Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Expand this section

APPLICATION

Expand this section

OPERATING SYSTEM

Report a new vulnerability
VULNERABILITY AFFECTS TYPE PUBLISHED
  • H
Deserialization of Untrusted Data
nukeviet/nukeviet >=0.0.0 Composer 14 Jun 2024
  • C
XML External Entity (XXE) Injection
magento/community-edition <2.4.4-p9 >=2.4.5, <2.4.5-p8 >=2.4.6, <2.4.6-p6 >=2.4.7, <2.4.7-p1 Composer 14 Jun 2024
  • H
Missing Authorization
snipe/snipe-it <6.4.2 Composer 14 Jun 2024
  • M
Cross-Site Scripting (XSS)
woocommerce/woocommerce >=8.8.0, <8.8.5 >=8.9.0, <8.9.3 Composer 13 Jun 2024
  • C
Improper Control of Generation of Code ('Code Injection')
nukeviet/nukeviet >=0.0.0 Composer 12 Jun 2024
  • M
Privilege Context Switching Error
aimeos/aimeos-core >=0.0.0 Composer 12 Jun 2024
  • H
Command Injection
composer/composer >=2.0, <2.2.24 >=2.3, <2.7.7 Composer 11 Jun 2024
  • H
Command Injection
composer/composer >=2.0, <2.2.24 >=2.3, <2.7.7 Composer 11 Jun 2024
  • M
Cross-site Scripting (XSS)
getformwork/formwork <1.13.1 Composer 9 Jun 2024
  • H
External Control of File Name or Path
aimeos/aimeos-core >=2024.04.1, <2024.04.5 Composer 9 Jun 2024
  • M
Cross-site Scripting (XSS)
sulu/form-bundle >=2.0.0, <2.5.3 Composer 7 Jun 2024
  • L
Insufficiently Protected Credentials
craft-twofactorauthentication >=3.3.1, <3.3.4 Composer 6 Jun 2024
  • M
Improper Authentication
craft-twofactorauthentication <3.3.4 Composer 6 Jun 2024
  • H
External Control of File Name or Path
aimeos/aimeos-core >=0.0.0 Composer 6 Jun 2024
  • M
Improper Check for Unusual or Exceptional Conditions
aimeos/ai-client-html >=2020.04.1,<2020.10.27 >=2021.04.1,<2021.10.21 >=2022.04.1,<2022.10.12 >=2023.04.1,<2023.10.14 >=2024.04.1,<2024.04.5 Composer 6 Jun 2024
  • M
Improper Input Validation
moodle/moodle <4.1.10 >=4.2.0, <4.2.7 >=4.3.0, <4.3.4 Composer 5 Jun 2024
  • M
Information Exposure
typo3/cms >=6.2.0, <6.2.20 Composer 5 Jun 2024
  • M
Cross-site Scripting (XSS)
typo3/cms >=6.2.0, <6.2.19 Composer 5 Jun 2024
  • M
XML External Entity (XXE) Injection
typo3/cms >=7.6.0, <7.6.4 >=6.2.0, <6.2.19 Composer 5 Jun 2024
  • H
Allocation of Resources Without Limits or Throttling
pimcore/pimcore >=11.0.0-ALPHA1, <11.2.4 Composer 5 Jun 2024
  • C
SQL Injection
typo3/cms >=6.2.0, <6.2.18 Composer 4 Jun 2024
  • M
Cross-site Scripting
dolibarr/dolibarr <19.0.2 Composer 4 Jun 2024
  • H
Improper Control of Generation of Code ('Code Injection')
smarty/smarty >=3.0.0, <4.5.3 >=5.0.0, <5.1.1 Composer 4 Jun 2024
  • L
Cleartext Storage of Sensitive Information
statamic/cms >=5.3.0, <5.6.2 Composer 3 Jun 2024
  • H
Code Injection
yiisoft/yii2 <2.0.50 Composer 3 Jun 2024
  • M
Cross-site Scripting (XSS)
moodle/moodle >=4.0.0, <4.1.10 >=4.2.0, <4.2.7 >=4.3.0, <4.3.4 Composer 2 Jun 2024
  • M
Cross-site Scripting (XSS)
moodle/moodle >=4.0.0, <4.1.10 >=4.2.0, <4.2.7 >=4.3.0, <4.3.4 Composer 2 Jun 2024
  • M
Cross-site Scripting (XSS)
moodle/moodle >=4.0.0, <4.1.10 >=4.2.0, <4.2.7 >=4.3.0, <4.3.4 Composer 2 Jun 2024
  • M
Information Exposure Through Misconfigured Permissions
moodle/moodle >=4.0.0, <4.1.10 >=4.2.0, <4.2.7 >=4.3.0, <4.3.4 Composer 2 Jun 2024
  • M
Cross-Site Request Forgery (CSRF)
moodle/moodle >=4.0.0, <4.1.10 >=4.2.0, <4.2.7 >=4.3.0, <4.3.4 Composer 2 Jun 2024