Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

2,954 advisories

Loading
Cross-Site Request Forgery (CSRF) vulnerability in digfish Geotagged Media allows Stored XSS.This... High Unreviewed
CVE-2025-23558 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Sourov Amin Word Freshener allows Stored XSS... High Unreviewed
CVE-2025-23577 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Intuitive Design GDReseller allows Stored XSS... High Unreviewed
CVE-2025-23567 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Dave Konopka, Martin Scharm UpDownUpDown... High Unreviewed
CVE-2025-23572 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Andrea Brandi Twitter Shortcode allows Stored... High Unreviewed
CVE-2025-23618 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Yonatan Reinberg of Social Ink Custom Post... High Unreviewed
CVE-2025-23530 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in SpruceJoy Cookie Consent & Autoblock for GDPR... High Unreviewed
CVE-2025-23501 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Syed Amir Hussain Custom Post allows Stored... High Unreviewed
CVE-2025-23566 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Albdesign Simple Project Manager allows Stored... High Unreviewed
CVE-2025-23497 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Kelvin Ng Shortcode in Comment allows Stored... High Unreviewed
CVE-2025-23569 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Oren hahiashvili add custom google tag manager... High Unreviewed
CVE-2025-23537 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Oliver Schaal Floatbox Plus allows Stored XSS... High Unreviewed
CVE-2025-23617 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Scott Swezey Easy Tynt allows Cross Site... High Unreviewed
CVE-2025-23445 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in mastersoftwaresolutions WP VTiger... High Unreviewed
CVE-2025-23455 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Andy Chapman ECT Add to Cart Button allows... High Unreviewed
CVE-2025-23471 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Somethinkodd.com Development Team EmailShroud... High Unreviewed
CVE-2025-23456 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Vimal Ghorecha RSS News Scroller allows Stored... High Unreviewed
CVE-2025-23467 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in isnowfy my-related-posts allows Stored XSS... High Unreviewed
CVE-2025-23476 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Mukesh Dak MD Custom content after or before... High Unreviewed
CVE-2025-23463 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in X Villamuera Visit Site Link enhanced allows... High Unreviewed
CVE-2025-23470 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Oren Yomtov Mass Custom Fields Manager allows... High Unreviewed
CVE-2025-23430 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Brian Novotny – Creative Software Design... High Unreviewed
CVE-2025-23424 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in David Marcucci Password Protect Plugin for... High Unreviewed
CVE-2025-23435 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Capa Wp-Scribd-List allows Stored XSS.This... High Unreviewed
CVE-2025-23436 was published Jan 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Wizcrew Technologies go Social allows Stored... High Unreviewed
CVE-2025-23426 was published Jan 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database