GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,904
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,504
Maven 5,949
npm 4,149
NuGet 735
pip 3,949
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,762

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

7,977 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in Nick Ciske To Lead For Salesforce allows... High Unreviewed

CVE-2025-58809 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in SwiftNinjaPro Developer Tools Blocker allows... Moderate Unreviewed

CVE-2025-58818 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Dsingh Purge Varnish Cache allows Stored XSS.... High Unreviewed

CVE-2025-58807 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in reimund Compact Admin allows Cross Site... Moderate Unreviewed

CVE-2025-58865 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Subhash Kumar Database to Excel allows Stored... High Unreviewed

CVE-2025-58844 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in David Merinas Auto Last Youtube Video allows... High Unreviewed

CVE-2025-58843 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Dejan Markovic WordPress Buffer – HYPESocial.... High Unreviewed

CVE-2025-58846 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in INVELITY Invelity MyGLS connect allows Object... High Unreviewed

CVE-2025-58833 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Deepak S Hide Real Download Path allows Stored... High Unreviewed

CVE-2025-58849 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in ChrisHurst Bulk Watermark allows Reflected XSS... High Unreviewed

CVE-2025-58845 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Yaidier WN Flipbox Pro allows Reflected XSS.... High Unreviewed

CVE-2025-58847 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Mark O'Donnell MSTW League Manager allows... High Unreviewed

CVE-2025-58852 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Samer Bechara Ultimate AJAX Login allows... High Unreviewed

CVE-2025-58854 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in KaizenCoders Enable Latex allows Stored XSS.... High Unreviewed

CVE-2025-58860 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in aakash1911 WP likes allows Reflected XSS. This... High Unreviewed

CVE-2025-58848 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in snagysandor Parallax Scrolling Enllax.js... Moderate Unreviewed

CVE-2025-58831 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Simasicher SimaCookie allows Stored XSS. This... Moderate Unreviewed

CVE-2025-58869 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in usamafarooq Woocommerce Gifts Product allows... Moderate Unreviewed

CVE-2025-58878 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in OTWthemes Popping Sidebars and Widgets Light... High Unreviewed

CVE-2025-58853 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in David Merinas Add to Feedly allows Stored XSS.... High Unreviewed

CVE-2025-58859 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in ablancodev Woocommerce Notify Updated Product... Moderate Unreviewed

CVE-2025-58856 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in ericzane Floating Window Music Player allows... High Unreviewed

CVE-2025-48104 was published Sep 5, 2025

Cross-Site Request Forgery (CSRF) vulnerability in fullworks Quick Paypal Payments allows Cross... Moderate Unreviewed

CVE-2025-27003 was published Sep 5, 2025

QuickCMS is vulnerable to Cross-Site Request Forgery in article creation functionality. Malicious... Moderate Unreviewed

CVE-2025-54174 was published Aug 20, 2025

QuickCMS is vulnerable to Cross-Site Request Forgery in page deletion functionality. Malicious... Moderate Unreviewed

CVE-2025-54541 was published Aug 28, 2025

Previous 1…318…320 Next

Previous 1 2 … 316 317 318 319 320 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

7,977 advisories