Homepage
About Snyk

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Expand this section

APPLICATION

Expand this section

OPERATING SYSTEM

Report a new vulnerability
VULNERABILITY AFFECTS TYPE PUBLISHED
  • H
Arbitrary Command Injection 		wwbn/avideo >=12.3 Composer 14 May 2023
  • H
HTTP Header Injection 		lavalite/cms >=0.0.0 Composer 14 May 2023
  • M
Cross-site Scripting (XSS) 		prestashop/prestashop >=0.0.0 Composer 14 May 2023
  • H
Arbitrary Code Execution 		craftcms/cms >=0.0.0 Composer 14 May 2023
  • M
Expected Behavior Violation 		pimcore/customer-management-framework-bundle <3.3.9 Composer 12 May 2023
  • H
Allocation of Resources Without Limits or Throttling 		froxlor/froxlor <2.0.16 Composer 12 May 2023
  • M
Generation of Predictable Numbers or Identifiers 		francoisjacquet/rosariosis >=0.0.0 Composer 12 May 2023
  • M
CSV Injection 		pimcore/customer-management-framework-bundle <3.3.9 Composer 11 May 2023
  • M
Cross-site Scripting (XSS) 		pimcore/pimcore <10.5.21 Composer 10 May 2023
  • M
Cross-site Scripting (XSS) 		pimcore/pimcore <10.5.21 Composer 10 May 2023
  • M
Cross-site Scripting (XSS) 		pimcore/pimcore <10.5.21 Composer 10 May 2023
  • M
Cross-site Scripting (XSS) 		nilsteampassnet/teampass >=0.0.0 Composer 9 May 2023
  • M
Cross-site Scripting (XSS) 		craftcms/cms <3.8.4 >=4.0.0, <4.4.4 Composer 7 May 2023
  • M
Cross-site Scripting (XSS) 		thorsten/phpmyfaq <3.1.13 Composer 7 May 2023
  • M
Cross-site Scripting (XSS) 		nilsteampassnet/teampass <3.0.7 Composer 7 May 2023
  • M
Cross-site Scripting (XSS) 		thorsten/phpmyfaq <3.1.13 Composer 7 May 2023
  • H
Brute Force 		azuracast/azuracast >=0.0.0 Composer 5 May 2023
  • L
Cross-site Scripting (XSS) 		funadmin/funadmin >=0.0.0 Composer 4 May 2023
  • H
Directory Traversal 		pimcore/pimcore <10.5.18 Composer 3 May 2023
  • H
SQL Injection 		moodle/moodle >=3.9, <3.9.21 >=3.11, <3.11.14 >=4.0, <4.0.8 >=4.1, <4.1.3 Composer 3 May 2023
  • M
CSV Injection 		francoisjacquet/rosariosis <10.9.5 Composer 3 May 2023
  • M
External Control of File Name or Path 		moodle/moodle >=4.1.0, <4.1.3 Composer 3 May 2023
  • H
Cross-site Scripting (XSS) 		wwbn/avideo <12.4 Composer 2 May 2023
  • M
Cross-site Scripting (XSS) 		thorsten/phpmyfaq <3.1.13 Composer 30 Apr 2023
  • M
Access Restriction Bypass 		thorsten/phpmyfaq <3.1.13 Composer 30 Apr 2023
  • M
Cross-site Scripting (XSS) 		concrete5/concrete5 <9.2.0 Composer 30 Apr 2023
  • L
Cross-site Scripting (XSS) 		concrete5/concrete5 <9.1.0 Composer 30 Apr 2023
  • M
Weak Password Requirements 		concrete5/concrete5 <9.1.0 Composer 30 Apr 2023
  • M
Cross-site Scripting (XSS) 		concrete5/concrete5 <9.1.0 Composer 30 Apr 2023
  • M
Cross-site Scripting (XSS) 		concrete5/concrete5 <9.2.0 Composer 30 Apr 2023