GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,904
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,504
Maven 5,949
npm 4,149
NuGet 735
pip 3,949
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,893

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

7,981 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in Trust Payments Trust Payments Gateway for... Moderate Unreviewed

CVE-2025-53569 was published Jul 4, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Brian S. Reed Contact Form 7 reCAPTCHA allows... Moderate Unreviewed

CVE-2025-23972 was published Jul 4, 2025

The WP Firebase Push Notification plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed

CVE-2025-5924 was published Jul 4, 2025

The yContributors plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed

CVE-2025-6041 was published Jul 4, 2025

The RD Contacto plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... Moderate Unreviewed

CVE-2025-5933 was published Jul 4, 2025

The application is vulnerable to cross-site request forgery. An attacker can trick a valid,... Moderate Unreviewed

CVE-2025-27454 was published Jul 3, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Laundry on Linux, MacOS allows to perform an... High Unreviewed

CVE-2025-52841 was published Jul 2, 2025

Cross-site request forgery vulnerability exists in Active! mail 6 BuildInfo: 6.60.06008562 and... Low Unreviewed

CVE-2025-52463 was published Jul 2, 2025

The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is... High Unreviewed

CVE-2025-6459 was published Jul 2, 2025

A cross-site request forgery (CSRF) vulnerability exists in the web interface of AVTECH IP camera... Moderate Unreviewed

CVE-2025-34050 was published Jul 1, 2025

A Cross-Site Request Forgery (CSRF) leading to Cross-Site Scripting (XSS) vulnerability in the... High Unreviewed

CVE-2025-24289 was published Jun 29, 2025

A vulnerability, which was classified as problematic, was found in DaiCuo up to 1.3.13. This... Moderate Unreviewed

CVE-2025-6865 was published Jun 29, 2025

A vulnerability, which was classified as problematic, has been found in SeaCMS up to 13.2.... Moderate Unreviewed

CVE-2025-6864 was published Jun 29, 2025

The MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Wallet plugin for... Moderate Unreviewed

CVE-2025-5937 was published Jun 28, 2025

A Cross-Site Request Forgery (CSRF) vulnerability exists in the Inquiry Management functionality ... Moderate Unreviewed

CVE-2025-50370 was published Jun 27, 2025

A Cross-Site Request Forgery (CSRF) vulnerability exists in the Manage Card functionality (/mcgs... Moderate Unreviewed

CVE-2025-50369 was published Jun 27, 2025

Cross-Site Request Forgery (CSRF) vulnerability in rui_mashita Aioseo Multibyte Descriptions... Moderate Unreviewed

CVE-2025-53327 was published Jun 27, 2025

Cross-Site Request Forgery (CSRF) vulnerability in AcmeeDesign WPShapere Lite allows Stored XSS.... High Unreviewed

CVE-2025-53317 was published Jun 27, 2025

Cross-Site Request Forgery (CSRF) vulnerability in szajenw Społecznościowa 6 PL 2013 allows... High Unreviewed

CVE-2025-53329 was published Jun 27, 2025

Cross-Site Request Forgery (CSRF) vulnerability in dor re.place allows Stored XSS. This issue... High Unreviewed

CVE-2025-53338 was published Jun 27, 2025

Cross-Site Request Forgery (CSRF) vulnerability in ethoseo Track Everything allows Stored XSS.... High Unreviewed

CVE-2025-53332 was published Jun 27, 2025

Cross-Site Request Forgery (CSRF) vulnerability in samcharrington RSS Digest allows Stored XSS.... High Unreviewed

CVE-2025-53331 was published Jun 27, 2025

Cross-Site Request Forgery (CSRF) vulnerability in sh1zen WP Optimizer allows SQL Injection. This... Critical Unreviewed

CVE-2025-53314 was published Jun 27, 2025

Cross-Site Request Forgery (CSRF) vulnerability in gopi_plus Image Slider With Description allows... High Unreviewed

CVE-2025-53308 was published Jun 27, 2025

Cross-Site Request Forgery (CSRF) vulnerability in lucidcrew WP Forum Server allows Stored XSS.... High Unreviewed

CVE-2025-53305 was published Jun 27, 2025

Previous 1…9…320 Next

Previous 1 2 … 7 8 9 10 11 … 319 320 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

7,981 advisories