Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • C
Arbitrary Code Injection
pterodactyl/panel>=0.0.0, <1.11.11Composer20 Jun 2025
  • M
Incorrect Authorization
magento/community-edition<2.4.4-p13>=2.4.5, <2.4.5-p12>=2.4.6, <2.4.6-p10>=2.4.7-beta1, <2.4.7-p5>=2.4.8-beta1, <2.4.8Composer19 Jun 2025
  • M
Cross-site Scripting (XSS)
nitsan/ns-backup<13.0.1Composer19 Jun 2025
  • H
Direct Request ('Forced Browsing')
nitsan/ns-backup<13.0.1Composer19 Jun 2025
  • H
Command Injection
nitsan/ns-backup<13.0.1Composer19 Jun 2025
  • M
Authorization Bypass Through User-Controlled Key
renolit/reint-downloadmanager<4.0.2>=5.0.0, <5.0.1Composer19 Jun 2025
  • M
Cross-site Scripting (XSS)
koillection/koillection<1.6.11Composer19 Jun 2025
  • H
External Control of File Name or Path
elmsln/haxcms>=0.0.0Composer18 Jun 2025
  • H
Cross-site Scripting (XSS)
starcitizentools/citizen-skin>=2.13.0, <3.3.1Composer17 Jun 2025
  • H
Cross-site Scripting (XSS)
starcitizentools/citizen-skin>=2.4.2, <3.3.1Composer17 Jun 2025
  • H
Cross-site Scripting (XSS)
starcitizentools/citizen-skin>=3.3.0, <3.3.1Composer17 Jun 2025
  • H
Cross-site Scripting (XSS)
starcitizentools/citizen-skin>=2.31.0, <3.3.1Composer17 Jun 2025
  • H
Cross-site Scripting (XSS)
starcitizentools/citizen-skin>=2.4.2, <3.3.1Composer17 Jun 2025
  • H
Arbitrary Code Injection
litepubl/cms>=5.97Composer17 Jun 2025
  • L
Cross-site Scripting (XSS)
mantisbt/mantisbt<1.3.1Composer15 Jun 2025
  • M
Cross-site Scripting (XSS)
mantisbt/mantisbt<1.3.9>=2.0.0, <2.1.3>=2.2.0, <2.2.3Composer15 Jun 2025
  • M
Cross-site Scripting (XSS)
mantisbt/mantisbt<1.3.8>=2.0.0, <2.1.2>=2.2.0, <2.2.2Composer15 Jun 2025
  • M
Cross-site Scripting (XSS)
mantisbt/mantisbt<2.25.5Composer15 Jun 2025
  • M
Cross-site Scripting (XSS)
mantisbt/mantisbt>=2.0.0, <2.5.2Composer15 Jun 2025
  • M
Cross-site Scripting (XSS)
mantisbt/mantisbt<1.3.9>=2.1.0, <2.1.3>=2.2.0, <2.2.3Composer15 Jun 2025
  • M
Cross-site Scripting (XSS)
mantisbt/mantisbt>=0.0.0Composer15 Jun 2025
  • M
Cross-site Scripting (XSS)
tobiasbg/tablepress<2.3.2Composer15 Jun 2025
  • M
Cross-site Scripting (XSS)
wikimedia/parsoid<0.16.5>=0.17.0-a1, <0.19.2>=0.20.0-a1, <0.20.2Composer13 Jun 2025
  • M
Cross-site Scripting (XSS)
mediawiki/core<1.39.12>=1.42.0-rc.0, <1.42.6>=1.43.0-rc.0, <1.43.1Composer13 Jun 2025
  • L
Exposure of Sensitive System Information to an Unauthorized Control Sphere
mediawiki/core>=1.31, <1.39.12>=1.42.0-rc.0, <1.42.6>=1.43.0-rc.0, <1.43.1Composer13 Jun 2025
  • L
Exposure of Sensitive System Information to an Unauthorized Control Sphere
mediawiki/abuse-filter>=1.43.0, <1.44Composer13 Jun 2025
  • L
Improper Preservation of Permissions
mediawiki/core<1.39.12>=1.42.0-rc.0, <1.42.6>=1.43.0-rc.0, <1.43.1Composer13 Jun 2025
  • M
Improper Encoding or Escaping of Output
mediawiki/core<1.39.12>=1.42.0-rc.0, <1.42.6>=1.43.0-rc.0, <1.43.1Composer13 Jun 2025
  • C
Improper Encoding or Escaping of Output
wikibase/wikibase>=1.39, <1.44Composer13 Jun 2025
  • M
Direct Request ('Forced Browsing')
snipe/snipe-it<8.1.0Composer12 Jun 2025