GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,265
Composer 4,633
Erlang 34
GitHub Actions 25
Go 2,241
Maven 5,485
npm 3,902
NuGet 701
pip 3,669
Pub 12
RubyGems 914
Rust 943
Swift 38

Unreviewed advisories

All unreviewed 252,804

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

7,334 advisories

Filter by severity

Sort by

Least recently updated

Volmarg Personal Management System 1.4.65 is vulnerable to Cross Site Request Forgery (CSRF)... Moderate Unreviewed

CVE-2025-28355 was published Apr 18, 2025

An arbitrary file deletion vulnerability in the /post/{postTitle} component of flaskBlog v2.6.1... Moderate Unreviewed

CVE-2025-28101 was published Apr 17, 2025

A CSRF vulnerability in Commercify v1.0 allows remote attackers to perform unauthorized actions... Moderate Unreviewed

CVE-2025-29722 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in momen2009 Theme Changer allows Cross Site... Moderate Unreviewed

CVE-2025-39438 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in beke_ro Bknewsticker allows Stored XSS. This... High Unreviewed

CVE-2025-39433 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in davidfcarr My Marginalia allows Stored XSS.... High Unreviewed

CVE-2025-39435 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Rajesh Broken Links Remover allows Stored XSS.... High Unreviewed

CVE-2025-39440 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Boone Gorges Anthologize allows Cross Site... Moderate Unreviewed

CVE-2025-39437 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in MessageMetric Review Wave – Google Places... High Unreviewed

CVE-2025-39442 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in ip2location IP2Location Variables allows... High Unreviewed

CVE-2025-39455 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in swedish boy Dashboard Notepads allows Stored... High Unreviewed

CVE-2025-39441 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Soft8Soft LLC Verge3D allows Cross Site... Moderate Unreviewed

CVE-2025-39443 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in algol.plus Advanced Dynamic Pricing for... Moderate Unreviewed

CVE-2025-39453 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in illow illow – Cookies Consent allows Cross... Moderate Unreviewed

CVE-2025-39426 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in simplemaps Simple Maps allows Stored XSS. This... High Unreviewed

CVE-2025-39424 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in ajayver RSS Manager allows Stored XSS. This... High Unreviewed

CVE-2025-39418 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Mike spam-stopper allows Stored XSS. This... High Unreviewed

CVE-2025-39414 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Mustafa KUCUK WP Sticky Side Buttons allows... High Unreviewed

CVE-2025-39421 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Eslam Mahmoud Redirect wordpress to welcome or... High Unreviewed

CVE-2025-39417 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Jenst Add to Header allows Stored XSS. This... High Unreviewed

CVE-2025-39423 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Alexander Rauscha mLanguage allows Stored XSS.... High Unreviewed

CVE-2025-39430 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Ichi translit it! allows Stored XSS. This... High Unreviewed

CVE-2025-39416 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in pixelgrade Style Manager allows Cross Site... Moderate Unreviewed

CVE-2025-39425 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Aaron Forgue Amazon Showcase WordPress Plugin... High Unreviewed

CVE-2025-39431 was published Apr 17, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Jayesh Parejiya Social Media Links allows... High Unreviewed

CVE-2025-39415 was published Apr 17, 2025

Previous 1 2 3 4 5 … 293 294 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

7,334 advisories