Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All Vulnerabilities
APPLICATION
Cargo
cocoapods
Composer
Go
hex
Maven
npm
NuGet
pip
pub
RubyGems
Swift
Unmanaged (C/C++)
OPERATING SYSTEM
All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi
Report a new vulnerability
VULNERABILITY
AFFECTS
TYPE
PUBLISHED
M
Missing Authorization
tastyigniter/tastyigniter
<4.0.0-beta.1
Composer
25 Mar 2025
L
Omitted Break Statement in Switch
api-platform/core
>=3.3.8, <3.3.15
Composer
25 Mar 2025
H
External Control of Assumed-Immutable Web Parameter
sylius/paypal-plugin
<1.6.2
>=1.7.0, <1.7.2
>=2.0.0, <2.0.2
Composer
20 Mar 2025
M
Cross-site Scripting (XSS)
contao/core-bundle
>=4.0.0, <4.13.54
>=5.0.0, <5.3.30
>=5.4.0, <5.5.6
Composer
19 Mar 2025
M
Cross-site Scripting (XSS)
modx/revolution
>=0.0.0
Composer
18 Mar 2025
C
Deserialization of Untrusted Data
viames/pair
<2.0.0-beta
Composer
18 Mar 2025
M
Allocation of Resources Without Limits or Throttling
pocketmine/pocketmine-mp
<5.25.2
Composer
18 Mar 2025
H
External Control of Assumed-Immutable Web Parameter
sylius/paypal-plugin
<1.6.1
>=1.7.0, <1.7.1
>=2.0.0, <2.0.1
Composer
18 Mar 2025
M
Improper Neutralization
macropay-solutions/laravel-crud-wizard-free
<3.4.17
Composer
17 Mar 2025
M
Cross-site Scripting (XSS)
microweber/microweber
>=0.0.0
Composer
17 Mar 2025
H
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
flarum/core
<1.8.10
Composer
17 Mar 2025
H
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
flarum/framework
<1.8.10
Composer
17 Mar 2025
M
Improper Authentication
froxlor/froxlor
<2.2.6
Composer
17 Mar 2025
M
Cross-site Scripting (XSS)
froxlor/froxlor
<2.2.6
Composer
17 Mar 2025
H
Improper Verification of Cryptographic Signature
simplesamlphp/saml2-legacy
<4.17.0
Composer
14 Mar 2025
H
Improper Verification of Cryptographic Signature
simplesamlphp/saml2
<4.17.0
>=5.0.0-alpha.1, <5.0.0-alpha.20
Composer
14 Mar 2025
L
Cross-site Scripting (XSS)
laravel/framework
>=11.9.0, <11.36.0
Composer
12 Mar 2025
L
Cross-site Scripting (XSS)
laravel/framework
>=11.9.0, <11.36.0
Composer
12 Mar 2025
H
SQL Injection
pimcore/pimcore
<11.5.4
Composer
12 Mar 2025
M
Cross-site Scripting (XSS)
concrete5/concrete5
<9.4.0RC1
Composer
11 Mar 2025
M
Cross-site Scripting (XSS)
geshi/geshi
>=0.0.0
Composer
10 Mar 2025
C
Improper Input Validation
livewire/livewire
<3.6.1
Composer
7 Mar 2025
M
Cross-site Scripting (XSS)
redaxo/source
>=5.0.0, <5.18.3
Composer
7 Mar 2025
M
Arbitrary File Upload
redaxo/source
<5.18.3
Composer
7 Mar 2025
L
Cross-site Scripting (XSS)
openmage/magento-lts
<20.12.3
Composer
7 Mar 2025
H
XML External Entity (XXE) Injection
phpoffice/phpexcel
<1.8.0
Composer
7 Mar 2025
H
XML External Entity
phpoffice/phpexcel
>=0.0.0
Composer
7 Mar 2025
H
Cross-site Scripting (XSS)
phpoffice/phpexcel
>=0.0.0
Composer
7 Mar 2025
H
Denial of Service (DoS)
phpoffice/phpexcel
<1.8.0
Composer
7 Mar 2025
M
Cross-site Scripting (XSS)
phpoffice/phpexcel
>=0.0.0
Composer
7 Mar 2025
