Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
H Incorrect Authorization	magento/community-edition<2.4.6-p13>=2.4.7-beta1, <2.4.7-p8>=2.4.8-beta1, <2.4.8-p3>=2.4.9-alpha1, <2.4.9-alpha3	Composer	23 Oct 2025
M Cross-site Scripting (XSS)	magento/community-edition<2.4.6-p13>=2.4.7-beta1, <2.4.7-p8>=2.4.8-beta1, <2.4.8-p3>=2.4.9-alpha1, <2.4.9-alpha3	Composer	23 Oct 2025
H Incorrect Authorization	magento/community-edition<2.4.6-p13>=2.4.7-beta1, <2.4.7-p8>=2.4.8-beta1, <2.4.8-p3>=2.4.9-alpha1, <2.4.9-alpha3	Composer	23 Oct 2025
H Improper Removal of Sensitive Information Before Storage or Transfer	shopware/core<6.6.10.7>=6.7.0.0, <6.7.3.1	Composer	22 Oct 2025
H Directory Traversal	shopware/core<6.6.10.7>=6.7.0.0, <6.7.3.1	Composer	22 Oct 2025
M Missing Authorization	shopware/storefront<6.6.10.7>=6.7.0.0, <6.7.3.1	Composer	22 Oct 2025
M Missing Authorization	shopware/core<6.6.10.7>=6.7.0.0, <6.7.3.1	Composer	22 Oct 2025
M Incorrect Authorization	shopware/core<6.6.10.7>=6.7.0.0, <6.7.3.1	Composer	22 Oct 2025
M Data Amplification	processwire/processwire>=0.0.0	Composer	22 Oct 2025
M Cross-site Scripting (XSS)	code16/sharp<9.7.0	Composer	22 Oct 2025
M Server-side Request Forgery (SSRF)	shopware/platform<6.6.10.7>=6.7.0.0-dev, <6.7.3.1	Composer	22 Oct 2025
M Server-side Request Forgery (SSRF)	shopware/core<6.6.10.7>=6.7.0.0-dev, <6.7.3.1	Composer	22 Oct 2025
M Cross-site Scripting (XSS)	tastyigniter/tastyigniter>=0.0.0	Composer	21 Oct 2025
H Incorrect Authorization	magento/community-edition<2.4.6-p13>=2.4.7-beta1, <2.4.7-p8>=2.4.8-beta1, <2.4.8-p3>=2.4.9-alpha1, <2.4.9-alpha3	Composer	21 Oct 2025
M Cross-site Scripting (XSS)	mediawiki/cargo<3.8.3	Composer	20 Oct 2025
H SQL Injection	mediawiki/cargo<3.8.4	Composer	20 Oct 2025
M Incomplete List of Disallowed Inputs	prestashop/ps_checkout<5.0.5>=7.3.1.0, <7.4.4.1>=8.3.1.0, <8.4.4.1	Composer	20 Oct 2025
M Directory Traversal	prestashop/ps_checkout<5.0.5>=7.3.1.0, <7.4.4.1>=8.3.1.0, <8.4.4.1	Composer	20 Oct 2025
C Missing Authentication for Critical Function	prestashop/ps_checkout<5.0.5>=7.3.1.0, <7.4.4.1>=8.3.1.0, <8.4.4.1	Composer	20 Oct 2025
M Cross-site Scripting (XSS)	ibexa/fieldtype-richtext<4.6.25>=5.0.0, <5.0.3	Composer	20 Oct 2025
M Cross-site Scripting (XSS)	librenms/librenms<25.10.0	Composer	19 Oct 2025
M Cross-site Scripting (XSS)	librenms/librenms<25.10.0	Composer	19 Oct 2025
M Information Exposure	ibexa/user<5.0.3	Composer	19 Oct 2025
H Cross-site Scripting (XSS)	ibexa/admin-ui>=4.6.0, <4.6.25>=5.0.0, <5.0.3	Composer	19 Oct 2025
H Cross-site Scripting (XSS)	ezsystems/ezplatform-admin-ui<2.3.39	Composer	19 Oct 2025
H Improper Validation of Specified Quantity in Input	bagisto/bagisto<2.3.7	Composer	14 Oct 2025
M Cross-site Scripting (XSS)	librenms/librenms<25.7.0	Composer	14 Oct 2025
M Cross-site Scripting (XSS)	bagisto/bagisto<2.3.7	Composer	14 Oct 2025
M Improper Validation of Unsafe Equivalence in Input	alt-design/alt-redirect>=1.4.0, <1.6.4	Composer	13 Oct 2025
M Cross-site Scripting (XSS)	webreinvent/vaahcms>=0.0.0, <2.3.2	Composer	9 Oct 2025

APPLICATION

OPERATING SYSTEM