Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
Directory Traversal		mautic/core-lib<5.2.3>=6.0.0-alpha, <6.0.0-betaComposer27 Feb 2025
  • H
Arbitrary Code Injection		mautic/core-lib<5.2.3>=6.0.0-alpha, <6.0.0-betaComposer27 Feb 2025
  • M
Incorrect Implementation of Authentication Algorithm		glpi/glpi>=9.5.0, <10.0.18Composer26 Feb 2025
  • H
Information Exposure		glpi/glpi<10.0.18Composer26 Feb 2025
  • M
Information Exposure		glpi/glpi>=0.71, <10.0.18Composer26 Feb 2025
  • H
Cross-site Scripting (XSS)		glpi/glpi<10.0.18Composer26 Feb 2025
  • M
Improper Authorization		glpi/glpi>=0.72, <10.0.18Composer26 Feb 2025
  • H
Brute Force		alextselegidis/easyappointments>=0.0.0Composer25 Feb 2025
  • M
Exposure of Sensitive Information Through Metadata		moodle/moodle<4.1.16>=4.3.0-beta, <4.3.10>=4.4.0-beta, <4.4.6>=4.5.0-beta, <4.5.2Composer25 Feb 2025
  • M
Incorrect Authorization		moodle/moodle<4.1.16>=4.3.0-beta, <4.3.10>=4.4.0-beta, <4.4.6>=4.5.0-beta, <4.5.2Composer25 Feb 2025
  • L
Cross-site Scripting (XSS)		moodle/moodle<4.1.16>=4.3.0-beta, <4.3.10>=4.4.0-beta, <4.4.6>=4.5.0-beta, <4.5.2Composer25 Feb 2025
  • L
Incorrect Authorization		moodle/moodle<4.1.16>=4.3.0-beta, <4.3.10>=4.4.0-beta, <4.4.6>=4.5.0-beta, <4.5.2Composer25 Feb 2025
  • C
SQL Injection		moodle/moodle<4.1.16>=4.3.0-beta, <4.3.10>=4.4.0-beta, <4.4.6>=4.5.0-beta, <4.5.2Composer25 Feb 2025
  • M
Cross-site Scripting (XSS)		moodle/moodle<4.1.16>=4.3.0-beta, <4.3.10>=4.4.0-beta, <4.4.6>=4.5.0-beta, <4.5.2Composer25 Feb 2025
  • M
Incorrect Authorization		moodle/moodle<4.1.16>=4.3.0-beta, <4.3.10>=4.4.0-beta, <4.4.6>=4.5.0-beta, <4.5.2Composer25 Feb 2025
  • M
Cross-site Scripting (XSS)		moodle/moodle>=4.3.0-beta, <4.3.10>=4.4.0-beta, <4.4.6>=4.5.0-beta, <4.5.2Composer25 Feb 2025
  • H
Files or Directories Accessible to External Parties		moodle/moodle<4.1.16>=4.3.0-beta, <4.3.10>=4.4.0-beta, <4.4.6>=4.5.0-beta, <4.5.2Composer25 Feb 2025
  • M
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')		shopxo/shopxo>=0.0.0Composer24 Feb 2025
  • M
Cross-site Scripting (XSS)		leantime/leantime<3.3Composer23 Feb 2025
  • L
Cross-site Scripting (XSS)		leantime/leantime<3.3Composer23 Feb 2025
  • M
Cross-site Scripting (XSS)		leantime/leantime<3.3.0Composer23 Feb 2025
  • L
Missing Authorization		leantime/leantime<3.3Composer23 Feb 2025
  • H
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')		leantime/leantime<3.1.2Composer23 Feb 2025
  • M
Cross-site Request Forgery (CSRF)		leantime/leantime<3.1.2Composer23 Feb 2025
  • M
Insufficiently Protected Credentials		leantime/leantime<3.3Composer23 Feb 2025
  • M
Cross-site Scripting (XSS)		leantime/leantime>=3.1.4, <3.3Composer23 Feb 2025
  • M
Cross-site Scripting (XSS)		leantime/leantime>=0.0.0Composer23 Feb 2025
  • M
Cross-site Scripting (XSS)		leantime/leantime<3.3Composer23 Feb 2025
  • H
Cross-site Scripting (XSS)		leantime/leantime<3.3Composer23 Feb 2025
  • C
Improper Authorization		magento/community-edition<2.4.4-p12>=2.4.5-p1, <2.4.5-p11>=2.4.6-p1, <2.4.6-p9>=2.4.7-beta1, <2.4.7-p4>=2.4.8-beta1, <2.4.8-beta2Composer20 Feb 2025