GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
5,288 advisories
Filter by severity
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42607
was published
Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
Moderate
Unreviewed
CVE-2024-42603
was published
Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42605
was published
Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42613
was published
Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42618
was published
Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component add_product.php of Warehouse Inventory...
High
Unreviewed
CVE-2024-42577
was published
Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component delete_product.php of Warehouse Inventory...
High
Unreviewed
CVE-2024-42584
was published
Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42616
was published
Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42608
was published
Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component delete_media.php of Warehouse Inventory...
High
Unreviewed
CVE-2024-42585
was published
Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component categorie.php of Warehouse Inventory System...
High
Unreviewed
CVE-2024-42586
was published
Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component edit_categorie.php of Warehouse Inventory...
High
Unreviewed
CVE-2024-42576
was published
Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component edit_product.php of Warehouse Inventory...
High
Unreviewed
CVE-2024-42578
was published
Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component admin_modify_room.php of Hotel Management...
High
Unreviewed
CVE-2024-42557
was published
Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component admin_room_removed.php of Hotel Management...
High
Unreviewed
CVE-2024-42555
was published
Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component admin_room_added.php of Hotel Management...
High
Unreviewed
CVE-2024-42553
was published
Aug 20, 2024
The BP Profile Search plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
Moderate
Unreviewed
CVE-2024-7850
was published
Aug 20, 2024
The Bricks theme for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and...
Moderate
Unreviewed
CVE-2023-3408
was published
Aug 17, 2024
The Bricks theme for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and...
Moderate
Unreviewed
CVE-2023-3409
was published
Aug 17, 2024
The Short URL plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to,...
Moderate
Unreviewed
CVE-2023-1604
was published
Aug 17, 2024
The Download Plugins and Themes in ZIP from Dashboard plugin for WordPress is vulnerable to Cross...
Moderate
Unreviewed
CVE-2024-7501
was published
Aug 16, 2024
The Theme My Login plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
Moderate
Unreviewed
CVE-2024-7422
was published
Aug 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Xyzscripts Insert PHP Code Snippet.This issue...
Moderate
Unreviewed
CVE-2024-43275
was published
Aug 15, 2024
The Insert PHP Code Snippet plugin for WordPress is vulnerable to Cross-Site Request Forgery in...
Moderate
Unreviewed
CVE-2024-7420
was published
Aug 15, 2024
Cross-Site Request Forgery (CSRF), Improper Neutralization of Input During Web Page Generation ...
High
Unreviewed
CVE-2024-38724
was published
Aug 13, 2024
ProTip!
Advisories are also available from the
GraphQL API