GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,741
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+
3,423 advisories
Filter by severity
A vulnerability has been found in PHPGurukul Blood Bank & Donor Management System 2.4 and...
Moderate
Unreviewed
CVE-2024-12955
was published
Dec 26, 2024
The Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WP Legal Pages...
Moderate
Unreviewed
CVE-2024-12636
was published
Dec 25, 2024
The Reactflow Visitor Recording and Heatmaps plugin for WordPress is vulnerable to Cross-Site...
Moderate
Unreviewed
CVE-2024-11975
was published
Dec 21, 2024
The Wtyczka SeoPilot dla WP plugin for WordPress is vulnerable to Cross-Site Request Forgery in...
Moderate
Unreviewed
CVE-2024-11812
was published
Dec 20, 2024
A privacy issue was addressed with improved private data redaction for log entries. This issue is...
Moderate
Unreviewed
CVE-2024-44293
was published
Dec 20, 2024
Atro CSRF Middleware Bypass (security.checkOrigin)
Moderate
CVE-2024-56140
was published
for
astro
(npm)
Dec 18, 2024
The Affiliate Program Suite — SliceWP Affiliates plugin for WordPress is vulnerable to Cross-Site...
Moderate
Unreviewed
CVE-2024-12454
was published
Dec 18, 2024
The Peter’s Custom Anti-Spam plugin for WordPress is vulnerable to Cross-Site Request Forgery in...
Moderate
Unreviewed
CVE-2024-12554
was published
Dec 18, 2024
The SMS for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
Moderate
Unreviewed
CVE-2024-12220
was published
Dec 17, 2024
The Stop Registration Spam plugin for WordPress is vulnerable to Cross-Site Request Forgery in...
Moderate
Unreviewed
CVE-2024-12219
was published
Dec 17, 2024
Cross-Site Request Forgery (CSRF) vulnerability in ThemeFusion Avada.This issue affects Avada:...
Moderate
Unreviewed
CVE-2024-54357
was published
Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Posti Posti Shipping allows Cross Site Request...
Moderate
Unreviewed
CVE-2024-56005
was published
Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Jake H. Youtube Video Grid allows Exploiting...
Moderate
Unreviewed
CVE-2024-54408
was published
Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Ryan Bet sport Free allows Cross Site Request...
Moderate
Unreviewed
CVE-2024-54396
was published
Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Diversified Technology Corp., WPYog, and Gagan...
Moderate
Unreviewed
CVE-2024-54418
was published
Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Mansur Ahamed Ui Slider Filter By Price allows...
Moderate
Unreviewed
CVE-2024-54419
was published
Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Bastien Ho EELV Newsletter allows Cross Site...
Moderate
Unreviewed
CVE-2024-54430
was published
Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in WPENGINE, INC. Advanced Custom Fields PRO.This...
Moderate
Unreviewed
CVE-2024-37251
was published
Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in vCita.com Online Booking & Scheduling Calendar...
Moderate
Unreviewed
CVE-2024-54356
was published
Dec 16, 2024
Cross-Site Request Forgery (CSRF) vulnerability in brandtoss WP Mailster allows Cross Site...
Moderate
Unreviewed
CVE-2024-54355
was published
Dec 16, 2024
The SIP Calculator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
Moderate
Unreviewed
CVE-2024-12555
was published
Dec 14, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Neuralabz LTD. AutoWP allows Cross Site...
Moderate
Unreviewed
CVE-2024-54300
was published
Dec 13, 2024
Cross-Site Request Forgery (CSRF) vulnerability in KCT AIKCT Engine Chatbot, ChatGPT, Gemini, GPT...
Moderate
Unreviewed
CVE-2024-54306
was published
Dec 13, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Hive Support Hive Support – WordPress Help...
Moderate
Unreviewed
CVE-2024-54321
was published
Dec 13, 2024
Cross-Site Request Forgery (CSRF) vulnerability in AIpost AIcomments allows Cross Site Request...
Moderate
Unreviewed
CVE-2024-54307
was published
Dec 13, 2024
ProTip!
Advisories are also available from the
GraphQL API