Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
M Cross-site Scripting (XSS)	getgrav/grav>=0.0.0	Composer	5 Dec 2025
H Directory Traversal	alexusmai/laravel-file-manager>=0.0.0	Composer	5 Dec 2025
M Cross-site Scripting (XSS)	snipe/snipe-it<8.3.4	Composer	4 Dec 2025
H Directory Traversal	alexusmai/laravel-file-manager>=2.0.0	Composer	4 Dec 2025
H Arbitrary Command Injection	feehi/cms>=0.0.1	Composer	3 Dec 2025
H Arbitrary File Upload	mautic/core-lib>=4.0.0-alpha1, <4.4.18>=5.0.0-alpha, <5.2.9>=6.0.0-alpha, <6.0.7	Composer	3 Dec 2025
H Arbitrary File Upload	mautic/core>=4.0.0-alpha1, <4.4.18>=5.0.0-alpha, <5.2.9>=6.0.0-alpha, <6.0.7	Composer	3 Dec 2025
C Access Control Bypass	mautic/core-lib>=4.0.0-alpha1, <4.4.18>=5.0.0-alpha, <5.2.9>=6.0.0-alpha, <6.0.7	Composer	3 Dec 2025
C Access Control Bypass	mautic/core>=4.0.0-alpha1, <4.4.18>=5.0.0-alpha, <5.2.9>=6.0.0-alpha, <6.0.7	Composer	3 Dec 2025
H Unsafe Dependency Resolution	dcat/laravel-admin>=0.1.0	Composer	3 Dec 2025
H Cross-site Scripting (XSS)	aimeos/ai-cms-grapesjs>=2022.4.1, <2022.10.9>=2023.4.1, <2023.10.15>=2024.4.1, <2024.10.8>=2025.4.1, <2025.10.2	Composer	3 Dec 2025
M Improper Restriction of Rendered UI Layers or Frames	feehi/cms>=0.0.1	Composer	3 Dec 2025
M Authorization Bypass Through User-Controlled Key	feehi/cms>=0.0.1	Composer	3 Dec 2025
M Cross-site Scripting (XSS)	feehi/cms>=0.0.1	Composer	3 Dec 2025
H Improper Authorization	getgrav/grav<1.8.0-beta.27	Composer	2 Dec 2025
H Improper Neutralization of Special Elements Used in a Template Engine	getgrav/grav<1.8.0-beta.27	Composer	2 Dec 2025
H Improper Neutralization of Special Elements Used in a Template Engine	getgrav/grav<1.8.0-beta.27	Composer	2 Dec 2025
H Directory Traversal	getgrav/grav<1.8.0-beta.27	Composer	2 Dec 2025
H Arbitrary Code Injection	getgrav/grav<1.8.0-beta.27	Composer	2 Dec 2025
H Arbitrary Code Injection	getgrav/grav<1.8.0-beta.27	Composer	2 Dec 2025
H Incorrect Privilege Assignment	getgrav/grav<1.8.0-beta.27	Composer	2 Dec 2025
H Information Exposure	getgrav/grav<1.8.0-beta.27	Composer	2 Dec 2025
M Directory Traversal	getgrav/grav<1.8.0-beta.27	Composer	2 Dec 2025
M Uncaught Exception	getgrav/grav<1.8.0-beta.27	Composer	2 Dec 2025
H Directory Traversal	getgrav/grav<1.8.0-beta.27	Composer	2 Dec 2025
M Authorization Bypass Through User-Controlled Key	getgrav/grav<1.8.0-beta.27	Composer	2 Dec 2025
M Denial of Service (DoS)	getgrav/grav<1.8.0-beta.27	Composer	2 Dec 2025
M Cross-site Scripting (XSS)	redaxo/source<5.20.1	Composer	27 Nov 2025
H Arbitrary Code Injection	redaxo/source<5.20.1	Composer	27 Nov 2025
M Cross-site Scripting (XSS)	redaxo/source<5.20.1	Composer	27 Nov 2025

APPLICATION

OPERATING SYSTEM