GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
5,288 advisories
Filter by severity
Cross-Site Request Forgery (CSRF) vulnerability in ThimPress LearnPress.This issue affects...
Moderate
Unreviewed
CVE-2024-39641
was published
Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Saturday Drive Ninja Forms.This issue affects...
Moderate
Unreviewed
CVE-2024-39628
was published
Aug 26, 2024
Cross-Site Request Forgery (CSRF) vulnerability in 10up Simple Local Avatars.This issue affects...
Moderate
Unreviewed
CVE-2024-43116
was published
Aug 26, 2024
A Cross-Site Request Forgery (CSRF) vulnerability was found in Kashipara Music Management System...
Low
Unreviewed
CVE-2024-42792
was published
Aug 26, 2024
The Favicon Generator plugin for WordPress is vulnerable to Cross-Site Request Forgery in...
Critical
Unreviewed
CVE-2024-7568
was published
Aug 24, 2024
The ImageRecycle pdf & image compression plugin for WordPress is vulnerable to Cross-Site Request...
Moderate
Unreviewed
CVE-2024-8120
was published
Aug 24, 2024
Kashipara Bus Ticket Reservation System v1.0 is vulnerable to Cross Site Request Forgery (CSRF)...
Critical
Unreviewed
CVE-2024-42764
was published
Aug 23, 2024
A Cross-Site Request Forgery (CSRF) vulnerability was found in Kashipara Hotel Management System...
Moderate
Unreviewed
CVE-2024-42768
was published
Aug 22, 2024
IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 is vulnerable to cross-site...
Moderate
Unreviewed
CVE-2024-39744
was published
Aug 22, 2024
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)...
Moderate
Unreviewed
CVE-2024-20486
was published
Aug 21, 2024
The OTA Sync Booking Engine Widget plugin for WordPress is vulnerable to Cross-Site Request...
Moderate
Unreviewed
CVE-2024-7647
was published
Aug 21, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42619
was published
Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42612
was published
Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component add_product.php of Warehouse Inventory...
High
Unreviewed
CVE-2024-42577
was published
Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component delete_product.php of Warehouse Inventory...
High
Unreviewed
CVE-2024-42584
was published
Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42616
was published
Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42608
was published
Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component edit_group.php of Warehouse Inventory System...
Moderate
Unreviewed
CVE-2024-42580
was published
Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component delete_categorie.php of Warehouse Inventory...
High
Unreviewed
CVE-2024-42582
was published
Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component add_group.php of Warehouse Inventory System...
High
Unreviewed
CVE-2024-42579
was published
Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42617
was published
Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin...
High
Unreviewed
CVE-2024-42611
was published
Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component delete_user.php of Warehouse Inventory...
High
Unreviewed
CVE-2024-42583
was published
Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42604
was published
Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
Moderate
Unreviewed
CVE-2024-42606
was published
Aug 20, 2024
ProTip!
Advisories are also available from the
GraphQL API