GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,080
Erlang
29
GitHub Actions
19
Go
1,908
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
3,266 advisories
Filter by severity
Cross-site request forgery (CSRF) vulnerability in admin/admin_account.php in Skalinks 1.5 and...
Moderate
Unreviewed
CVE-2007-5917
was published
May 1, 2022
Cross-site request forgery (CSRF) vulnerability in edit.php in the MS TopSites add-on for PHP...
Moderate
Unreviewed
CVE-2007-5918
was published
May 1, 2022
** DISPUTED ** Cross-site request forgery (CSRF) vulnerability in the admin panel in Django 0.96...
Moderate
Unreviewed
CVE-2007-5828
was published
May 1, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in uddigui/navigateTree.do in the UDDI...
Moderate
Unreviewed
CVE-2007-5799
was published
May 1, 2022
Cross-site request forgery (CSRF) vulnerability in index.php in the File Manager module in...
Moderate
Unreviewed
CVE-2007-5773
was published
May 1, 2022
Drupal 5.x before 5.3 does not apply its Drupal Forms API protection against the user deletion...
Moderate
Unreviewed
CVE-2007-5594
was published
May 1, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in Simple PHP Blog (SPHPBlog) 0.4.9...
Moderate
Unreviewed
CVE-2007-5572
was published
May 1, 2022
Cross-site request forgery (CSRF) vulnerability in 1024 CMS 1.2.5 allows remote attackers to...
Moderate
Unreviewed
CVE-2007-5575
was published
May 1, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in the Thomson/Alcatel SpeedTouch 7G...
Moderate
Unreviewed
CVE-2007-5384
was published
May 1, 2022
Cross-site request forgery (CSRF) vulnerability in Ilient SysAid 4.5.03 and 4.5.04 allows remote...
Moderate
Unreviewed
CVE-2007-5259
was published
May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Helm 3.2.16 allow remote attackers to...
Moderate
Unreviewed
CVE-2007-5251
was published
May 1, 2022
Cross-site request forgery (CSRF) vulnerability in the FeedBurner FeedSmith 2.2 plugin for...
Moderate
Unreviewed
CVE-2007-5229
was published
May 1, 2022
Cross-site request forgery (CSRF) vulnerability in index.php in FlatNuke 2.6, and possibly 3,...
Moderate
Unreviewed
CVE-2007-5109
was published
May 1, 2022
Cross-site request forgery (CSRF) vulnerability in the cpass functionality in an admin action in...
Moderate
Unreviewed
CVE-2007-5060
was published
May 1, 2022
Cross-site request forgery (CSRF) vulnerability in admin.php in Francisco Burzi PHP-Nuke allows...
Moderate
Unreviewed
CVE-2007-5032
was published
May 1, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in the AXIS 207W camera allow remote...
Moderate
Unreviewed
CVE-2007-4930
was published
May 1, 2022
wp-admin/admin-functions.php in Wordpress before 2.2.3 and Wordpress multi-user (MU) before 1.2...
Moderate
Unreviewed
CVE-2007-4893
was published
May 1, 2022
Cross-site request forgery (CSRF) vulnerability in the device management interface in Buffalo...
Moderate
Unreviewed
CVE-2007-4822
was published
May 1, 2022
Apache Tomcat Example Application CSRF and XSS Vulnerabilities
Moderate
CVE-2007-4724
was published
for
org.apache.tomcat:tomcat
(Maven)
May 1, 2022
Cross-site scripting (XSS) vulnerability in wp-newblog.php in WordPress multi-user (MU) 1.0 and...
Moderate
Unreviewed
CVE-2007-4544
was published
May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Olate Download (od) 3.4.2 allow remote...
Moderate
Unreviewed
CVE-2007-4541
was published
May 1, 2022
Adobe Flash Player 8.0.34.0 and earlier insufficiently validates HTTP Referer headers, which...
Moderate
Unreviewed
CVE-2007-3457
was published
May 1, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in the administration of (1) polls, (2...
Moderate
Unreviewed
CVE-2007-3416
was published
May 1, 2022
Cross-site request forgery (CSRF) vulnerability in compose.php in SquirrelMail 1.4.0 through 1.4...
Moderate
Unreviewed
CVE-2007-2589
was published
May 1, 2022
The cross-site request forgery (CSRF) protection in PHP-Nuke 8.0 and earlier does not ensure the...
Moderate
Unreviewed
CVE-2007-1520
was published
May 1, 2022
ProTip!
Advisories are also available from the
GraphQL API