Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Incorrect AuthorizationCVE-2025-62394
Affects moodle/moodle | Versions >=4.5.0-beta, <4.5.7>=5.0.0-beta, <5.0.3
Has fix
ComposerPublished 24 Oct 2025
  • M
Improper AuthorizationCVE-2025-62401
Affects moodle/moodle | Versions <4.1.21>=4.4.0-beta, <4.4.11>=4.5.0-beta, <4.5.7>=5.0.0-beta, <5.0.3
Has fix
ComposerPublished 24 Oct 2025
  • M
Observable Response DiscrepancyCVE-2025-62397
Affects moodle/moodle | Versions >=5.0.0-beta, <5.0.3
Has fix
ComposerPublished 24 Oct 2025
  • M
Access Control BypassCVE-2025-62395
Affects moodle/moodle | Versions <4.1.21>=4.4.0-beta, <4.4.11>=4.5.0-beta, <4.5.7>=5.0.0-beta, <5.0.3
Has fix
ComposerPublished 24 Oct 2025
  • M
Exposure of Information Through Directory ListingCVE-2025-62396
Affects moodle/moodle | Versions <4.5.7>=4.5.0-beta, <5.0.3
Has fix
ComposerPublished 24 Oct 2025
  • M
Exposure of Sensitive System Information to an Unauthorized Control SphereCVE-2025-62400
Affects moodle/moodle | Versions <4.1.21>=4.4.0-beta, <4.4.11>=4.5.0-beta, <4.5.7>=5.0.0-beta, <5.0.3
Has fix
ComposerPublished 24 Oct 2025
  • M
Improper AuthenticationCVE-2025-62398
Affects moodle/moodle | Versions <4.4.11>=4.5.0-beta, <4.5.7>=5.0.0-beta, <5.0.3
Has fix
ComposerPublished 24 Oct 2025
  • M
Access Control BypassCVE-2025-62393
Affects moodle/moodle | Versions >=5.0.0-beta, <5.1.0-rc2
Has fix
ComposerPublished 24 Oct 2025
  • M
Improper AuthorizationCVE-2024-39417
Affects magento/community-edition | Versions >=2.4.7-p1, <2.4.7-p2>=2.4.6-p1, <2.4.6-p7>=2.4.5-p1, <2.4.5-p9<2.4.4-p10
Has fix
ComposerPublished 24 Oct 2025
  • M
Access Control BypassCVE-2025-27190
Affects magento/community-edition | Versions <2.4.4-p13>=2.4.5, <2.4.5-p12>=2.4.6, <2.4.6-p10>=2.4.7-beta1, <2.4.7-p5>=2.4.8-beta1, <2.4.8-beta2
Has fix
ComposerPublished 24 Oct 2025
  • M
Improper AuthorizationCVE-2024-39411
Affects magento/community-edition | Versions >=2.4.7-p1, <2.4.7-p2>=2.4.6-p1, <2.4.6-p7>=2.4.5-p1, <2.4.5-p9<2.4.4-p10
Has fix
ComposerPublished 24 Oct 2025
  • M
Improper AuthorizationCVE-2024-39415
Affects magento/community-edition | Versions <2.4.4-p10>=2.4.5-p1, <2.4.5-p9>=2.4.6-p1, <2.4.6-p7>=2.4.7-p1, <2.4.7-p2
Has fix
ComposerPublished 24 Oct 2025
  • M
Incorrect AuthorizationCVE-2025-49550
Affects magento/community-edition | Versions >=2.4.5, <2.4.5-p13>=2.4.6-p1, <2.4.6-p11>=2.4.7-beta1, <2.4.7-p6>=2.4.8-beta1, <2.4.8-p1
Has fix
ComposerPublished 24 Oct 2025
  • M
Insufficiently Protected CredentialsCVE-2025-27192
Affects magento/community-edition | Versions <2.4.4-p13>=2.4.5, <2.4.5-p12>=2.4.6, <2.4.6-p10>=2.4.7-beta1, <2.4.7-p5>=2.4.8-beta1, <2.4.8-beta2
Has fix
ComposerPublished 24 Oct 2025
  • H
Improper AuthorizationCVE-2025-43585
Affects magento/community-edition | Versions >=2.4.5, <2.4.5-p13>=2.4.6-p1, <2.4.6-p11>=2.4.7-beta1, <2.4.7-p6>=2.4.8-beta1, <2.4.8-p1
Has fix
ComposerPublished 24 Oct 2025
  • M
Improper AuthorizationCVE-2024-39419
Affects magento/community-edition | Versions >=2.4.7-p1, <2.4.7-p2>=2.4.6-p1, <2.4.6-p7>=2.4.5-p1, <2.4.5-p9<2.4.4-p10
Has fix
ComposerPublished 24 Oct 2025
  • M
Access Control BypassCVE-2025-27191
Affects magento/community-edition | Versions <2.4.4-p13>=2.4.5, <2.4.5-p12>=2.4.6, <2.4.6-p10>=2.4.7-beta1, <2.4.7-p5>=2.4.8-beta1, <2.4.8-beta2
Has fix
ComposerPublished 24 Oct 2025
  • M
Improper AuthorizationCVE-2024-39416
Affects magento/community-edition | Versions <2.4.4-p10>=2.4.5, <2.4.5-p8>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2
Has fix
ComposerPublished 24 Oct 2025
  • M
Access Control BypassCVE-2024-39414
Affects magento/community-edition | Versions <2.4.4-p10>=2.4.5, <2.4.5-p8>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2
Has fix
ComposerPublished 24 Oct 2025
  • M
Access Control BypassCVE-2025-27206
Affects magento/community-edition | Versions <2.4.5-p13>=2.4.6, <2.4.6-p11>=2.4.7, <2.4.7-p6>=2.4.8-beta1, <2.4.8-p1
Has fix
ComposerPublished 24 Oct 2025
  • M
Incorrect AuthorizationCVE-2025-49549
Affects magento/community-edition | Versions <2.4.5-p13>=2.4.6, <2.4.6-p11>=2.4.7, <2.4.7-p6>=2.4.8-beta1, <2.4.8-p1
Has fix
ComposerPublished 24 Oct 2025
  • H
SQL InjectionCVE-2025-62617
Affects admidio/admidio | Versions <4.3.17
Has fix
ComposerPublished 23 Oct 2025
  • M
Cross-site Scripting (XSS)CVE-2025-54264
Affects magento/community-edition | Versions <2.4.6-p13>=2.4.7-beta1, <2.4.7-p8>=2.4.8-beta1, <2.4.8-p3>=2.4.9-alpha1, <2.4.9-alpha3
Has fix
ComposerPublished 23 Oct 2025
  • H
Incorrect AuthorizationCVE-2025-54263
Affects magento/community-edition | Versions <2.4.6-p13>=2.4.7-beta1, <2.4.7-p8>=2.4.8-beta1, <2.4.8-p3>=2.4.9-alpha1, <2.4.9-alpha3
Has fix
ComposerPublished 23 Oct 2025
  • M
Cross-site Scripting (XSS)CVE-2025-54266
Affects magento/community-edition | Versions <2.4.6-p13>=2.4.7-beta1, <2.4.7-p8>=2.4.8-beta1, <2.4.8-p3>=2.4.9-alpha1, <2.4.9-alpha3
Has fix
ComposerPublished 23 Oct 2025
  • H
Incorrect AuthorizationCVE-2025-54267
Affects magento/community-edition | Versions <2.4.6-p13>=2.4.7-beta1, <2.4.7-p8>=2.4.8-beta1, <2.4.8-p3>=2.4.9-alpha1, <2.4.9-alpha3
Has fix
ComposerPublished 23 Oct 2025
  • H
Improper Removal of Sensitive Information Before Storage or Transfer
Affects shopware/core | Versions <6.6.10.7>=6.7.0.0, <6.7.3.1
Has fix
ComposerPublished 22 Oct 2025
  • H
Directory Traversal
Affects shopware/core | Versions <6.6.10.7>=6.7.0.0, <6.7.3.1
Has fix
ComposerPublished 22 Oct 2025
  • M
Missing Authorization
Affects shopware/storefront | Versions <6.6.10.7>=6.7.0.0, <6.7.3.1
Has fix
ComposerPublished 22 Oct 2025
  • M
Missing Authorization
Affects shopware/core | Versions <6.6.10.7>=6.7.0.0, <6.7.3.1
Has fix
ComposerPublished 22 Oct 2025