GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,990 advisories
Filter by severity
The Featured Posts Scroll plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
Moderate
Unreviewed
CVE-2024-10922
was published
Nov 7, 2024
The Post From Frontend WordPress plugin through 1.0.0 does not have CSRF check when deleting...
Moderate
Unreviewed
CVE-2024-9689
was published
Nov 5, 2024
A Cross-Site Request Forgery (CSRF) vulnerability in Chamilo LMS 1.11.26 "/main/social/home.php,"...
Moderate
Unreviewed
CVE-2024-30617
was published
Nov 4, 2024
IBM CICS TX Standard 11.1 is vulnerable to cross-site request forgery which could allow an...
Moderate
Unreviewed
CVE-2024-41744
was published
Nov 1, 2024
A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been...
Moderate
Unreviewed
CVE-2024-10605
was published
Nov 1, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Smash Balloon Custom Twitter Feeds (Tweets...
Moderate
Unreviewed
CVE-2024-49685
was published
Oct 31, 2024
Cross-Site Request Forgery (CSRF) vulnerability in eyecix JobSearch allows Cross Site Request...
Moderate
Unreviewed
CVE-2024-43930
was published
Oct 31, 2024
Cross-Site Request Forgery (CSRF) vulnerability in WPMobile.App allows Stored XSS.This issue...
Moderate
Unreviewed
CVE-2024-43933
was published
Oct 31, 2024
The WPGlobus Translate Options plugin for WordPress is vulnerable to Cross-Site Request Forgery...
Moderate
Unreviewed
CVE-2024-9434
was published
Oct 31, 2024
A vulnerability has been found in code-projects Blood Bank Management System 1.0 and classified...
Moderate
Unreviewed
CVE-2024-10557
was published
Oct 31, 2024
Cross-Site Request Forgery (CSRF) vulnerability in DarkMySite DarkMySite – Advanced Dark Mode...
Moderate
Unreviewed
CVE-2024-50466
was published
Oct 29, 2024
A Cross-Site Request Forgery (CSRF) vulnerability exists in the `install_comfyui` endpoint of the...
Moderate
Unreviewed
CVE-2024-6673
was published
Oct 29, 2024
A vulnerability, which was classified as problematic, has been found in code-projects Blood Bank...
Moderate
Unreviewed
CVE-2024-10448
was published
Oct 28, 2024
dingfanzu CMS 1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component...
Moderate
Unreviewed
CVE-2024-48191
was published
Oct 28, 2024
dingfanzu CMS 1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via /admin...
Moderate
Unreviewed
CVE-2024-48291
was published
Oct 28, 2024
The MultiVendorX – The Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress...
Moderate
Unreviewed
CVE-2024-9943
was published
Oct 24, 2024
The Transients Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
Moderate
Unreviewed
CVE-2024-10045
was published
Oct 23, 2024
The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Cross-Site Request...
Moderate
Unreviewed
CVE-2024-9588
was published
Oct 22, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Latepoint LatePoint allows Cross Site Request...
Moderate
Unreviewed
CVE-2024-43945
was published
Oct 21, 2024
Cross-Site Request Forgery (CSRF) vulnerability in WP-buy WP Content Copy Protection & No Right...
Moderate
Unreviewed
CVE-2024-49306
was published
Oct 20, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Infomaniak Staff VOD Infomaniak allows Cross...
Moderate
Unreviewed
CVE-2024-49274
was published
Oct 20, 2024
Cross-Site Request Forgery (CSRF) vulnerability in WPWeb Social Auto Poster allows Cross Site...
Moderate
Unreviewed
CVE-2024-49272
was published
Oct 20, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Martin Gibson IdeaPush allows Cross Site...
Moderate
Unreviewed
CVE-2024-49275
was published
Oct 20, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Noor Alam WordPress Image SEO allows Cross...
Moderate
Unreviewed
CVE-2024-49627
was published
Oct 20, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Gora Tech LLC Cooked Pro allows Cross Site...
Moderate
Unreviewed
CVE-2024-49290
was published
Oct 20, 2024
ProTip!
Advisories are also available from the
GraphQL API