Homepage
About Snyk

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Expand this section

APPLICATION

Expand this section

OPERATING SYSTEM

Report a new vulnerability
VULNERABILITY AFFECTS TYPE PUBLISHED
  • M
Regular Expression Denial of Service (ReDoS) 		tecnickcom/tcpdf <6.7.5 Composer 21 Apr 2024
  • H
Cross-Site Request Forgery (CSRF) 		dolibarr/dolibarr <19.0.1 Composer 19 Apr 2024
  • L
Cross-Site Scripting (XSS) 		slowlyo/owl-admin >=3.5.0 Composer 15 Apr 2024
  • H
Improper Input Validation 		tecnickcom/tcpdf <6.7.4 Composer 15 Apr 2024
  • H
Deserialization of Untrusted Data 		timber/timber <2.1.0 Composer 14 Apr 2024
  • M
Cross-site Scripting (XSS) 		mautic/core <4.4.12 Composer 14 Apr 2024
  • M
SQL Injection 		mautic/core >=1.0.0-beta4, <4.4.12 >=5.0.0-alpha, <5.0.4 Composer 14 Apr 2024
  • H
Exposure of Sensitive Information to an Unauthorized Actor 		mautic/core >=1.0.0-beta4, <4.4.12 >=5.0.0-alpha, <5.0.4 Composer 14 Apr 2024
  • H
Relative Path Traversal 		mautic/core >=1.0.0-beta4, <4.4.12 >=5.0.0-alpha, <5.0.4 Composer 14 Apr 2024
  • M
Server-Side Request Forgery (SSRF) 		mautic/core >=1.0.0-beta4, <4.4.12 >=5.0.0-alpha, <5.0.4 Composer 14 Apr 2024
  • M
Incorrect Authorization 		winter/wn-dusk-plugin <2.1.0 Composer 14 Apr 2024
  • H
Information Exposure 		reportico-web/reportico >=0.0.0 Composer 12 Apr 2024
  • H
Cross-site Scripting (XSS) 		mautic/core >=1.0.0-beta2, <4.4.12 Composer 12 Apr 2024
  • C
Improper Control of Generation of Code ('Code Injection') 		wwbn/avideo >=12.4 Composer 11 Apr 2024
  • M
Information Exposure 		contao/core-bundle >=4.0.0, <4.13.40 >=5.0.0-RC1, <5.3.4 Composer 10 Apr 2024
  • M
Session Fixation 		contao/core-bundle >=4.0.0, <4.13.40 Composer 10 Apr 2024
  • L
Improper Neutralization of Special Elements in Output Used by a Downstream Component 		contao/core-bundle >=4.0.0, <4.13.40 >=5.0.0-RC1, <5.3.4 Composer 10 Apr 2024
  • M
Cross-site Scripting (XSS) 		contao/core-bundle >=4.0.0, <4.13.40 >=5.0.0-RC1, <5.3.4 Composer 10 Apr 2024
  • M
Cross-site Scripting 		contao/comments-bundle >=4.0.0, <4.13.40 >=5.0.0-RC1, <5.3.4 Composer 10 Apr 2024
  • M
Insufficient Session Expiration 		shopware/core >=6.3.5.0, <6.5.8.8 >=6.6.0.0, <6.6.1.0 Composer 9 Apr 2024
  • M
Information Exposure 		johnpbloch/wordpress-core <6.5.0 Composer 7 Apr 2024
  • L
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 		concrete5/concrete5 <8.5.16 >=9.0.0RC1, <9.2.8 Composer 4 Apr 2024
  • L
Cross-site Scripting (XSS) 		concrete5/concrete5 <8.5.16 >=9.0.0RC1, <9.2.8 Composer 4 Apr 2024
  • L
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 		concrete5/concrete5 <8.5.16 >=9.0.0RC1, <9.2.8 Composer 4 Apr 2024
  • L
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 		concrete5/concrete5 <8.5.16 >=9.0.0RC1, <9.2.8 Composer 4 Apr 2024
  • L
Cross-site Scripting (XSS) 		concrete5/concrete5 <8.5.16 >=9.0.0RC1, <9.2.8 Composer 4 Apr 2024
  • M
Improper Control of Generation of Code ('Code Injection') 		dolibarr/dolibarr <19.0.1 Composer 4 Apr 2024
  • H
Allocation of Resources Without Limits or Throttling 		amphp/http <1.7.3 >=2.0.0-beta.1, <2.1.1 Composer 4 Apr 2024
  • M
Improper Access Control 		causal/oidc <2.1.0 Composer 3 Apr 2024
  • L
Cross-site Scripting (XSS) 		francoisjacquet/rosariosis >=0.0.0 Composer 2 Apr 2024