About Snyk
Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
Expand this section
PACKAGE MANAGER
any
cocoapods
Composer
Go
hex
Linux
Maven
npm
NuGet
pip
RubyGems
Unmanaged (C/C++)
Report a new vulnerability
VULNERABILITY
AFFECTS
TYPE
PUBLISHED
L
Cross-site Scripting (XSS)
remdex/livehelperchat
Open this link in a new tab
<3.99
Composer
4 May 2022
M
Cross-site Scripting (XSS)
microweber/microweber
Open this link in a new tab
>=0.0.0
Composer
4 May 2022
C
Remote Code Execution (RCE)
shopxo/shopxo
Open this link in a new tab
>=0.0.0
Composer
3 May 2022
M
Information Exposure
snipe/snipe-it
Open this link in a new tab
>=0.3.0-alpha, <5.3.8
Composer
2 May 2022
H
Incorrect Authorization
moodle/moodle
Open this link in a new tab
>=3.9, <3.9.13
>=3.10, <3.10.10
>=3.11, <3.11.6
>=4.0.0-rc1, <4.0.0
Composer
1 May 2022
H
Improper Neutralization of Formula Elements in a CSV File
luyadev/yii-helpers
Open this link in a new tab
<1.2.1
Composer
1 May 2022
M
Information Exposure
mediawiki/core
Open this link in a new tab
>=0.0.0
Composer
1 May 2022
L
Cross-site Scripting (XSS)
automad/automad
Open this link in a new tab
>=0.0.0
Composer
1 May 2022
H
Improper Authentication
moodle/moodle
Open this link in a new tab
>=3.9, <3.9.13
>=3.10, <3.10.10
>=3.11, <3.11.6
>=4.0.0-rc1, <4.0.0
Composer
1 May 2022
C
Improper Preservation of Permissions
ibexa/core
Open this link in a new tab
>=4.0.0, <4.0.5
>=4.1.0, <4.1.2
Composer
1 May 2022
C
Improper Preservation of Permissions
ezsystems/ezplatform-kernel
Open this link in a new tab
>=1.3.0, <1.3.17
>=7.5.0, <7.5.28
Composer
1 May 2022
H
Information Exposure
zendframework/zend-http
Open this link in a new tab
>=1.0.0, <2.8.1
Composer
29 Apr 2022
H
Information Exposure
zendframework/zend-feed
Open this link in a new tab
>=1.0.0, <2.10.3
Composer
29 Apr 2022
H
Information Exposure
zendframework/zend-diactoros
Open this link in a new tab
>=1.0.0, <1.8.4
Composer
29 Apr 2022
M
Cross-site Scripting (XSS)
shopware/shopware
Open this link in a new tab
>=5.0.0, <5.7.9
Composer
29 Apr 2022
M
Weak Password Recovery Mechanism for Forgotten Password
shopware/shopware
Open this link in a new tab
>=5.0.4, <5.7.9
Composer
29 Apr 2022
M
Cross-site Request Forgery (CSRF)
shopware/shopware
Open this link in a new tab
>=5.2.0, <5.7.9
Composer
29 Apr 2022
M
Access Restriction Bypass
snipe/snipe-it
Open this link in a new tab
>=0.0.0
Composer
29 Apr 2022
M
Cross-site Scripting (XSS)
facturascripts/facturascripts
Open this link in a new tab
>=0.0.0
Composer
29 Apr 2022
M
Access Control Bypass
drupal/core
Open this link in a new tab
>=9.3.0, <9.3.12
Composer
27 Apr 2022
H
Remote Code Execution (RCE)
bolt/core
Open this link in a new tab
>=0.0.0
Composer
27 Apr 2022
H
Improper Input Validation
pocketmine/pocketmine-mp
Open this link in a new tab
<4.2.9
Composer
27 Apr 2022
L
Cross-site Scripting (XSS)
getgrav/grav
Open this link in a new tab
<1.7.33
Composer
27 Apr 2022
H
Improper Input Validation
drupal/core
Open this link in a new tab
>=9.0.0, <9.2.18
>=9.3.0, <9.3.12
Composer
27 Apr 2022
M
Cross-site Scripting (XSS)
microweber/microweber
Open this link in a new tab
>=0.0.0
Composer
27 Apr 2022
M
Cross-site Scripting (XSS)
s-cart/s-cart
Open this link in a new tab
<6.9
Composer
26 Apr 2022
M
Cross-site Scripting (XSS)
s-cart/core
Open this link in a new tab
<6.9
Composer
26 Apr 2022
C
Cross-site Scripting (XSS)
facturascripts/facturascripts
Open this link in a new tab
>=0.0.0
Composer
25 Apr 2022
H
Command Injection
czproject/git-php
Open this link in a new tab
<4.0.3
Composer
25 Apr 2022
C
Cross-site Scripting (XSS)
snipe/snipe-it
Open this link in a new tab
>=0.0.0
Composer
25 Apr 2022