GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,004
Composer 4,056
Erlang 29
GitHub Actions 19
Go 1,889
Maven 5,081
npm 3,618
NuGet 638
pip 3,231
Pub 10
RubyGems 854
Rust 817
Swift 35

Unreviewed advisories

All unreviewed 227,924

CC-BY-4.0 License

Language support

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,252 advisories

Filter by severity

Sort by

Least recently updated

Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks. Integration for Contact Form 7 and... Moderate Unreviewed

CVE-2024-35632 was published Jun 3, 2024

Cross-Site Request Forgery (CSRF) vulnerability in JumpDEMAND Inc. ActiveDEMAND.This issue... Moderate Unreviewed

CVE-2024-35638 was published Jun 3, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Uploadcare Uploadcare File Uploader and... Moderate Unreviewed

CVE-2024-35636 was published Jun 1, 2024

Moodle Logout CSRF in admin/tool/mfa/auth.php Moderate

CVE-2024-34007 was published for moodle/moodle (Composer) May 31, 2024

Sylius Resource Bundle Cross-Site Request Forgery vulnerability Moderate

GHSA-65v7-wg35-2qpm was published for sylius/resource-bundle (Composer) May 29, 2024

Silverstripe Missing CSRF protection in login form Moderate

GHSA-vj2j-6g3w-4662 was published for silverstripe/framework (Composer) May 23, 2024

Silverstripe CSRF vulnerability in GridFieldAddExistingAutocompleter Moderate

GHSA-2hpc-mf4q-j885 was published for silverstripe/framework (Composer) May 23, 2024

Silverstripe Forum Module CSRF Vulnerability Moderate

GHSA-w8fq-xgvh-cxc2 was published for silverstripe/forum (Composer) May 23, 2024

A CSRF vulnerability exists within GitLab CE/EE from versions 13.11 before 16.10.6, from 16.11... Moderate Unreviewed

CVE-2023-7045 was published May 23, 2024

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ... Moderate Unreviewed

CVE-2024-35561 was published May 22, 2024

A Cross-Site Request Forgery (CSRF) vulnerability was discovered in OpenKM Community Edition on... Moderate Unreviewed

CVE-2024-35475 was published May 22, 2024

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ... Moderate Unreviewed

CVE-2024-35555 was published May 22, 2024

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ... Moderate Unreviewed

CVE-2024-35557 was published May 22, 2024

sensiolabs/connect has a Cross-Site Request Forgery Vulnerability Moderate

GHSA-6wqp-7g94-f69j was published for sensiolabs/connect (Composer) May 21, 2024

Gradio applications running locally vulnerable to 3rd party websites accessing routes and uploading files Moderate

CVE-2024-1727 was published for gradio (pip) May 21, 2024

A vulnerability, which was classified as problematic, was found in SourceCodester Simple... Moderate Unreviewed

CVE-2024-5097 was published May 19, 2024

Cross-Site Request Forgery (CSRF) on Session Token vulnerability that could potentially lead to... Moderate Unreviewed

CVE-2024-23554 was published May 18, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Creative Motion Clearfy Cache.This issue... Moderate Unreviewed

CVE-2024-34806 was published May 17, 2024

Cross-Site Request Forgery (CSRF) vulnerability in CodeBard Fast Custom Social Share by CodeBard... Moderate Unreviewed

CVE-2024-34807 was published May 17, 2024

Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks Integration for Contact Form 7... Moderate Unreviewed

CVE-2024-34756 was published May 17, 2024

Cross-Site Request Forgery (CSRF) vulnerability in Extend Themes EmpowerWP.This issue affects... Moderate Unreviewed

CVE-2024-34809 was published May 17, 2024

Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks Integration for Contact Form 7 and... Moderate Unreviewed

CVE-2024-34755 was published May 17, 2024

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component... Moderate Unreviewed

CVE-2024-34958 was published May 16, 2024

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component... Moderate Unreviewed

CVE-2024-34957 was published May 16, 2024

A vulnerability classified as problematic has been found in SourceCodester Simple Online Bidding... Moderate Unreviewed

CVE-2024-4929 was published May 16, 2024

Previous 1 2 … 5 6 7 8 9 … 130 131 Next

ProTip! Advisories are also available from the GraphQL API

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,252 advisories