Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,049
Erlang
29
GitHub Actions
18
Go
1,871
Maven
5,000+
npm
3,597
NuGet
638
pip
3,198
Pub
10
RubyGems
852
Rust
809
Swift
35
Unreviewed advisories
All unreviewed
5,000+

5,948 advisories

The Tourfic plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up... Moderate Unreviewed
CVE-2024-8319 was published Aug 30, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Dinesh Karki WP Armour Extended.This issue... Moderate Unreviewed
CVE-2024-43947 was published Aug 29, 2024
A Cross-Site Request Forgery (CSRF) vulnerability was found in Kashipara Music Management System... Moderate Unreviewed
CVE-2024-42793 was published Aug 28, 2024
A cross-site request forgery (CSRF) vulnerability in the admin panel in SkySystem Arfa-CMS before... High Unreviewed
CVE-2024-45264 was published Aug 27, 2024
The Reviews Feed – Add Testimonials and Customer Reviews From Google Reviews, Yelp, TripAdvisor,... Moderate Unreviewed
CVE-2024-8200 was published Aug 27, 2024
The Visual Sound plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... Moderate Unreviewed
CVE-2024-8197 was published Aug 27, 2024
Cross-Site Request Forgery (CSRF) vulnerability in WPBackItUp Backup and Restore WordPress.This... Moderate Unreviewed
CVE-2024-43269 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Naiche Dark Mode for WP Dashboard.This issue... Moderate Unreviewed
CVE-2024-43325 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in bobbingwide.This issue affects oik: from n/a... Moderate Unreviewed
CVE-2024-43356 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Passionate Programmers B.V. WP Data Access... Moderate Unreviewed
CVE-2024-43295 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Softaculous Team SpeedyCache.This issue... Moderate Unreviewed
CVE-2024-43299 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Fonts Plugin Fonts allows Stored XSS.This... High Unreviewed
CVE-2024-43301 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in WP User Manager.This issue affects WP User... Moderate Unreviewed
CVE-2024-43336 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Checkout Plugins Stripe Payments For... Moderate Unreviewed
CVE-2024-43316 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Nasirahmed Advanced Form Integration.This... Moderate Unreviewed
CVE-2024-43340 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Brave Brave Popup Builder.This issue affects... Moderate Unreviewed
CVE-2024-43337 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in WebinarPress allows Cross-Site Scripting (XSS)... Moderate Unreviewed
CVE-2024-43339 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Themeum Tutor LMS.This issue affects Tutor LMS... Moderate Unreviewed
CVE-2024-39645 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in ThimPress LearnPress.This issue affects... Moderate Unreviewed
CVE-2024-39641 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in WPMU DEV Hummingbird.This issue affects... Moderate Unreviewed
CVE-2024-43117 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Sender Sender – Newsletter, SMS and Email... Moderate Unreviewed
CVE-2024-39657 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in 10up Simple Local Avatars.This issue affects... Moderate Unreviewed
CVE-2024-43116 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Brevo Newsletter, SMTP, Email marketing and... Moderate Unreviewed
CVE-2024-43287 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Stormhill Media MyBookTable Bookstore allows... High Unreviewed
CVE-2024-43255 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Saturday Drive Ninja Forms.This issue affects... Moderate Unreviewed
CVE-2024-39628 was published Aug 26, 2024
ProTip! Advisories are also available from the GraphQL API