an attacker to... High Unreviewed
CVE-2021-22725 was published Jan 29, 2022
The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow... High Unreviewed
CVE-2017-2688 was published May 17, 2022
The Simple File List WordPress plugin before 4.4.12 does not implement nonce checks, which could... Moderate Unreviewed
CVE-2022-3208 was published Oct 11, 2022
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site request... High Unreviewed
CVE-2017-1194 was published May 17, 2022
The PDF24 Articles To PDF WordPress plugin through 4.2.2 does not have CSRF check in place when... Moderate Unreviewed
CVE-2022-1828 was published Jun 21, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database