Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • H
Eval InjectionCVE-2026-22666
Affects dolibarr/dolibarr | Versions <23.0.2
Has fix
ComposerPublished 7 Apr 2026
  • H
Logging of Excessive Data
Affects pocketmine/pocketmine-mp | Versions <5.41.1
Has fix
ComposerPublished 7 Apr 2026
  • M
Improper Control of a Resource Through its Lifetime
Affects pocketmine/pocketmine-mp | Versions <5.39.2
Has fix
ComposerPublished 7 Apr 2026
  • H
Allocation of Resources Without Limits or Throttling
Affects pocketmine/pocketmine-mp | Versions <5.39.2
Has fix
ComposerPublished 7 Apr 2026
  • M
Insufficient Control of Network Message Volume (Network Amplification)
Affects pocketmine/pocketmine-mp | Versions <5.39.2
Has fix
ComposerPublished 7 Apr 2026
  • H
Cross-site Scripting (XSS)CVE-2026-35035
Affects ci4-cms-erp/ci4ms | Versions <0.31.2.0
Has fix
ComposerPublished 7 Apr 2026
  • H
Arbitrary Code InjectionCVE-2026-26026
Affects glpi/glpi | Versions >=11.0.0, <11.0.6
Has fix
ComposerPublished 7 Apr 2026
  • C
SQL InjectionCVE-2026-26263
Affects glpi/glpi | Versions >=11.0.0-alpha, <11.0.6
Has fix
ComposerPublished 7 Apr 2026
  • H
Improper Encoding or Escaping of OutputCVE-2026-25932
Affects glpi/glpi | Versions >=0.60, <10.0.24>=11.0.0-alpha, <11.0.6
Has fix
ComposerPublished 7 Apr 2026
  • H
SQL InjectionCVE-2026-29047
Affects glpi/glpi | Versions >=10.0.0-beta, <10.0.24>=11.0.0-alpha, <11.0.6
Has fix
ComposerPublished 7 Apr 2026
  • H
Cross-site Scripting (XSS)CVE-2026-26027
Affects glpi/glpi | Versions >=11.0.0-alpha, <11.0.6
Has fix
ComposerPublished 7 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-31350
Affects feehi/cms | Versions >=0.0.0
Has fix
ComposerPublished 7 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-31352
Affects feehi/cms | Versions >=0.0.0
Has fix
ComposerPublished 7 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-31353
Affects feehi/cms | Versions >=0.0.0
Has fix
ComposerPublished 7 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-31354
Affects feehi/cms | Versions >=0.0.0
Has fix
ComposerPublished 7 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-31313
Affects feehi/cms | Versions >=0.0.0
Has fix
ComposerPublished 7 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-31351
Affects feehi/cms | Versions >=0.0.0
Has fix
ComposerPublished 7 Apr 2026
  • H
Arbitrary File UploadCVE-2019-25673
Affects unisharp/laravel-filemanager | Versions >=2.0.0-alpha7
Has fix
ComposerPublished 6 Apr 2026
  • H
Directory TraversalCVE-2019-25685
Affects phpbb/phpbb | Versions >=3.2.3
Has fix
ComposerPublished 6 Apr 2026
  • M
Deserialization of Untrusted DataCVE-2026-35537
Affects roundcube/roundcubemail | Versions <1.5.14>=1.6-beta, <1.6.14>=1.7-beta, <1.7-rc5
Has fix
ComposerPublished 6 Apr 2026
  • L
Arbitrary Argument InjectionCVE-2026-35538
Affects roundcube/roundcubemail | Versions <1.5.14>=1.6-beta, <1.6.14>=1.7-beta, <1.7-rc5
Has fix
ComposerPublished 6 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-35539
Affects roundcube/roundcubemail | Versions <1.5.14>=1.6-beta, <1.6.14>=1.7-beta, <1.7-rc5
Has fix
ComposerPublished 6 Apr 2026
  • L
Access of Resource Using Incompatible Type ('Type Confusion')CVE-2026-35541
Affects roundcube/roundcubemail | Versions <1.5.14>=1.6-beta, <1.6.14>=1.7-beta, <1.7-rc5
Has fix
ComposerPublished 6 Apr 2026
  • M
Incorrect Resource Transfer Between SpheresCVE-2026-35544
Affects roundcube/roundcubemail | Versions <1.5.14>=1.6-beta, <1.6.14>=1.7-beta, <1.7-rc5
Has fix
ComposerPublished 6 Apr 2026
  • M
Incorrect Resource Transfer Between SpheresCVE-2026-35545
Affects roundcube/roundcubemail | Versions <1.5.15>=1.6-beta, <1.6.15>=1.7-beta, <1.7-rc5
Has fix
ComposerPublished 6 Apr 2026
  • M
Incorrect Resource Transfer Between SpheresCVE-2026-35542
Affects roundcube/roundcubemail | Versions <1.5.14>=1.6-beta, <1.6.14>=1.7-beta, <1.7-rc5
Has fix
ComposerPublished 6 Apr 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-35540
Affects roundcube/roundcubemail | Versions <1.6.14>=1.7-beta, <1.7-rc5
Has fix
ComposerPublished 6 Apr 2026
  • M
Incorrect Resource Transfer Between SpheresCVE-2026-35543
Affects roundcube/roundcubemail | Versions <1.5.14>=1.6-beta, <1.6.14>=1.7-beta, <1.7-rc5
Has fix
ComposerPublished 6 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-5370
Affects krayin/laravel-crm | Versions >=0.0.0
Has fix
ComposerPublished 5 Apr 2026
  • H
SQL InjectionCVE-2026-35470
Affects devcode-it/openstamanager | Versions <2.10.2
Has fix
ComposerPublished 5 Apr 2026