Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,743
Erlang
35
GitHub Actions
29
Go
2,318
Maven
5,000+
npm
3,950
NuGet
711
pip
3,729
Pub
12
RubyGems
920
Rust
965
Swift
38
Unreviewed advisories
All unreviewed
5,000+

3,331 advisories

Loading
Cross-Site Request Forgery (CSRF) vulnerability in x000x occupancyplan allows SQL Injection. This... High Unreviewed
CVE-2025-46458 was published May 23, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Ref CheckBot allows Stored XSS.This issue... High Unreviewed
CVE-2025-43840 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in aseem1234 Best Posts Summary allows Stored XSS... High Unreviewed
CVE-2025-39374 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in awcode AWcode Toolkit allows Stored XSS. This... High Unreviewed
CVE-2025-48238 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in affmngr Affiliates Manager Google reCAPTCHA... High Unreviewed
CVE-2025-48233 was published May 19, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Michael Lups SEO Flow by LupsOnline allows... High Unreviewed
CVE-2025-48146 was published May 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in sidngr Import Export For WooCommerce allows... High Unreviewed
CVE-2025-48144 was published May 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Shayan Farhang Pazhooh ShayanWeb Admin... High Unreviewed
CVE-2025-48114 was published May 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in ThemeMove QuickCal allows Privilege Escalation... High Unreviewed
CVE-2025-32310 was published May 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in QuanticaLabs CSS3 Accordions for WordPress... High Unreviewed
CVE-2025-31922 was published May 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Tobias WP2LEADS allows Stored XSS.This issue... High Unreviewed
CVE-2025-32922 was published May 15, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Drupal Enterprise MFA - TFA for Drupal allows... High Unreviewed
CVE-2025-47708 was published May 14, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Drupal Restrict route by IP allows Cross Site... High Unreviewed
CVE-2025-47701 was published May 14, 2025
The issue was addressed with improved memory handling. This issue is fixed in watchOS 11.5, tvOS... High Unreviewed
CVE-2025-24223 was published May 13, 2025
ARTEC EMA Mail 6.92 allows CSRF. High Unreviewed
CVE-2025-46610 was published May 12, 2025
Cross-Site Request Forgery (CSRF) vulnerability in themarketer2023 theMarketer allows Stored XSS.... High Unreviewed
CVE-2025-47655 was published May 7, 2025
Cross-Site Request Forgery (CSRF) vulnerability in axima Pays – WooCommerce Payment Gateway... High Unreviewed
CVE-2025-47648 was published May 7, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Moloni Contribuinte Checkout allows Stored XSS... High Unreviewed
CVE-2025-47685 was published May 7, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Supertext Supertext Translation and... High Unreviewed
CVE-2025-47639 was published May 7, 2025
Cross-Site Request Forgery (CSRF) vulnerability in bundgaard Martins Free Monetized Ad Exchange... High Unreviewed
CVE-2025-47620 was published May 7, 2025
Cross-Site Request Forgery (CSRF) vulnerability in AresIT WP Compress allows Cross Site Request... High Unreviewed
CVE-2025-47546 was published May 7, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Eli ELI's Related Posts Footer Links and... High Unreviewed
CVE-2025-47514 was published May 7, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Scott Paterson Accept Donations with PayPal... High Unreviewed
CVE-2025-47517 was published May 7, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Iqonic Design Graphina allows PHP Local File... High Unreviewed
CVE-2025-47533 was published May 7, 2025
Cross-Site Request Forgery (CSRF) vulnerability in A WP Life Contact Form Widget allows Cross... High Unreviewed
CVE-2025-47491 was published May 7, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database