Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,950
Erlang
39
GitHub Actions
38
Go
2,605
Maven
5,000+
npm
4,250
NuGet
755
pip
4,015
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

8,142 advisories

Loading
An issue was discovered in BAE SOCET GXP before 4.6.0.2. The SOCET GXP Job Status Service does... Moderate Unreviewed
CVE-2025-54969 was published Oct 27, 2025
Wimi Teamwork versions prior to 7.38.17 contains a cross-site request forgery (CSRF)... High Unreviewed
CVE-2025-34133 was published Oct 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Waituk Entrada theme allows Cross Site Request... Moderate Unreviewed
CVE-2025-58918 was published Oct 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in iseremet Reloadly reloadly-topup-widget allows... Unknown Unreviewed
CVE-2025-62956 was published Oct 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in NikanWP NikanWP WooCommerce Reporting wc... Unknown Unreviewed
CVE-2025-62957 was published Oct 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in raychat Raychat raychat allows Cross Site... Moderate Unreviewed
CVE-2025-62975 was published Oct 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in FanBridge FanBridge signup fanbridge-signup... High Unreviewed
CVE-2025-62986 was published Oct 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Clifton Griffin Simple Content Templates for... High Unreviewed
CVE-2025-62958 was published Oct 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Andrea Landonio CloudSearch cloud-search... High Unreviewed
CVE-2025-62962 was published Oct 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Prakash Awesome Testimonials awesome... Unknown Unreviewed
CVE-2025-62933 was published Oct 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Mejar WP Business Hours wp-business-hours... Unknown Unreviewed
CVE-2025-62934 was published Oct 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Eduard Pinuaga Linares Did Prestashop Display... Unknown Unreviewed
CVE-2025-62945 was published Oct 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in digitaldonkey Multilang Contact Form multilang... Unknown Unreviewed
CVE-2025-62896 was published Oct 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Premmerce Premmerce Brands for WooCommerce... Unknown Unreviewed
CVE-2025-62890 was published Oct 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in wpdevart Pricing Table builder wpdevart... Unknown Unreviewed
CVE-2025-62886 was published Oct 27, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Jory Hogeveen Off-Canvas Sidebars & Menus ... Unknown Unreviewed
CVE-2025-62891 was published Oct 27, 2025
A security flaw has been discovered in ajayrandhawa User-Management-PHP-MYSQL web up to... Moderate Unreviewed
CVE-2025-12202 was published Oct 27, 2025
The FuseWP – WordPress User Sync to Email List & Marketing Automation (Mailchimp, Constant... Moderate Unreviewed
CVE-2025-11976 was published Oct 25, 2025
The Simple Registration for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request... High Unreviewed
CVE-2025-12095 was published Oct 25, 2025
The Disable Content Editor For Specific Template plugin for WordPress is vulnerable to Cross-Site... Moderate Unreviewed
CVE-2025-12072 was published Oct 24, 2025
The IndieAuth plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up... High Unreviewed
CVE-2025-12028 was published Oct 24, 2025
Cross site request forgery (CSRF) vulnerability in KeeneticOS before 4.3 at "/rci" API endpoint... Moderate Unreviewed
CVE-2025-56009 was published Oct 23, 2025
Cross-Site Request Forgery (CSRF) vulnerability in impleCode Product Catalog Simple post-type-x... Moderate Unreviewed
CVE-2025-62061 was published Oct 22, 2025
Cross-Site Request Forgery (CSRF) vulnerability in FantasticPlugins SUMO Memberships for... High Unreviewed
CVE-2025-62005 was published Oct 22, 2025
Cross-Site Request Forgery (CSRF) vulnerability in Dmitry V. (CEO of "UKR Solution") UPC/EAN/GTIN... Moderate Unreviewed
CVE-2025-62009 was published Oct 22, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database