Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,790
Erlang
36
GitHub Actions
29
Go
2,370
Maven
5,000+
npm
3,994
NuGet
720
pip
3,783
Pub
12
RubyGems
927
Rust
982
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,847 advisories

Loading
Cross-Site Request Forgery (CSRF) vulnerability in Trust Payments Trust Payments Gateway for... Moderate Unreviewed
CVE-2025-53569 was published Jul 4, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Tony Zeoli Radio Station allows Cross Site... Moderate Unreviewed
CVE-2025-53568 was published Jul 4, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Brian S. Reed Contact Form 7 reCAPTCHA allows... Moderate Unreviewed
CVE-2025-23972 was published Jul 4, 2025
The WP Firebase Push Notification plugin for WordPress is vulnerable to Cross-Site Request... Moderate Unreviewed
CVE-2025-5924 was published Jul 4, 2025
The yContributors plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... Moderate Unreviewed
CVE-2025-6041 was published Jul 4, 2025
The RD Contacto plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... Moderate Unreviewed
CVE-2025-5933 was published Jul 4, 2025
The application is vulnerable to cross-site request forgery. An attacker can trick a valid,... Moderate Unreviewed
CVE-2025-27454 was published Jul 3, 2025
A cross-site request forgery (CSRF) vulnerability exists in the web interface of AVTECH IP camera... Moderate Unreviewed
CVE-2025-34050 was published Jul 1, 2025
A vulnerability, which was classified as problematic, has been found in SeaCMS up to 13.2.... Moderate Unreviewed
CVE-2025-6864 was published Jun 29, 2025
A vulnerability, which was classified as problematic, was found in DaiCuo up to 1.3.13. This... Moderate Unreviewed
CVE-2025-6865 was published Jun 29, 2025
The MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Wallet plugin for... Moderate Unreviewed
CVE-2025-5937 was published Jun 28, 2025
A Cross-Site Request Forgery (CSRF) vulnerability exists in the Manage Card functionality (/mcgs... Moderate Unreviewed
CVE-2025-50369 was published Jun 27, 2025
A Cross-Site Request Forgery (CSRF) vulnerability exists in the Inquiry Management functionality ... Moderate Unreviewed
CVE-2025-50370 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in rui_mashita Aioseo Multibyte Descriptions... Moderate Unreviewed
CVE-2025-53327 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Slickstream Slickstream allows Cross Site... Moderate Unreviewed
CVE-2025-53273 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Burst Statistics B.V. Burst Statistics allows... Moderate Unreviewed
CVE-2025-53193 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in EDGARROJAS WooCommerce PDF Invoice Builder... Moderate Unreviewed
CVE-2025-53203 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in webcraftic Cyrlitera allows Cross Site Request... Moderate Unreviewed
CVE-2025-53254 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in macbookandrew WP YouTube Live allows Cross... Moderate Unreviewed
CVE-2025-53261 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Konrád Koller ONet Regenerate Thumbnails... Moderate Unreviewed
CVE-2025-53264 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Writesonic Writesonic allows Cross Site... Moderate Unreviewed
CVE-2025-53262 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in PluginsCafe Address Autocomplete via Google... Moderate Unreviewed
CVE-2025-53263 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Elena Yamshikova Virusdie allows Cross Site... Moderate Unreviewed
CVE-2025-53265 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Aftab Husain Hide Admin Bar From Front End... Moderate Unreviewed
CVE-2025-53267 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Blend Media WordPress CTA allows Cross Site... Moderate Unreviewed
CVE-2025-53270 was published Jun 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database