Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • H
Improper Validation of Specified Quantity in Input
bagisto/bagisto<2.3.7Composer14 Oct 2025
  • M
Cross-site Scripting (XSS)
librenms/librenms<25.7.0Composer14 Oct 2025
  • M
Cross-site Scripting (XSS)
bagisto/bagisto<2.3.7Composer14 Oct 2025
  • M
Improper Validation of Unsafe Equivalence in Input
alt-design/alt-redirect>=1.4.0, <1.6.4Composer13 Oct 2025
  • M
Cross-site Scripting (XSS)
webreinvent/vaahcms>=0.0.0Composer9 Oct 2025
  • C
Path Equivalence
melisplatform/melis-cms-slider<5.3.1Composer9 Oct 2025
  • C
SQL Injection
melisplatform/melis-cms<5.3.4Composer9 Oct 2025
  • C
Missing Authorization
melisplatform/melis-core<5.3.11Composer9 Oct 2025
  • M
Weak Password Requirements
novosga/novosga>=0.0.0Composer9 Oct 2025
  • M
Incorrect User Management
thorsten/phpmyfaq>=4.0.7, <4.0.13Composer6 Oct 2025
  • H
Arbitrary Code Injection
dolibarr/dolibarr<21.0.3Composer6 Oct 2025
  • M
Directory Traversal
auth0/auth0-php>=3.3.0, <8.17.0Composer3 Oct 2025
  • M
Cross-site Scripting (XSS)
joomla/filter<2.0.6>=3.0.0, <3.0.5>=4.0.0, <4.0.1Composer3 Oct 2025
  • M
Cross-site Scripting (XSS)
mediawiki/cargo<3.4.4Composer30 Sept 2025
  • M
Cross-site Scripting (XSS)
shopware/storefront>=6.6.10.0, <6.7.2.1Composer29 Sept 2025
  • M
Cross-site Scripting (XSS)
starcitizenwiki/embedvideo>=0.0.0Composer28 Sept 2025
  • M
Cross-site Scripting (XSS)
novosga/novosga<2.2.13Composer28 Sept 2025
  • M
Cross-site Scripting (XSS)
s-cart/core>=4.0.0-betaComposer26 Sept 2025
  • M
Cross-site Scripting (XSS)
gp247/core<1.1.24Composer26 Sept 2025
  • H
Arbitrary File Upload
hillelcoren/invoice-ninja<5.11.73Composer22 Sept 2025
  • H
Deserialization of Untrusted Data
snipe/snipe-it<8.1.18Composer22 Sept 2025
  • M
Cross-site Scripting (XSS)
snipe/snipe-it<8.1.18Composer22 Sept 2025
  • C
Improper Input Validation
magento/community-edition>=0.0.0Composer19 Sept 2025
  • C
Improper Input Validation
magento/project-community-edition>=0.0.0Composer19 Sept 2025
  • M
Cross-site Scripting (XSS)
zencart/zencart>=0.0.0Composer18 Sept 2025
  • M
SQL Injection
open-web-analytics/open-web-analytics<1.8.1Composer17 Sept 2025
  • L
Cross-site Scripting (XSS)
lavitto/typo3-form-to-database<2.2.5>=3.0.0, <3.2.2>=4.0.0, <4.2.3>=5.0.0, <5.0.2Composer17 Sept 2025
  • M
Cross-site Scripting (XSS)
yeswiki/yeswiki>=0.0.0Composer17 Sept 2025
  • M
Missing Authorization
typo3/cms-recordlist>=11.3.0Composer15 Sept 2025
  • M
Missing Authorization
typo3/cms-backend>=12.0.0, <12.4.37>=13.0.0, <13.4.18Composer15 Sept 2025