Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,632
Erlang
34
GitHub Actions
25
Go
2,238
Maven
5,000+
npm
3,900
NuGet
701
pip
3,666
Pub
12
RubyGems
914
Rust
943
Swift
38
Unreviewed advisories
All unreviewed
5,000+

3,227 advisories

Loading
Cross-Site Request Forgery (CSRF) vulnerability in Bill Minozzi WP Tools allows Path Traversal.... High Unreviewed
CVE-2025-39544 was published Apr 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Toast Plugins Internal Link Optimiser allows... High Unreviewed
CVE-2025-39547 was published Apr 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in A WP Life Right Click Disable OR Ban allows... High Unreviewed
CVE-2025-39548 was published Apr 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in dsky Site Search 360 allows Stored XSS. This... High Unreviewed
CVE-2025-39530 was published Apr 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in LOOS,Inc. Arkhe allows PHP Local File... High Unreviewed
CVE-2025-26748 was published Apr 16, 2025
Cross-Site Request Forgery (CSRF) vulnerability in wphocus My auctions allegro allows Stored XSS... High Unreviewed
CVE-2025-27009 was published Apr 14, 2025
Cross-Site Request Forgery (CSRF) vulnerability in epeken Epeken All Kurir allows Stored XSS.... High Unreviewed
CVE-2025-32673 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in fromdoppler Doppler Forms allows Stored XSS.... High Unreviewed
CVE-2025-32667 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in MERGADO Mergado Pack allows Stored XSS. This... High Unreviewed
CVE-2025-32669 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in KeyCAPTCHA KeyCAPTCHA allows Stored XSS. This... High Unreviewed
CVE-2025-32619 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Ydesignservices Multiple Location Google Map... High Unreviewed
CVE-2025-32617 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in fraudlabspro FraudLabs Pro for WooCommerce... High Unreviewed
CVE-2025-32659 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in WP Map Plugins Interactive US Map allows... High Unreviewed
CVE-2025-32661 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in ashokbasnet Nepali Date Utilities allows... High Unreviewed
CVE-2025-32664 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Kevon Adonis WP Abstracts allows Cross Site... High Unreviewed
CVE-2025-32591 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in ip2location IP2Location World Clock allows... High Unreviewed
CVE-2025-32644 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Vsourz Digital WP Map Route Planner allows... High Unreviewed
CVE-2025-32621 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in plainware PlainInventory allows Stored XSS.... High Unreviewed
CVE-2025-32623 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Hiren Patel Custom Posts Order allows Stored... High Unreviewed
CVE-2025-32645 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in lemmentwickler ePaper Lister for Yumpu allows... High Unreviewed
CVE-2025-32502 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in SCAND MultiMailer allows Stored XSS. This... High Unreviewed
CVE-2025-32505 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in hossainawlad ALD Login Page allows Stored XSS.... High Unreviewed
CVE-2025-32518 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Foliovision: Making the web work for you... High Unreviewed
CVE-2025-32610 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in rafasashi User Session Synchronizer allows... High Unreviewed
CVE-2025-32612 was published Apr 9, 2025
Cross-Site Request Forgery (CSRF) vulnerability in dangrossman WP Calais Auto Tagger allows Cross... High Unreviewed
CVE-2025-32563 was published Apr 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database