Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,972
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,983
npm
3,518
NuGet
609
pip
3,094
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,196 advisories

Loading
A cross-site request forgery vulnerability has been identified in LoadMaster.  It is possible for... High Unreviewed
CVE-2024-2449 was published Mar 22, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Optimole Super Page Cache for Cloudflare... High Unreviewed
CVE-2024-27968 was published Mar 21, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Andrei Ivasiuc Fontific | Google Fonts allows... High Unreviewed
CVE-2024-27194 was published Mar 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Sandi Verdev Watermark RELOADED allows Stored... High Unreviewed
CVE-2024-27195 was published Mar 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Pixelemu TerraClassifieds.This issue affects... High Unreviewed
CVE-2023-51474 was published Mar 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Bee BeePress allows Stored XSS.This issue... High Unreviewed
CVE-2024-27197 was published Mar 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Ernest Marcinko Ajax Search Lite allows... High Unreviewed
CVE-2024-21752 was published Feb 29, 2024
Cross-Site Request Forgery vulnerability in SMA Cluster Controller, affecting version 01.05.01.R.... High Unreviewed
CVE-2024-1889 was published Feb 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in PowerPack Addons for Elementor PowerPack Pro... High Unreviewed
CVE-2024-24843 was published Feb 21, 2024
flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component... High Unreviewed
CVE-2024-25419 was published Feb 11, 2024
flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component... High Unreviewed
CVE-2024-25417 was published Feb 11, 2024
flusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component... High Unreviewed
CVE-2024-25418 was published Feb 11, 2024
Multiple Cross-Site Request Forgery (CSRF) chaining in NCR Terminal Handler v.1.5.1 allows... High Unreviewed
CVE-2023-47020 was published Feb 8, 2024
A vulnerability in the SOAP API of Cisco Expressway Series and Cisco TelePresence Video... High Unreviewed
CVE-2024-20255 was published Feb 7, 2024
The cross-site request forgery token in the request may be predictable or easily... High Unreviewed
CVE-2023-38579 was published Feb 7, 2024
The Index Now plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up... High Unreviewed
CVE-2024-0428 was published Feb 6, 2024
Cross Site Request Forgery vulnerability in flusity-CMS v.2.33 allows a remote attacker to... High Unreviewed
CVE-2024-24469 was published Feb 5, 2024
Cross Site Request Forgery vulnerability in flusity-CMS v.2.33 allows a remote attacker to... High Unreviewed
CVE-2024-24468 was published Feb 5, 2024
Cross Site Request Forgery vulnerability in flusity-CMS v.2.33 allows a remote attacker to... High Unreviewed
CVE-2024-24470 was published Feb 2, 2024
Cross-Site Request Forgery (CSRF) vulnerability in National Keep Cyber Security Services... High Unreviewed
CVE-2023-6676 was published Feb 2, 2024
Cross Site Request Forgery (CSRF) vulnerability in flusity-CMS v.2.33, allows remote attackers to... High Unreviewed
CVE-2024-24524 was published Feb 2, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Cozmoslabs Profile Builder Pro.This issue... High Unreviewed
CVE-2024-22140 was published Jan 31, 2024
Cross-Site Request Forgery (CSRF) vulnerability in AboZain,O7abeeb,UnitOne Custom Dashboard... High Unreviewed
CVE-2024-22290 was published Jan 31, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Luděk Melichar Better Anchor Links allows... High Unreviewed
CVE-2024-22287 was published Jan 31, 2024
The WP SOCIAL BOOKMARK MENU WordPress plugin through 1.2 does not have CSRF check in place when... High Unreviewed
CVE-2023-7074 was published Jan 29, 2024
ProTip! Advisories are also available from the GraphQL API