Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.10.0Composer17 Nov 2024
  • M
Improper Authorization		dolibarr/dolibarr<15.0.0Composer15 Nov 2024
  • C
Deserialization of Untrusted Data		dompdf/dompdf<2.0.0Composer15 Nov 2024
  • C
XML External Entity (XXE) Injection		dompdf/dompdf<2.0.0Composer15 Nov 2024
  • M
Cross-site Scripting (XSS)		unopim/unopim<0.1.5Composer14 Nov 2024
  • H
Access Control Bypass		craftcms/cms>=4.0.0-RC1, <4.12.5>=5.0.0-RC1, <5.4.6Composer14 Nov 2024
  • H
Files or Directories Accessible to External Parties		craftcms/cms>=3.5.13, <4.12.1>=5.0.0-alpha.1, <5.4.2Composer14 Nov 2024
  • H
Arbitrary Code Injection		craftcms/cms>=4.0.0-RC1, <4.12.2>=5.0.0-RC1, <5.4.3Composer14 Nov 2024
  • M
Information Exposure		moodle/moodle>=4.4.0, <4.4.4Composer14 Nov 2024
  • H
Deserialization of Untrusted Data		backpack/filemanager<3.0.9Composer14 Nov 2024
  • H
Authentication Bypass		symfony/security-http>=5.3.0, <5.4.47>=6.0.0-BETA1, <6.4.15>=7.0.0-BETA1, <7.1.8Composer14 Nov 2024
  • H
Authentication Bypass		symfony/symfony>=5.3.0, <5.4.47>=6.0.0-BETA1, <6.4.15>=7.0.0-BETA1, <7.1.8Composer14 Nov 2024
  • M
Cross-site Scripting (XSS)		snipe/snipe-it>0.0.0Composer13 Nov 2024
  • M
CSV Injection		snipe/snipe-it>=0.0.0Composer13 Nov 2024
  • H
Arbitrary Argument Injection		laravel/framework<6.20.45>=7.0.0, <7.30.7>=8.0.0, <8.83.28>=9.0.0, <9.52.17>=10.0.0, <10.48.23>=11.0.0, <11.31.0Composer13 Nov 2024
  • M
Cross-site Scripting (XSS)		moodle/moodle>=4.1.0, <4.1.12>=4.2.0, <4.2.9>=4.3.0, <4.3.6>=4.4.0, <4.4.2Composer12 Nov 2024
  • C
Information Exposure Through Timing Discrepancy		paragonie/ecc<2.0.1Composer12 Nov 2024
  • M
Exposed Dangerous Method or Function		orchid/platform>=8.0, <14.43.0Composer12 Nov 2024
  • M
Improper Authentication		moodle/moodle>=4.4.0, <4.4.2>=4.3.0, <4.3.6Composer11 Nov 2024
  • M
Information Exposure		moodle/moodle>=4.4.0, <4.4.2>=4.3.0, <4.3.6>=4.2.0, <4.2.9>=4.1.0, <4.1.12Composer11 Nov 2024
  • M
Cross-site Scripting (XSS)		moodle/moodle>=4.4.0, <4.4.2>=4.3.0, <4.3.6>=4.2.0, <4.2.9>=4.1.0, <4.1.12Composer11 Nov 2024
  • M
Improper Privilege Management		moodle/moodle>=4.4.0, <4.4.2>=4.3.0, <4.3.6>=4.2.0, <4.2.9>=4.1.0, <4.1.12Composer11 Nov 2024
  • M
Access Control Bypass		moodle/moodle>=4.4.0, <4.4.2Composer11 Nov 2024
  • M
Open Redirect		moodle/moodle>=4.4.0, <4.4.2>=4.3.0, <4.3.6>=4.2.0, <4.2.9>=4.1.0, <4.1.12Composer11 Nov 2024
  • M
Information Exposure		moodle/moodle>=4.4.0, <4.4.2>=4.3.0, <4.3.6>=4.2.0, <4.2.9>=4.1.0, <4.1.12Composer11 Nov 2024
  • H
Arbitrary File Upload		alexstack/laravel-cms>=0.0.0Composer10 Nov 2024
  • H
XML External Entity (XXE) Injection		phpoffice/phpexcel<1.8.1Composer8 Nov 2024
  • H
Improper Input Validation		moodle/moodle<4.1.12>=4.2.0, <4.2.9>=4.3.0, <4.3.6>=4.4.0, <4.4.2Composer8 Nov 2024
  • L
Insecure Default Initialization of Resource		filament/actions>=3.2.0, <3.2.123Composer8 Nov 2024
  • H
SQL Injection		moodle/moodle<4.1.12>=4.2.0, <4.2.9>=4.3.0, <4.3.6>=4.4.0, <4.4.2Composer7 Nov 2024