Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
Cross-site Scripting (XSS)		silverstripe/framework<5.3.8Composer15 Jan 2025
  • M
Cross-site Scripting (XSS)		silverstripe/framework<5.3.8Composer15 Jan 2025
  • M
Cross-site Scripting (XSS)		silverstripe/framework<5.3.8Composer15 Jan 2025
  • M
Cross-site Request Forgery (CSRF)		mediawiki/data-transfer>=1.39.0, <1.39.11>=1.41.0, <1.41.3>=1.42.0, <1.42.2Composer15 Jan 2025
  • M
Exposed Dangerous Method or Function		typo3/cms-belog>=10.0.0, <10.4.48>=11.0.0, <11.5.42>=12.0.0, <12.4.25>=13.0.0, <13.4.3Composer15 Jan 2025
  • M
Exposed Dangerous Method or Function		typo3/cms-beuser>=10.0.0, <10.4.48>=11.0.0, <11.5.42>=12.0.0, <12.4.25>=13.0.0, <13.4.3Composer15 Jan 2025
  • L
Insertion of Sensitive Information into Log File		typo3/cms-install<13.4.3Composer15 Jan 2025
  • M
Open Redirect		typo3/cms-core>=9.0.0, <9.5.49>=10.0.0, <10.4.48>=11.0.0, <11.5.42>=12.0.0, <12.4.25>=13.0.0, <13.4.3Composer15 Jan 2025
  • M
Exposed Dangerous Method or Function		typo3/cms-form>=10.0.0, <10.4.48>=11.0.0, <11.5.42>=12.0.0, <12.4.25>=13.0.0, <13.4.3Composer15 Jan 2025
  • H
Cross-site Request Forgery (CSRF)		typo3/cms-scheduler>=11.0.0, <12.0.0Composer15 Jan 2025
  • M
Exposed Dangerous Method or Function		typo3/cms-lowlevel>=11.0.0, <12.0.0Composer15 Jan 2025
  • M
Exposed Dangerous Method or Function		typo3/cms-indexed-search>=10.0.0, <10.4.48>=11.0.0, <11.5.42>=12.0.0, <12.4.25>=13.0.0, <13.4.3Composer15 Jan 2025
  • M
Exposed Dangerous Method or Function		typo3/cms-dashboard>=10.0.0, <10.4.48>=11.0.0, <11.5.42>=12.0.0, <12.4.25>=13.0.0, <13.4.3Composer15 Jan 2025
  • H
Cross-site Request Forgery (CSRF)		typo3/cms-extensionmanager>=10.0.0, <10.4.48>=11.0.0, <11.5.42>=12.0.0, <12.4.25>=13.0.0, <13.4.3Composer15 Jan 2025
  • M
Cross-site Scripting (XSS)		mediawiki/article-feedbackv5<1.39.11>=1.41, <1.41.3>=1.42, <1.42.2Composer12 Jan 2025
  • M
Missing Authorization		goalgorilla/open_social>=11.8.0, <12.3.10>=12.4.0, <12.4.9Composer10 Jan 2025
  • M
PHP Remote File Inclusion		nesbot/carbon<2.72.6>=3.0.0, <3.8.4Composer9 Jan 2025
  • M
Cross-site Scripting (XSS)		netcarver/textile<4.1.3Composer8 Jan 2025
  • M
Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)		guzzlehttp/oauth-subscriber<0.8.1Composer7 Jan 2025
  • M
Cross-site Scripting (XSS)		phpoffice/phpspreadsheet<1.29.7>=2.0.0, <2.1.6>=2.2.0, <2.3.5>=3.0.0, <3.7.0Composer5 Jan 2025
  • M
Cross-site Scripting (XSS)		phpoffice/phpspreadsheet<1.29.7>=2.0.0, <2.1.6>=2.2.0, <2.3.5>=3.0.0, <3.7.0Composer5 Jan 2025
  • M
Cross-site Scripting (XSS)		phpoffice/phpspreadsheet<1.29.7>=2.0.0, <2.1.6>=2.2.0, <2.3.5>=3.0.0, <3.7.0Composer5 Jan 2025
  • M
Cross-site Scripting (XSS)		phpoffice/phpspreadsheet<1.29.7>=2.0.0, <2.1.6>=2.2.0, <2.3.5>=3.0.0, <3.7.0Composer5 Jan 2025
  • M
Cross-site Scripting (XSS)		phpoffice/phpspreadsheet<1.29.7>=2.0.0, <2.1.6>=2.2.0, <2.3.5>=3.0.0, <3.7.0Composer5 Jan 2025
  • M
Cross-site Scripting (XSS)		phpoffice/phpspreadsheet<1.29.7>=2.0.0, <2.1.6>=2.2.0, <2.3.5>=3.0.0, <3.7.0Composer5 Jan 2025
  • M
Cross-site Scripting (XSS)		phpoffice/phpspreadsheet<1.29.7>=2.0.0, <2.1.6>=2.2.0, <2.3.5>=3.0.0, <3.7.0Composer5 Jan 2025
  • M
Cross-site Scripting (XSS)		phpmyfaq/phpmyfaq>=3.2.10, <4.0.2Composer3 Jan 2025
  • M
Cross-site Scripting (XSS)		dcat/laravel-admin>=2.2.0-betaComposer31 Dec 2024
  • M
Cross-site Scripting (XSS)		dcat/laravel-admin>=2.2.0-betaComposer31 Dec 2024
  • M
Improper Authorization		nilsteampassnet/teampass<3.1.3.1Composer31 Dec 2024