GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,997
Composer 5,075
Erlang 39
GitHub Actions 38
Go 2,744
Maven 6,162
npm 4,341
NuGet 765
pip 4,113
Pub 12
RubyGems 960
Rust 1,069
Swift 45

Unreviewed advisories

All unreviewed 280,076

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

8,312 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

All-Dynamics Digital Signage System 2.0.2 contains a cross-site request forgery vulnerability... High Unreviewed

CVE-2020-36900 was published Dec 10, 2025

SpinetiX Fusion Digital Signage 3.4.8 contains a cross-site request forgery vulnerability that... Moderate Unreviewed

CVE-2020-36886 was published Dec 10, 2025

UBICOD Medivision Digital Signage 1.5.1 contains a cross-site request forgery vulnerability that... High Unreviewed

CVE-2020-36901 was published Dec 10, 2025

1Panel contains a cross-site request forgery (CSRF) vulnerability in the web port configuration functionality High

CVE-2025-34429 was published for github.com/1Panel-dev/1Panel (Go) Dec 10, 2025

1Panel contains a cross-site request forgery (CSRF) vulnerability in the panel name management functionality Moderate

CVE-2025-34430 was published for github.com/1Panel-dev/1Panel (Go) Dec 10, 2025

Jenkins has a CSRF vulnerability on the login form Low

CVE-2025-67639 was published for org.jenkins-ci.main:jenkins-core (Maven) Dec 10, 2025

1Panel contains a cross-site request forgery (CSRF) vulnerability in the Change Username functionality High

CVE-2025-34410 was published for github.com/1Panel-dev/1Panel (Go) Dec 10, 2025

STVS ProVision 5.9.10 contains a cross-site request forgery vulnerability that allows attackers... Moderate Unreviewed

CVE-2021-47723 was published Dec 9, 2025

OpenBMCS 2.4 contains a CSRF vulnerability that allows attackers to perform actions with... Moderate Unreviewed

CVE-2021-47702 was published Dec 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Taylor Hawkes WP Fast Cache allows Cross Site... Moderate Unreviewed

CVE-2023-22675 was published Dec 9, 2025

The Advanced Product Fields (Product Addons) for WooCommerce plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2025-13924 was published Dec 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Rustaurius Ultimate FAQ ultimate-faqs allows... Moderate Unreviewed

CVE-2025-67590 was published Dec 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in jegtheme JNews Paywall jnews-paywall allows... Moderate Unreviewed

CVE-2025-67591 was published Dec 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Ays Pro Quiz Maker quiz-maker allows Cross... Moderate Unreviewed

CVE-2025-67595 was published Dec 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Strategy11 Team Business Directory business... Moderate Unreviewed

CVE-2025-67596 was published Dec 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in PSM Plugins SupportCandy supportcandy allows... Moderate Unreviewed

CVE-2025-67598 was published Dec 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Stiofan UsersWP userswp allows Cross Site... Moderate Unreviewed

CVE-2025-67593 was published Dec 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Jacques Malgrange Rencontre rencontre allows... Unknown Unreviewed

CVE-2025-67534 was published Dec 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in kubiq PDF Thumbnail Generator pdf-thumbnail... Unknown Unreviewed

CVE-2025-67469 was published Dec 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in StellarWP GiveWP give allows Cross Site... Moderate Unreviewed

CVE-2025-67467 was published Dec 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in vcita Online Booking & Scheduling Calendar for... Unknown Unreviewed

CVE-2025-67472 was published Dec 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Ays Pro Chartify chart-builder allows Cross... Unknown Unreviewed

CVE-2025-66529 was published Dec 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in QuantumCloud Simple Link Directory simple-link... Unknown Unreviewed

CVE-2025-67465 was published Dec 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in Dimitri Grassi Salon booking system salon... Unknown Unreviewed

CVE-2025-66531 was published Dec 9, 2025

Cross-Site Request Forgery (CSRF) vulnerability in codeworkweb CWW Companion cww-companion allows... Unknown Unreviewed

CVE-2025-67473 was published Dec 9, 2025

Previous1…333 Next

Previous 1 2 3 4 5 … 332 333 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

8,312 advisories