Homepage
About Snyk

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Expand this section

APPLICATION

Expand this section

OPERATING SYSTEM

Report a new vulnerability
VULNERABILITY AFFECTS TYPE PUBLISHED
  • C
Unrestricted Upload of File with Dangerous Type 		cockpit-hq/cockpit <2.7.0 Composer 15 May 2024
  • M
Improper Verification of Cryptographic Signature 		typo3/cms-core >=9.0.0, <9.5.48 >=10.0.0, <10.4.45 >=11.0.0, <11.5.37 >=12.0.0, <12.4.15 >=13.0.0, <13.1.1 Composer 15 May 2024
  • M
Cross-site Scripting (XSS) 		typo3/cms-core >=9.0.0, <9.5.48 >=10.0.0, <10.4.45 >=11.0.0, <11.5.37 >=12.0.0, <12.4.15 >=13.0.0, <13.1.1 Composer 15 May 2024
  • M
Cross-site Scripting (XSS) 		typo3/cms-core >=9.0.0, <9.5.48 >=10.0.0, <10.4.45 >=11.0.0, <11.5.37 >=12.0.0, <12.4.15 >=13.0.0, <13.1.1 Composer 15 May 2024
  • L
Cross-site Scripting 		typo3/cms-core >=13.0.0, <13.1.1 Composer 15 May 2024
  • M
Cross-site Scripting (XSS) 		mantisbt/mantisbt <2.26.2 Composer 14 May 2024
  • H
Authentication Bypass Using an Alternate Path or Channel 		mantisbt/mantisbt <2.26.2 Composer 14 May 2024
  • M
Exposure of Sensitive Information to an Unauthorized Actor 		mantisbt/mantisbt <2.26.2 Composer 14 May 2024
  • M
Cross-site Scripting (XSS) 		froxlor/froxlor <2.1.9 Composer 12 May 2024
  • M
Cross-site Scripting (XSS) 		sylius/sylius <1.12.16 >=1.13.0-alpha.1, <1.13.1 Composer 12 May 2024
  • M
Cross-site Scripting 		mantisbt/mantisbt <2.24.3 Composer 8 May 2024
  • L
Information Exposure 		kimai/kimai <2.16.0 Composer 8 May 2024
  • M
Cross-site Scripting 		mediawiki/core <1.39.7 >=1.40.0, <1.40.3 >=1.41.0, <1.41.1 Composer 7 May 2024
  • M
Resource Exhaustion 		mediawiki/core <1.39.7 >=1.40.0, <1.40.3 >=1.41.0, <1.41.1 Composer 7 May 2024
  • H
Code Injection 		tribalsystems/zenario <9.5.60437 Composer 7 May 2024
  • M
Cross-site Scripting (XSS) 		tribalsystems/zenario <9.5.60602 Composer 7 May 2024
  • H
Deserialization of Untrusted Data 		spatie/image-optimizer <1.7.3 Composer 6 May 2024
  • L
Improper Authorization 		moodle/moodle <3.6.7 >=3.7.0-beta, <3.7.3 Composer 6 May 2024
  • L
Cross-site Scripting (XSS) 		bolt/bolt >=0.0.0 Composer 6 May 2024
  • M
Cross-site Scripting (XSS) 		wpglobus/wpglobus <1.9.7 Composer 5 May 2024
  • M
Cross-site Scripting (XSS) 		moodle/moodle >=3.9, <3.9.15 >=3.11, <3.11.8 >=4.0, <4.0.2 Composer 5 May 2024
  • L
Cross-Site Request Forgery (CSRF) 		dolibarr/dolibarr =7.0.0 Composer 5 May 2024
  • H
Exposure of Sensitive Information to an Unauthorized Actor 		top-think/framework >=0.0.0 Composer 5 May 2024
  • H
Cross-site Scripting (XSS) 		johnpbloch/wordpress-core >=6.0.0, <6.1.6 >=6.2.0, <6.2.5 >=6.3.0, <6.3.4 >=6.4.0, <6.4.4 >=6.5.0, <6.5.2 Composer 5 May 2024
  • M
Cross-site Scripting (XSS) 		pterodactyl/panel <1.11.6 Composer 5 May 2024
  • M
Cross-site Scripting 		lavalite/cms >=0.0.0 Composer 30 Apr 2024
  • M
Cross-site Scripting (XSS) 		passbolt/passbolt_api <4.6.2 Composer 28 Apr 2024
  • H
Unrestricted Upload of File with Dangerous Type 		typo3/cms >=7.6.0, <7.6.22 >=8.0.0, <8.7.5 Composer 26 Apr 2024
  • H
Cross-Site Request Forgery (CSRF) 		thinkcmf/thinkcmf <6.0.8 Composer 26 Apr 2024
  • H
Cross-Site Request Forgery (CSRF) 		opensolutions/vimbadmin >=0.0.0 Composer 26 Apr 2024