Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • H
Arbitrary File Upload		typo3/cms>=6.0.0, <6.0.8>=6.1.0, <6.1.3Composer22 Apr 2025
  • M
Cross-site Scripting (XSS)		concrete5/concrete5>=0.0.0Composer21 Apr 2025
  • M
Cross-site Scripting (XSS)		concrete5/concrete5<5.7.4Composer21 Apr 2025
  • M
Cross-site Scripting (XSS)		concrete5/concrete5>=0.0.0Composer21 Apr 2025
  • M
Cross-site Scripting (XSS)		concrete5/concrete5>=0.0.0Composer21 Apr 2025
  • M
Cross-site Scripting (XSS)		concrete5/concrete5>=0.0.0Composer21 Apr 2025
  • M
Arbitrary Code Injection		billz/raspap-webgui<3.10.0Composer18 Apr 2025
  • H
XML External Entity (XXE) Injection		ibexa/fieldtype-richtext>=4.6.0-beta1, <4.6.19Composer18 Apr 2025
  • H
XML External Entity (XXE) Injection		ezsystems/ezplatform-richtext>=2.3.0-beta1, <2.3.26Composer18 Apr 2025
  • M
Cross-site Request Forgery (CSRF)		wallabag/wallabag<2.6.11Composer18 Apr 2025
  • M
Deserialization of Untrusted Data		yiisoft/yii2>=0.0.0Composer17 Apr 2025
  • L
Missing Authorization		goalgorilla/open_social<12.3.11>=12.4.0, <12.4.10Composer14 Apr 2025
  • M
Missing Authorization		goalgorilla/open_social<12.3.11>=12.4.0, <12.4.10Composer14 Apr 2025
  • M
Cross-site Scripting (XSS)		digimix/wp-svg-upload>=0.0.0Composer14 Apr 2025
  • H
Directory Traversal		yeswiki/yeswiki<4.5.2Composer14 Apr 2025
  • M
Cross-site Scripting (XSS)		concrete5/concrete5>=0.0.0Composer14 Apr 2025
  • M
Server-side Request Forgery (SSRF)		shopxo/shopxo>=0.0.0Composer14 Apr 2025
  • M
Server-side Request Forgery (SSRF)		shopxo/shopxo>=0.0.0Composer14 Apr 2025
  • M
Cross-site Scripting (XSS)		shopxo/shopxo>=0.0.0Composer14 Apr 2025
  • M
SQL Injection		joomla/database<2.2.0>=3.0.0, <3.4.0Composer13 Apr 2025
  • M
Incorrect Authorization		pixelfed/pixelfed<0.12.5Composer13 Apr 2025
  • M
Cross-site Scripting (XSS)		verbb/formie<2.1.44>=3.0.0-beta.1, <3.0.23Composer13 Apr 2025
  • M
Cross-site Scripting (XSS)		verbb/formie<2.1.44>=3.0.0-beta.1, <3.0.23Composer13 Apr 2025
  • M
Observable Discrepancy		silverstripe/framework>=4.0.0, <5.3.23Composer11 Apr 2025
  • M
Cross-site Scripting (XSS)		silverstripe/framework<5.3.23Composer11 Apr 2025
  • M
Cross-site Scripting (XSS)		yiisoft/yii<1.1.31Composer11 Apr 2025
  • H
Access of Uninitialized Pointer		rudloff/rtmpdump-bin>=0.0.0Composer10 Apr 2025
  • H
Access of Uninitialized Pointer		rudloff/rtmpdump-bin>=0.0.0Composer10 Apr 2025
  • H
NULL Pointer Dereference		rudloff/rtmpdump-bin>=0.0.0Composer10 Apr 2025
  • C
Improper Protection of Alternate Path		yiisoft/yii2>=2.0.50, <2.0.52Composer10 Apr 2025