Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Cross-site Scripting (XSS)CVE-2025-6590
Affects mediawiki/core | Versions <1.39.12>=1.42.0, <1.42.76>=1.43.0, <1.43.1
Has fix
ComposerPublished 6 Feb 2026
  • M
Allocation of Resources Without Limits or ThrottlingCVE-2025-61641
Affects mediawiki/core | Versions <1.39.14>=1.43.0, <1.43.4>=1.44.0, <1.44.1
Has fix
ComposerPublished 6 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2026-22254
Affects winter/wn-cms-module | Versions <1.2.10
Has fix
ComposerPublished 5 Feb 2026
  • M
Exposure of Sensitive System Information to an Unauthorized Control SphereCVE-2025-61646
Affects mediawiki/core | Versions <1.39.14>=1.40.0-rc.0, <1.43.4>=1.44.0-rc.0, <1.44.1
Has fix
ComposerPublished 5 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2025-70958
Affects intelliants/subrion | Versions >=0.0.0
Has fix
ComposerPublished 5 Feb 2026
  • L
Improper Ownership ManagementCVE-2025-6592
Affects mediawiki/abuse-filter | Versions <1.43.2
Has fix
ComposerPublished 5 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2026-25485
Affects craftcms/commerce | Versions >=4.0.0-beta.1, <4.10.1>=5.0.0-beta.1, <5.5.2
Has fix
ComposerPublished 4 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2026-25490
Affects craftcms/commerce | Versions >=4.0.0-beta.1, <4.10.1>=5.0.0-beta.1, <5.5.2
Has fix
ComposerPublished 4 Feb 2026
  • M
Cross-site Scripting (XSS)
Affects craftcms/commerce | Versions >=4.0.0-beta.1, <4.10.1>=5.0.0-beta.1, <5.5.2
Has fix
ComposerPublished 4 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2026-25488
Affects craftcms/commerce | Versions >=4.0.0-beta.1, <4.10.1>=5.0.0-beta.1, <5.5.2
Has fix
ComposerPublished 4 Feb 2026
  • M
Insertion of Sensitive Information Into Sent DataCVE-2025-67476
Affects mediawiki/core | Versions <1.44.3>=1.45.0, <1.45.1
Has fix
ComposerPublished 4 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2025-61645
Affects mediawiki/core | Versions <1.44.1
Has fix
ComposerPublished 4 Feb 2026
  • M
Improperly Controlled Modification of Dynamically-Determined Object AttributesCVE-2025-67479
Affects mediawiki/core | Versions <1.39.14>=1.42.0, <1.43.4>=1.44.0, <1.44.1
Has fix
ComposerPublished 4 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2025-11261
Affects mediawiki/core | Versions <1.39.15>=1.42.0, <1.43.5>=1.44.0, <1.44.2
Has fix
ComposerPublished 4 Feb 2026
  • L
Cross-site Scripting (XSS)CVE-2025-67483
Affects mediawiki/core | Versions <1.43.6>=1.44.0, <1.44.3>=1.45.0, <1.45.1
Has fix
ComposerPublished 4 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2025-67484
Affects mediawiki/core | Versions <1.39.16>=1.42.0, <1.43.6>=1.44.0, <1.44.3>=1.45.0, <1.45.1
Has fix
ComposerPublished 4 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2025-61642
Affects mediawiki/core | Versions <1.39.14>=1.40.0, <1.43.4>=1.44.0, <1.44.1
Has fix
ComposerPublished 4 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2025-61637
Affects mediawiki/core | Versions <1.39.14>=1.42.0, <1.43.4>=1.44.0, <1.44.1
Has fix
ComposerPublished 4 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2025-67477
Affects mediawiki/core | Versions <1.44.3>=1.45.0, <1.45.1
Has fix
ComposerPublished 4 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2025-67475
Affects mediawiki/core | Versions <1.39.16>=1.42.0, <1.43.6>=1.44.0, <1.44.3>=1.45.0, <1.45.1
Has fix
ComposerPublished 4 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2025-61640
Affects mediawiki/core | Versions <1.39.14>=1.40.0, <1.43.4>=1.44.0, <1.44.1
Has fix
ComposerPublished 4 Feb 2026
  • L
Information ExposureCVE-2025-6593
Affects mediawiki/core | Versions <1.39.13>=1.42.0, <1.42.7>=1.43.0, <1.43.2
Has fix
ComposerPublished 4 Feb 2026
  • L
Information ExposureCVE-2025-6589
Affects mediawiki/core | Versions <1.39.13>=1.42.0, <1.42.7>=1.43.0, <1.43.2
Has fix
ComposerPublished 4 Feb 2026
  • L
Information ExposureCVE-2025-6927
Affects mediawiki/core | Versions <1.39.13>=1.42.0, <1.42.7>=1.43.0, <1.43.2
Has fix
ComposerPublished 4 Feb 2026
  • L
Improper AuthenticationCVE-2025-6597
Affects mediawiki/core | Versions <1.39.13>=1.42.0, <1.42.7>=1.43.0, <1.43.2
Has fix
ComposerPublished 4 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2026-25489
Affects craftcms/commerce | Versions >=4.0.0-beta.1, <4.10.1>=5.0.0-beta.1, <5.5.2
Has fix
ComposerPublished 4 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2025-6594
Affects mediawiki/core | Versions >=1.27.0, <1.39.13>=1.42.7, <1.42.8>=1.43.2, <1.43.3>=1.44.0, <1.44.1
Has fix
ComposerPublished 4 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2025-61636
Affects mediawiki/core | Versions <1.39.14>=1.43.0, <1.43.4>=1.44.0, <1.44.1
Has fix
ComposerPublished 4 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2026-25484
Affects craftcms/commerce | Versions >=4.0.0-beta.1, <4.10.1>=5.0.0-beta.1, <5.5.2
Has fix
ComposerPublished 4 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2026-25482
Affects craftcms/commerce | Versions >=4.0.0-beta.1, <4.10.1>=5.0.0-beta.1, <5.5.2
Has fix
ComposerPublished 4 Feb 2026