GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,985
Erlang
29
GitHub Actions
16
Go
1,771
Maven
4,995
npm
3,541
NuGet
617
pip
3,120
Pub
10
RubyGems
838
Rust
788
Swift
34
Unreviewed advisories
All unreviewed
5,000+
3,137 advisories
Filter by severity
A Cross-Site Request Forgery vulnerability in GitHub Enterprise Server allowed write operations...
Moderate
Unreviewed
CVE-2024-5815
was published
Jul 17, 2024
Cross-Site Request Forgery (CSRF) vulnerability in VolThemes Patricia Lite.This issue affects...
Moderate
Unreviewed
CVE-2024-37939
was published
Jul 12, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Internal Link Juicer Internal Link Juicer: SEO...
Moderate
Unreviewed
CVE-2024-37941
was published
Jul 12, 2024
Cross-Site Request Forgery (CSRF) vulnerability in MyThemeShop SociallyViral.This issue affects...
Moderate
Unreviewed
CVE-2024-37938
was published
Jul 12, 2024
A vulnerability has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1...
Moderate
Unreviewed
CVE-2024-6649
was published
Jul 10, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
Moderate
Unreviewed
CVE-2024-40328
was published
Jul 10, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
Moderate
Unreviewed
CVE-2024-40038
was published
Jul 9, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
Moderate
Unreviewed
CVE-2024-40035
was published
Jul 9, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Cliengo – Chatbot.This issue affects Cliengo –...
Moderate
Unreviewed
CVE-2024-37923
was published
Jul 9, 2024
An issue was discovered in the ArticleRatings extension for MediaWiki through 1.42.1. Special...
Moderate
Unreviewed
CVE-2024-40603
was published
Jul 7, 2024
An issue was discovered in the MediaWikiChat extension for MediaWiki through 1.42.1. CSRF can...
Moderate
Unreviewed
CVE-2024-40601
was published
Jul 7, 2024
A Cross-Site Request Forgery (CSRF) vulnerability exists in mudler/LocalAI versions up to and...
Moderate
Unreviewed
CVE-2024-5616
was published
Jul 6, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
Moderate
Unreviewed
CVE-2024-39020
was published
Jul 5, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
Moderate
Unreviewed
CVE-2024-39019
was published
Jul 5, 2024
Cross Site Request Forgery vulnerability in Eskooly Free Online School Management Software v.3.0...
Moderate
Unreviewed
CVE-2024-27717
was published
Jul 5, 2024
The Himer WordPress theme before 2.1.1 does not have CSRF checks in some places, which could...
Moderate
Unreviewed
CVE-2024-2235
was published
Jul 3, 2024
The Himer WordPress theme before 2.1.1 does not have CSRF checks in some places, which could...
Moderate
Unreviewed
CVE-2024-2233
was published
Jul 3, 2024
The Snippet Shortcodes plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
Moderate
Unreviewed
CVE-2024-4543
was published
Jul 3, 2024
The Himer WordPress theme before 2.1.1 does not have CSRF checks in some places, which could...
Moderate
Unreviewed
CVE-2024-2040
was published
Jul 3, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/info_deal...
Moderate
Unreviewed
CVE-2024-39119
was published
Jul 2, 2024
IBM InfoSphere Information Server 11.7 is vulnerable to cross-site request forgery which could...
Moderate
Unreviewed
CVE-2024-31902
was published
Jun 30, 2024
A Cross-Site Request Forgery (CSRF) vulnerability in version 0.5.0 of imartinez/privategpt allows...
Moderate
Unreviewed
CVE-2024-5935
was published
Jun 27, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ...
Moderate
Unreviewed
CVE-2024-39153
was published
Jun 27, 2024
TruDesk Help Desk/Ticketing Solution v1.1.11 is vulnerable to a Cross-Site Request Forgery (CSRF)...
Moderate
Unreviewed
CVE-2021-45785
was published
Jun 24, 2024
A Cross-Site Request Forgery (CSRF) vulnerability exists in the 'Servers Configurations' function...
Moderate
Unreviewed
CVE-2024-4839
was published
Jun 24, 2024
ProTip!
Advisories are also available from the
GraphQL API