GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
5,980 advisories
Filter by severity
Cross-Site Request Forgery (CSRF) vulnerability in Xyzscripts Insert PHP Code Snippet.This issue...
Moderate
Unreviewed
CVE-2024-43275
was published
Aug 15, 2024
The Insert PHP Code Snippet plugin for WordPress is vulnerable to Cross-Site Request Forgery in...
Moderate
Unreviewed
CVE-2024-7420
was published
Aug 15, 2024
Magento Open Source Cross-Site Request Forgery (CSRF) vulnerability
Moderate
CVE-2024-39410
was published
for
magento/community-edition
(Composer)
Aug 14, 2024
Magento Open Source Cross-Site Request Forgery (CSRF) vulnerability
Moderate
CVE-2024-39409
was published
for
magento/community-edition
(Composer)
Aug 14, 2024
Magento Open Source Cross-Site Request Forgery vulnerability
Moderate
CVE-2024-39408
was published
for
magento/community-edition
(Composer)
Aug 14, 2024
Cross-Site Request Forgery (CSRF), Improper Neutralization of Input During Web Page Generation ...
High
Unreviewed
CVE-2024-38724
was published
Aug 13, 2024
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42632
was published
Aug 12, 2024
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42631
was published
Aug 12, 2024
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42623
was published
Aug 12, 2024
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
Moderate
Unreviewed
CVE-2024-42629
was published
Aug 12, 2024
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42626
was published
Aug 12, 2024
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42630
was published
Aug 12, 2024
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42627
was published
Aug 12, 2024
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
Moderate
Unreviewed
CVE-2024-42625
was published
Aug 12, 2024
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42624
was published
Aug 12, 2024
FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-42628
was published
Aug 12, 2024
A vulnerability was found in SourceCodester Car Driving School Management System 1.0. It has been...
Moderate
Unreviewed
CVE-2024-7662
was published
Aug 12, 2024
A vulnerability was found in SourceCodester Car Driving School Management System 1.0. It has been...
Moderate
Unreviewed
CVE-2024-7661
was published
Aug 12, 2024
A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been...
Moderate
Unreviewed
CVE-2024-7645
was published
Aug 12, 2024
The Christmasify! plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up...
Moderate
Unreviewed
CVE-2024-7574
was published
Aug 12, 2024
A Cross-Site Request Forgery (CSRF) vulnerability was found in the Kashipara Live Membership...
High
Unreviewed
CVE-2024-40488
was published
Aug 12, 2024
A Cross-Site Request Forgery (CSRF) vulnerability was found in SourceCodester Best House Rental...
High
Unreviewed
CVE-2024-40476
was published
Aug 12, 2024
The MainWP Child Reports plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
High
Unreviewed
CVE-2024-7492
was published
Aug 8, 2024
The Light Poll WordPress plugin through 1.0.0 does not have CSRF checks in some places, which...
High
Unreviewed
CVE-2024-6720
was published
Aug 6, 2024
gotortc vulnerable to Cross-Site Request Forgery
High
CVE-2024-29192
was published
for
github.com/AlexxIT/go2rtc
(Go)
Aug 5, 2024
ProTip!
Advisories are also available from the
GraphQL API