Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

6,194 advisories

Loading
Cross-Site Request Forgery (CSRF) vulnerability in Platform.Ly Platform.Ly Official allows Stored... High Unreviewed
CVE-2024-51687 was published Nov 14, 2024
Cross-Site Request Forgery (CSRF) vulnerability in FraudLabs Pro FraudLabs Pro SMS Verification... High Unreviewed
CVE-2024-51688 was published Nov 14, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Ciprian Popescu W3P SEO allows Stored XSS.This... High Unreviewed
CVE-2024-51684 was published Nov 14, 2024
VaeMendis - CWE-352: Cross-Site Request Forgery (CSRF) Moderate Unreviewed
CVE-2024-47914 was published Nov 14, 2024
The WPForms – Easy Form Builder for WordPress – Contact Forms, Payment Forms, Surveys, & More... Moderate Unreviewed
CVE-2024-10593 was published Nov 13, 2024
The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed
CVE-2024-11143 was published Nov 13, 2024
SOCIFI Socifi Guest wifi as SAAS is affected by Cross Site Request Forgery (CSRF) via the Socifi... Moderate Unreviewed
CVE-2021-27701 was published Nov 13, 2024
Cross Site Request Forgery vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink... Moderate Unreviewed
CVE-2024-28731 was published Nov 13, 2024
A vulnerability was found in GetSimpleCMS 3.3.16 and classified as problematic. This issue... Moderate Unreviewed
CVE-2024-11125 was published Nov 12, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Chaser324 Featured Posts Scroll allows Stored... High Unreviewed
CVE-2024-51647 was published Nov 9, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Lars Schenk Responsive Flickr Gallery allows... High Unreviewed
CVE-2024-51630 was published Nov 9, 2024
07FLYCMS V1.3.9 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component... Moderate Unreviewed
CVE-2024-51157 was published Nov 8, 2024
dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the... Critical Unreviewed
CVE-2024-50966 was published Nov 8, 2024
An issue was discovered on Epson Expression Home XP255 20.08.FM10I8 devices. POST requests don't... High Unreviewed
CVE-2019-20460 was published Nov 7, 2024
An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. There is no CSRF protection. High Unreviewed
CVE-2020-11919 was published Nov 7, 2024
Moodle has CSRF risk in Feedback non-respondents report High
CVE-2024-43434 was published for moodle/moodle (Composer) Nov 7, 2024
The Featured Posts Scroll plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed
CVE-2024-10922 was published Nov 7, 2024
Cross-Site Request Forgery (CSRF) vulnerability in JATOS v3.9.3 allows an attacker to reset the... High Unreviewed
CVE-2024-51382 was published Nov 5, 2024
Cross-Site Request Forgery (CSRF) vulnerability in JATOS v3.9.3 that allows attackers to perform... High Unreviewed
CVE-2024-51381 was published Nov 5, 2024
The WooCommerce Report plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... High Unreviewed
CVE-2024-10711 was published Nov 5, 2024
The Post From Frontend WordPress plugin through 1.0.0 does not have CSRF check when deleting... Moderate Unreviewed
CVE-2024-9689 was published Nov 5, 2024
LocalAI Cross-site Scripting vulnerability Low
CVE-2024-48057 was published for github.com/mudler/LocalAI (Go) Nov 5, 2024
A Cross-Site Request Forgery (CSRF) vulnerability in Chamilo LMS 1.11.26 "/main/social/home.php,"... Moderate Unreviewed
CVE-2024-30617 was published Nov 4, 2024
IBM CICS TX Standard 11.1 is vulnerable to cross-site request forgery which could allow an... Moderate Unreviewed
CVE-2024-41744 was published Nov 1, 2024
Broken Access Control vulnerability in Nickolas Bossinas WordPress File Upload allows Exploiting... Moderate Unreviewed
CVE-2024-39639 was published Nov 1, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database