Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,743
Erlang
35
GitHub Actions
29
Go
2,315
Maven
5,000+
npm
3,949
NuGet
711
pip
3,729
Pub
12
RubyGems
920
Rust
965
Swift
38
Unreviewed advisories
All unreviewed
5,000+

7,574 advisories

Loading
The Simple Page Access Restriction plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed
CVE-2025-5142 was published May 30, 2025
Gibbon before 29.0.00 allows CSRF. Low Unreviewed
CVE-2025-26211 was published May 27, 2025
A vulnerability was found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1.... Moderate Unreviewed
CVE-2025-5185 was published May 26, 2025
A vulnerability was found in Tmall Demo up to 20250505. It has been rated as problematic. This... Moderate Unreviewed
CVE-2025-5132 was published May 24, 2025
A Cross-Site Request Forgery (CSRF) vulnerability in StrangeBee TheHive 5.2.0 before 5.2.16, 5.3... Moderate Unreviewed
CVE-2025-48740 was published May 23, 2025
Cross-Site Request Forgery (CSRF) vulnerability in x000x occupancyplan allows SQL Injection. This... High Unreviewed
CVE-2025-46458 was published May 23, 2025
A vulnerability classified as problematic was found in XiaoBingby TeaCMS 2.0.2. Affected by this... Moderate Unreviewed
CVE-2025-5033 was published May 21, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Danny Vink User Profile Meta Manager allows... Critical Unreviewed
CVE-2025-48340 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in ktsvetkov allows Cross Site Request Forgery... Moderate Unreviewed
CVE-2025-43835 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Ref CheckBot allows Stored XSS.This issue... High Unreviewed
CVE-2025-43840 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Ashok G Easy Child Theme Creator allows Cross... Moderate Unreviewed
CVE-2025-39375 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in aseem1234 Best Posts Summary allows Stored XSS... High Unreviewed
CVE-2025-39374 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Sanjeev Mohindra Author Box Plugin With... Moderate Unreviewed
CVE-2025-39371 was published May 19, 2025
Unauthenticated Cross Site Request Forgery (CSRF) in Salon booking system <= 10.16 versions. Moderate Unreviewed
CVE-2025-47583 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in ThemeGoods Grand Restaurant WordPress allows... Moderate Unreviewed
CVE-2025-39351 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in RedefiningTheWeb Dynamic Pricing &amp;... Moderate Unreviewed
CVE-2025-48342 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in shohei.tanaka Japanized For WooCommerce allows... Moderate Unreviewed
CVE-2025-48284 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in sbouey Falang multilanguage allows Cross Site... Moderate Unreviewed
CVE-2025-48285 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in ed4becky Rootspersona allows Cross Site... Moderate Unreviewed
CVE-2025-48344 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Pektsekye Year Make Model Search for... Moderate Unreviewed
CVE-2025-48265 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in videowhisper Broadcast Live Video – Live... Moderate Unreviewed
CVE-2025-48255 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in artiosmedia Product Code for WooCommerce... Moderate Unreviewed
CVE-2025-48264 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Juan Carlos WP Mapa Politico España allows... Moderate Unreviewed
CVE-2025-48259 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in awcode AWcode Toolkit allows Stored XSS. This... High Unreviewed
CVE-2025-48238 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Bill Minozzi reCAPTCHA for all allows Cross... Moderate Unreviewed
CVE-2025-48243 was published May 19, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database