Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,815
Erlang
36
GitHub Actions
32
Go
2,401
Maven
5,000+
npm
4,044
NuGet
723
pip
3,830
Pub
12
RubyGems
933
Rust
1,003
Swift
38
Unreviewed advisories
All unreviewed
5,000+

7,826 advisories

Loading
Cross-Site Request Forgery (CSRF) vulnerability in alanft Relocate Upload allows Stored XSS. This... High Unreviewed
CVE-2025-53315 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in webcraftic Cyrlitera allows Cross Site Request... Moderate Unreviewed
CVE-2025-53254 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in macbookandrew WP YouTube Live allows Cross... Moderate Unreviewed
CVE-2025-53261 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Writesonic Writesonic allows Cross Site... Moderate Unreviewed
CVE-2025-53262 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Konrád Koller ONet Regenerate Thumbnails... Moderate Unreviewed
CVE-2025-53264 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in PluginsCafe Address Autocomplete via Google... Moderate Unreviewed
CVE-2025-53263 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Elena Yamshikova Virusdie allows Cross Site... Moderate Unreviewed
CVE-2025-53265 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in ryanpcmcquen Import external attachments... Moderate Unreviewed
CVE-2025-53268 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Aftab Husain Hide Admin Bar From Front End... Moderate Unreviewed
CVE-2025-53267 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in imw3 My Wp Brand allows Cross Site Request... Moderate Unreviewed
CVE-2025-53269 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Blend Media WordPress CTA allows Cross Site... Moderate Unreviewed
CVE-2025-53270 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Slickstream Slickstream allows Cross Site... Moderate Unreviewed
CVE-2025-53273 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in opicron Image Cleanup allows Cross Site... Moderate Unreviewed
CVE-2025-53272 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Anton Bond Additional Order Filters for... High Unreviewed
CVE-2025-53271 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Hossin Asaadi WP Permalink Translator allows... High Unreviewed
CVE-2025-53274 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Infigo Software IS-theme-companion allows... High Unreviewed
CVE-2025-53277 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in EDGARROJAS WooCommerce PDF Invoice Builder... Moderate Unreviewed
CVE-2025-53203 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in cookiebot Cookiebot allows Cross Site Request... Moderate Unreviewed
CVE-2025-53197 was published Jun 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Burst Statistics B.V. Burst Statistics allows... Moderate Unreviewed
CVE-2025-53193 was published Jun 27, 2025
The VR Calendar plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... Moderate Unreviewed
CVE-2025-5936 was published Jun 27, 2025
The Homerunner plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions... Moderate Unreviewed
CVE-2025-5932 was published Jun 26, 2025
A vulnerability, which was classified as problematic, was found in CodeAstro Patient Record... Moderate Unreviewed
CVE-2025-6664 was published Jun 26, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Drupal Open Social allows Cross Site Request... High Unreviewed
CVE-2025-48921 was published Jun 26, 2025
Cross-site request forgery vulnerability exists in iroha Board versions v0.10.12 and earlier. If... Moderate Unreviewed
CVE-2025-48497 was published Jun 26, 2025
A vulnerability was found in SourceCodester Gym Management System 1.0. It has been classified as... Moderate Unreviewed
CVE-2025-6476 was published Jun 23, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database