Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • H
SQL InjectionCVE-2019-25710
Affects dolibarr/dolibarr | Versions <8.0.5
Has fix
ComposerPublished 12 Apr 2026
  • H
Directory TraversalCVE-2026-39369
Affects wwbn/avideo | Versions <29.0
Has fix
ComposerPublished 12 Apr 2026
  • H
Server-side Request Forgery (SSRF)CVE-2026-39370
Affects wwbn/avideo | Versions <29.0
Has fix
ComposerPublished 12 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-39367
Affects wwbn/avideo | Versions <29.0
Has fix
ComposerPublished 12 Apr 2026
  • H
Server-side Request Forgery (SSRF)CVE-2026-39368
Affects wwbn/avideo | Versions <29.0
Has fix
ComposerPublished 12 Apr 2026
  • H
Insufficient Verification of Data AuthenticityCVE-2026-39366
Affects wwbn/avideo | Versions <29.0
Has fix
ComposerPublished 12 Apr 2026
  • M
Improper Preservation of Permissions
Affects laravel/passport | Versions >=13.0.0, <13.7.2
Has fix
ComposerPublished 12 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-39390
Affects ci4-cms-erp/ci4ms | Versions <0.31.4.0
Has fix
ComposerPublished 12 Apr 2026
  • C
CRLF InjectionCVE-2026-39394
Affects ci4-cms-erp/ci4ms | Versions <0.31.4.0
Has fix
ComposerPublished 12 Apr 2026
  • C
Missing Authentication for Critical FunctionCVE-2026-39393
Affects ci4-cms-erp/ci4ms | Versions <0.31.4.0
Has fix
ComposerPublished 12 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-39392
Affects ci4-cms-erp/ci4ms | Versions <0.31.4.0
Has fix
ComposerPublished 12 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2025-63238
Affects limesurvey/limesurvey | Versions <6.15.12
Has fix
ComposerPublished 12 Apr 2026
  • H
Cross-site Scripting (XSS)CVE-2025-70797
Affects limesurvey/limesurvey | Versions <6.15.21
Has fix
ComposerPublished 12 Apr 2026
  • L
Cross-site Scripting (XSS)
Affects redaxo/source | Versions <5.21.0-beta1
Has fix
ComposerPublished 12 Apr 2026
  • L
Cross-site Scripting (XSS)
Affects redaxo/source | Versions <5.21.0-beta1
Has fix
ComposerPublished 12 Apr 2026
  • M
Cross-site Scripting (XSS)
Affects rhukster/dom-sanitizer | Versions <1.0.10
Has fix
ComposerPublished 12 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-39841
Affects mediawiki/cargo | Versions <3.8.7
Has fix
ComposerPublished 12 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2025-70844
Affects kantorge/yaffa | Versions >=0.0.0
Has fix
ComposerPublished 12 Apr 2026
  • M
Timing AttackCVE-2026-40194
Affects phpseclib/phpseclib | Versions <1.0.28>=2.0.0, <2.0.53>=3.0.0, <3.0.51
Has fix
ComposerPublished 12 Apr 2026
  • H
Directory TraversalCVE-2026-39389
Affects ci4-cms-erp/ci4ms | Versions >=0.24.0.42, <0.31.4.0
Has fix
ComposerPublished 11 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-39391
Affects ci4-cms-erp/ci4ms | Versions >=0.31.0.0, <0.31.4.0
Has fix
ComposerPublished 11 Apr 2026
  • M
Weak AuthenticationCVE-2026-39976
Affects laravel/passport | Versions >=13.0.0, <13.7.1
Has fix
ComposerPublished 10 Apr 2026
  • C
Malicious Package
Affects golangorg/logkit | Versions >=0.0.0
Has fix
ComposerPublished 8 Apr 2026
  • H
Eval InjectionCVE-2026-22666
Affects dolibarr/dolibarr | Versions <23.0.2
Has fix
ComposerPublished 7 Apr 2026
  • H
Logging of Excessive Data
Affects pocketmine/pocketmine-mp | Versions <5.41.1
Has fix
ComposerPublished 7 Apr 2026
  • M
Improper Control of a Resource Through its Lifetime
Affects pocketmine/pocketmine-mp | Versions <5.39.2
Has fix
ComposerPublished 7 Apr 2026
  • H
Allocation of Resources Without Limits or Throttling
Affects pocketmine/pocketmine-mp | Versions <5.39.2
Has fix
ComposerPublished 7 Apr 2026
  • M
Insufficient Control of Network Message Volume (Network Amplification)
Affects pocketmine/pocketmine-mp | Versions <5.39.2
Has fix
ComposerPublished 7 Apr 2026
  • H
Cross-site Scripting (XSS)CVE-2026-35035
Affects ci4-cms-erp/ci4ms | Versions <0.31.2.0
Has fix
ComposerPublished 7 Apr 2026
  • H
Arbitrary Code InjectionCVE-2026-26026
Affects glpi/glpi | Versions >=11.0.0, <11.0.6
Has fix
ComposerPublished 7 Apr 2026