GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,618 advisories
Filter by severity
Cross-Site request forgery in Checkmk < 2.3.0p8, < 2.2.0p29, < 2.1.0p45, and <= 2.0.0p39 (EOL)...
High
Unreviewed
CVE-2024-28828
was published
Jul 10, 2024
Insecure handling of GET header parameter file included in requests being sent to an instance of...
High
Unreviewed
CVE-2024-3798
was published
Jul 10, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-40039
was published
Jul 9, 2024
Lime Survey <= 6.5.12 is vulnerable to Cross Site Request Forgery (CSRF). The YII_CSRF_TOKEN is...
High
Unreviewed
CVE-2024-39063
was published
Jul 9, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-40034
was published
Jul 9, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-40037
was published
Jul 9, 2024
Multiple cross-site request forgery (CSRF) vulnerabilities [CWE-352] in FortiAIOps version 2.0.0...
High
Unreviewed
CVE-2024-27783
was published
Jul 9, 2024
A cross-site request forgery (csrf) vulnerability exists in the boa CSRF protection functionality...
High
Unreviewed
CVE-2023-47677
was published
Jul 8, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via...
High
Unreviewed
CVE-2024-39023
was published
Jul 5, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via ...
High
Unreviewed
CVE-2024-39022
was published
Jul 5, 2024
The Nested Pages plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions...
High
Unreviewed
CVE-2024-5943
was published
Jul 4, 2024
Cross-Site Request Forgery (CSRF) in stitionai/devika
High
Unreviewed
CVE-2024-5887
was published
Jul 3, 2024
The WPQA Builder WordPress plugin before 6.1.1 does not have CSRF checks in some places, which...
High
Unreviewed
CVE-2024-2376
was published
Jul 3, 2024
The sitetweet WordPress plugin through 0.2 does not have CSRF check in some places, and is...
High
Unreviewed
CVE-2024-5767
was published
Jul 2, 2024
Cross Site Request Forgery (CSRF) vulnerability in savignano S/Notify before 4.0.2 for Confluence...
High
Unreviewed
CVE-2024-23736
was published
Jul 2, 2024
Cross-Site Request Forgery (CSRF) in stitionai/devika
High
Unreviewed
CVE-2024-5712
was published
Jun 29, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ...
High
Unreviewed
CVE-2024-39154
was published
Jun 27, 2024
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component ...
High
Unreviewed
CVE-2024-39158
was published
Jun 27, 2024
A Cross-Site Request Forgery (CSRF) vulnerability exists in the XTTS server of parisneo/lollms...
High
Unreviewed
CVE-2024-4499
was published
Jun 24, 2024
The UberMenu plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up...
High
Unreviewed
CVE-2024-3593
was published
Jun 22, 2024
Cross-Site Request Forgery (CSRF) vulnerability in Ali2Woo Ali2Woo Lite.This issue affects...
High
Unreviewed
CVE-2024-37212
was published
Jun 21, 2024
The WP STAGING Pro WordPress Backup Plugin plugin for WordPress is vulnerable to Cross-Site...
High
Unreviewed
CVE-2024-5551
was published
Jun 14, 2024
ALCASAR before 3.6.1 allows CSRF and remote code execution in activity.php.
High
Unreviewed
CVE-2024-38293
was published
Jun 13, 2024
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ...
High
Unreviewed
CVE-2024-35207
was published
Jun 11, 2024
ProTip!
Advisories are also available from the
GraphQL API