Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
Use of a Key Past its Expiration Date		johnpbloch/wordpress-core<5.2.13>=5.3.0, <5.3.10>=5.4.0, <5.4.8>=5.5.0, <5.5.7>=5.6.0, <5.6.6>=5.7.0, <5.7.4>=5.8.0, <5.8.2Composer21 Jan 2025
  • M
Cross-site Scripting (XSS)		johnpbloch/wordpress-core>=5.9.0, <5.9.2Composer21 Jan 2025
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.11.0Composer17 Jan 2025
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.11.0Composer17 Jan 2025
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.11.0Composer17 Jan 2025
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.11.0Composer17 Jan 2025
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.12.0Composer17 Jan 2025
  • H
Server-side Request Forgery (SSRF)		hillelcoren/invoice-ninja>=5.8.56, <5.11.8Composer16 Jan 2025
  • M
Improper Control of Interaction Frequency		goalgorilla/open_social<12.3.8>=12.4.0, <12.4.5>=13.0.0-alpha1, <13.0.0-alpha11Composer16 Jan 2025
  • C
Failure to Sanitize Paired Delimiters		islandora/crayfish<4.1.0Composer16 Jan 2025
  • M
Cross-site Scripting (XSS)		microweber/microweber>=0.0.0Composer16 Jan 2025
  • M
Cross-site Scripting (XSS)		microweber/microweber>=0.0.0Composer16 Jan 2025
  • M
Cross-site Scripting (XSS)		microweber/microweber>=0.0.0Composer16 Jan 2025
  • M
Cross-site Scripting (XSS)		silverstripe/framework<5.3.8Composer15 Jan 2025
  • M
Cross-site Scripting (XSS)		silverstripe/framework<5.3.8Composer15 Jan 2025
  • M
Cross-site Scripting (XSS)		silverstripe/framework<5.3.8Composer15 Jan 2025
  • M
Cross-site Request Forgery (CSRF)		mediawiki/data-transfer>=1.39.0, <1.39.11>=1.41.0, <1.41.3>=1.42.0, <1.42.2Composer15 Jan 2025
  • M
Exposed Dangerous Method or Function		typo3/cms-belog>=10.0.0, <10.4.48>=11.0.0, <11.5.42>=12.0.0, <12.4.25>=13.0.0, <13.4.3Composer15 Jan 2025
  • M
Exposed Dangerous Method or Function		typo3/cms-beuser>=10.0.0, <10.4.48>=11.0.0, <11.5.42>=12.0.0, <12.4.25>=13.0.0, <13.4.3Composer15 Jan 2025
  • L
Insertion of Sensitive Information into Log File		typo3/cms-install<13.4.3Composer15 Jan 2025
  • M
Open Redirect		typo3/cms-core>=9.0.0, <9.5.49>=10.0.0, <10.4.48>=11.0.0, <11.5.42>=12.0.0, <12.4.25>=13.0.0, <13.4.3Composer15 Jan 2025
  • M
Exposed Dangerous Method or Function		typo3/cms-form>=10.0.0, <10.4.48>=11.0.0, <11.5.42>=12.0.0, <12.4.25>=13.0.0, <13.4.3Composer15 Jan 2025
  • H
Cross-site Request Forgery (CSRF)		typo3/cms-scheduler>=11.0.0, <12.0.0Composer15 Jan 2025
  • M
Exposed Dangerous Method or Function		typo3/cms-lowlevel>=11.0.0, <12.0.0Composer15 Jan 2025
  • M
Exposed Dangerous Method or Function		typo3/cms-indexed-search>=10.0.0, <10.4.48>=11.0.0, <11.5.42>=12.0.0, <12.4.25>=13.0.0, <13.4.3Composer15 Jan 2025
  • M
Exposed Dangerous Method or Function		typo3/cms-dashboard>=10.0.0, <10.4.48>=11.0.0, <11.5.42>=12.0.0, <12.4.25>=13.0.0, <13.4.3Composer15 Jan 2025
  • H
Cross-site Request Forgery (CSRF)		typo3/cms-extensionmanager>=10.0.0, <10.4.48>=11.0.0, <11.5.42>=12.0.0, <12.4.25>=13.0.0, <13.4.3Composer15 Jan 2025
  • M
Cross-site Scripting (XSS)		mediawiki/article-feedbackv5<1.39.11>=1.41, <1.41.3>=1.42, <1.42.2Composer12 Jan 2025
  • M
Missing Authorization		goalgorilla/open_social>=11.8.0, <12.3.10>=12.4.0, <12.4.9Composer10 Jan 2025
  • M
PHP Remote File Inclusion		nesbot/carbon<2.72.6>=3.0.0, <3.8.4Composer9 Jan 2025