See the full list of npm packages compromised in the "Antv Supply Chain Compromise - May 2026" [View compromised packages].
Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
Affects wwbn/avideo | Versions <26.0
Has fix
ComposerPublished 23 Mar 2026
- H
Directory TraversalCVE-2026-33238
Affects wwbn/avideo | Versions <26.0
Has fix
ComposerPublished 23 Mar 2026
- M
Cross-site Scripting (XSS)CVE-2026-33499
Affects wwbn/avideo | Versions <29.0
Has fix
ComposerPublished 23 Mar 2026
- H
Server-side Request Forgery (SSRF)CVE-2026-33237
Affects wwbn/avideo | Versions <26.0
Has fix
ComposerPublished 23 Mar 2026
- H
Directory TraversalCVE-2025-55988
Affects dreamfactory/df-core | Versions >=1.0.3, <1.0.4
Has fix
ComposerPublished 23 Mar 2026
- M
Missing AuthorizationCVE-2026-33177
Affects statamic/cms | Versions <5.73.14>=6.0.0-alpha.1, <6.7.0
Has fix
ComposerPublished 23 Mar 2026
- H
Cross-site Scripting (XSS)CVE-2026-33172
Affects statamic/cms | Versions <5.73.14>=6.0.0-alpha.1, <6.7.0
Has fix
ComposerPublished 23 Mar 2026
- M
Directory TraversalCVE-2026-33171
Affects statamic/cms | Versions <5.73.14>=6.0.0-alpha.1, <6.7.0
Has fix
ComposerPublished 23 Mar 2026
- M
Cross-site Scripting (XSS)CVE-2026-33080
Affects filament/tables | Versions >=4.0.0, <4.8.5>=5.0.0, <5.3.5
Has fix
ComposerPublished 20 Mar 2026
- H
Timing AttackCVE-2026-32935
Affects phpseclib/phpseclib | Versions <1.0.27>=2.0.0, <2.0.52>=3.0.0, <3.0.50
Has fix
ComposerPublished 20 Mar 2026
- M
Information ExposureCVE-2025-13785
Affects yungifez/skuul | Versions >=0.0.0
Has fix
ComposerPublished 18 Mar 2026
- H
SQL InjectionCVE-2025-69214
Affects devcode-it/openstamanager | Versions <2.10-beta
Has fix
ComposerPublished 18 Mar 2026
- M
Cross-site Scripting (XSS)CVE-2026-33051
Affects craftcms/cms | Versions >=5.9.0-beta.1, <5.9.11
Has fix
ComposerPublished 18 Mar 2026
- M
Deserialization of Untrusted DataCVE-2026-1323
Affects cpsit/typo3-mailqueue | Versions <0.4.5>=0.5.0, <0.5.2
Has fix
ComposerPublished 18 Mar 2026
- L
Missing AuthorizationCVE-2026-4202
Affects ayacoo/redirect-tab | Versions <2.1.2>=3.0.0, <3.1.7>=4.0.0, <4.0.5
Has fix
ComposerPublished 18 Mar 2026
- M
Cross-site Scripting (XSS)CVE-2026-4175
Affects aureuserp/aureuserp | Versions <1.3.0-BETA1
Has fix
ComposerPublished 18 Mar 2026
- H
Authorization Bypass Through User-Controlled KeyCVE-2026-4208
Affects ralffreit/mfa-email | Versions <1.0.7>=2.0.0, <2.0.1
Has fix
ComposerPublished 18 Mar 2026
- M
Missing AuthorizationCVE-2026-32265
Affects craftcms/aws-s3 | Versions >=2.0.2, <2.2.5
Has fix
ComposerPublished 18 Mar 2026
Affects craftcms/webhooks | Versions >=3.0.0-beta.1, <3.2.0
Has fix
ComposerPublished 18 Mar 2026
- M
Missing Authentication for Critical FunctionCVE-2026-32266
Affects craftcms/google-cloud | Versions >=2.0.0-beta.1, <2.2.1
Has fix
ComposerPublished 18 Mar 2026
- H
Missing AuthorizationCVE-2026-32268
Affects craftcms/azure-blob | Versions >=2.0.0-beta.1, <2.1.1
Has fix
ComposerPublished 18 Mar 2026
- M
Cross-site Scripting (XSS)CVE-2026-32757
Affects admidio/admidio | Versions <5.0.7
Has fix
ComposerPublished 18 Mar 2026
- M
Cross-site Request Forgery (CSRF)CVE-2026-32755
Affects admidio/admidio | Versions <5.0.7
Has fix
ComposerPublished 18 Mar 2026
- H
Missing AuthorizationCVE-2026-32818
Affects admidio/admidio | Versions >=5.0-Beta.1, <5.0.7
Has fix
ComposerPublished 18 Mar 2026
- H
Missing AuthorizationCVE-2026-32817
Affects admidio/admidio | Versions >=5.0-Beta.1, <5.0.7
Has fix
ComposerPublished 18 Mar 2026
- M
Server-side Request Forgery (SSRF)CVE-2026-32812
Affects admidio/admidio | Versions >=5.0-Beta.1, <5.0.7
Has fix
ComposerPublished 18 Mar 2026
- H
Arbitrary File UploadCVE-2026-32756
Affects admidio/admidio | Versions <5.0.7
Has fix
ComposerPublished 18 Mar 2026
- H
SQL InjectionCVE-2026-32813
Affects admidio/admidio | Versions <5.0.7
Has fix
ComposerPublished 18 Mar 2026
- M
Cross-site Request Forgery (CSRF)CVE-2026-32816
Affects admidio/admidio | Versions >=5.0-Beta.1, <5.0.7
Has fix
ComposerPublished 18 Mar 2026