Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,601 advisories

Loading
The Stream plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to... High Unreviewed
CVE-2024-7423 was published Sep 13, 2024
Apache Airflow vulnerable to CSRF Attacks High
CVE-2019-0229 was published for apache-airflow (pip) Apr 18, 2019
Cross-Site Request Forgery (CSRF) in Apache Airflow High
CVE-2017-17835 was published for apache-airflow (pip) Jan 25, 2019
sunSUNQ
Cross-site Request Forgery (CSRF) in Cloud Native Computing Foundation Harbor High
CVE-2019-19025 was published for github.com/goharbor/harbor (Go) May 18, 2021
A Cross-Site Request Forgery (CSRF) in the component admin_modify_room.php of Hotel Management... High Unreviewed
CVE-2024-42557 was published Aug 20, 2024
Cross-site Request Forgery (CSRF) vulnerability in Lychee version 3.1.6, allows remote attackers... High Unreviewed
CVE-2024-25808 was published Mar 22, 2024
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /src... High Unreviewed
CVE-2024-30965 was published Apr 2, 2024
Cross Site Request Forgery vulnerability in FlyCms v.1.0 allows a remote attacker to execute... High Unreviewed
CVE-2024-22939 was published Feb 29, 2024
A cross-site request forgery (CSRF) vulnerability in the admin panel in SkySystem Arfa-CMS before... High Unreviewed
CVE-2024-45264 was published Aug 27, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Fonts Plugin Fonts allows Stored XSS.This... High Unreviewed
CVE-2024-43301 was published Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Stormhill Media MyBookTable Bookstore allows... High Unreviewed
CVE-2024-43255 was published Aug 26, 2024
Cross Site Request Forgery vulnerability in flusity-CMS v.2.33 allows a remote attacker to... High Unreviewed
CVE-2024-24469 was published Feb 5, 2024
Cross-site request forgery vulnerability exists in ELECOM wireless LAN routers. Viewing a... High Unreviewed
CVE-2024-40883 was published Aug 1, 2024
Leantime 3.0.6 is vulnerable to Cross Site Request Forgery (CSRF). This vulnerability allows... High Unreviewed
CVE-2024-27474 was published Apr 10, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42608 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42612 was published Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component add_group.php of Warehouse Inventory System... High Unreviewed
CVE-2024-42579 was published Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component add_product.php of Warehouse Inventory... High Unreviewed
CVE-2024-42577 was published Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component delete_product.php of Warehouse Inventory... High Unreviewed
CVE-2024-42584 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42616 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42604 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42609 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42610 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42621 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42607 was published Aug 20, 2024
ProTip! Advisories are also available from the GraphQL API