Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,080
Erlang
29
GitHub Actions
19
Go
1,908
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+

3,266 advisories

Loading
Cross-site request forgery (CSRF) vulnerability in admin/admin_account.php in Skalinks 1.5 and... Moderate Unreviewed
CVE-2007-5917 was published May 1, 2022
Cross-site request forgery (CSRF) vulnerability in edit.php in the MS TopSites add-on for PHP... Moderate Unreviewed
CVE-2007-5918 was published May 1, 2022
** DISPUTED ** Cross-site request forgery (CSRF) vulnerability in the admin panel in Django 0.96... Moderate Unreviewed
CVE-2007-5828 was published May 1, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in uddigui/navigateTree.do in the UDDI... Moderate Unreviewed
CVE-2007-5799 was published May 1, 2022
Cross-site request forgery (CSRF) vulnerability in index.php in the File Manager module in... Moderate Unreviewed
CVE-2007-5773 was published May 1, 2022
Drupal 5.x before 5.3 does not apply its Drupal Forms API protection against the user deletion... Moderate Unreviewed
CVE-2007-5594 was published May 1, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in Simple PHP Blog (SPHPBlog) 0.4.9... Moderate Unreviewed
CVE-2007-5572 was published May 1, 2022
Cross-site request forgery (CSRF) vulnerability in 1024 CMS 1.2.5 allows remote attackers to... Moderate Unreviewed
CVE-2007-5575 was published May 1, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in the Thomson/Alcatel SpeedTouch 7G... Moderate Unreviewed
CVE-2007-5384 was published May 1, 2022
Cross-site request forgery (CSRF) vulnerability in Ilient SysAid 4.5.03 and 4.5.04 allows remote... Moderate Unreviewed
CVE-2007-5259 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Helm 3.2.16 allow remote attackers to... Moderate Unreviewed
CVE-2007-5251 was published May 1, 2022
Cross-site request forgery (CSRF) vulnerability in the FeedBurner FeedSmith 2.2 plugin for... Moderate Unreviewed
CVE-2007-5229 was published May 1, 2022
Cross-site request forgery (CSRF) vulnerability in index.php in FlatNuke 2.6, and possibly 3,... Moderate Unreviewed
CVE-2007-5109 was published May 1, 2022
Cross-site request forgery (CSRF) vulnerability in the cpass functionality in an admin action in... Moderate Unreviewed
CVE-2007-5060 was published May 1, 2022
Cross-site request forgery (CSRF) vulnerability in admin.php in Francisco Burzi PHP-Nuke allows... Moderate Unreviewed
CVE-2007-5032 was published May 1, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in the AXIS 207W camera allow remote... Moderate Unreviewed
CVE-2007-4930 was published May 1, 2022
wp-admin/admin-functions.php in Wordpress before 2.2.3 and Wordpress multi-user (MU) before 1.2... Moderate Unreviewed
CVE-2007-4893 was published May 1, 2022
Cross-site request forgery (CSRF) vulnerability in the device management interface in Buffalo... Moderate Unreviewed
CVE-2007-4822 was published May 1, 2022
Apache Tomcat Example Application CSRF and XSS Vulnerabilities Moderate
CVE-2007-4724 was published for org.apache.tomcat:tomcat (Maven) May 1, 2022
Cross-site scripting (XSS) vulnerability in wp-newblog.php in WordPress multi-user (MU) 1.0 and... Moderate Unreviewed
CVE-2007-4544 was published May 1, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Olate Download (od) 3.4.2 allow remote... Moderate Unreviewed
CVE-2007-4541 was published May 1, 2022
Adobe Flash Player 8.0.34.0 and earlier insufficiently validates HTTP Referer headers, which... Moderate Unreviewed
CVE-2007-3457 was published May 1, 2022
Multiple cross-site request forgery (CSRF) vulnerabilities in the administration of (1) polls, (2... Moderate Unreviewed
CVE-2007-3416 was published May 1, 2022
Cross-site request forgery (CSRF) vulnerability in compose.php in SquirrelMail 1.4.0 through 1.4... Moderate Unreviewed
CVE-2007-2589 was published May 1, 2022
The cross-site request forgery (CSRF) protection in PHP-Nuke 8.0 and earlier does not ensure the... Moderate Unreviewed
CVE-2007-1520 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database