Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

6,012 advisories

Loading
A Cross-Site Request Forgery (CSRF) in the component delete_product.php of Warehouse Inventory... High Unreviewed
CVE-2024-42584 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42605 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42604 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42609 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42616 was published Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component delete_categorie.php of Warehouse Inventory... High Unreviewed
CVE-2024-42582 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42608 was published Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component delete_user.php of Warehouse Inventory... High Unreviewed
CVE-2024-42583 was published Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component add_group.php of Warehouse Inventory System... High Unreviewed
CVE-2024-42579 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42607 was published Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component delete_group.php of Warehouse Inventory... Critical Unreviewed
CVE-2024-42581 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42613 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42610 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin... High Unreviewed
CVE-2024-42611 was published Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component delete_media.php of Warehouse Inventory... High Unreviewed
CVE-2024-42585 was published Aug 20, 2024
A Cross-Site Request Forgery (CSRF) in the component edit_product.php of Warehouse Inventory... High Unreviewed
CVE-2024-42578 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42612 was published Aug 20, 2024
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ... High Unreviewed
CVE-2024-42619 was published Aug 20, 2024
The OTA Sync Booking Engine Widget plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed
CVE-2024-7647 was published Aug 21, 2024
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE)... Moderate Unreviewed
CVE-2024-20486 was published Aug 21, 2024
Mattermost Cross-Site Request Forgery vulnerability Moderate
CVE-2024-40886 was published for github.com/mattermost/mattermost/server/v8 (Go) Aug 22, 2024
IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 is vulnerable to cross-site... Moderate Unreviewed
CVE-2024-39744 was published Aug 22, 2024
Hono CSRF middleware can be bypassed using crafted Content-Type header Moderate
CVE-2024-43787 was published for hono (npm) Aug 22, 2024
wataru-chocola
A Cross-Site Request Forgery (CSRF) vulnerability was found in Kashipara Hotel Management System... Moderate Unreviewed
CVE-2024-42768 was published Aug 22, 2024
Kashipara Bus Ticket Reservation System v1.0 is vulnerable to Cross Site Request Forgery (CSRF)... Critical Unreviewed
CVE-2024-42764 was published Aug 23, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database