Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • H
Arbitrary File Upload
typo3/cms>=6.0.0, <6.0.8>=6.1.0, <6.1.3Composer22 Apr 2025
  • M
Cross-site Scripting (XSS)
concrete5/concrete5>=0.0.0Composer21 Apr 2025
  • M
Cross-site Scripting (XSS)
concrete5/concrete5<5.7.4Composer21 Apr 2025
  • M
Cross-site Scripting (XSS)
concrete5/concrete5>=0.0.0Composer21 Apr 2025
  • M
Cross-site Scripting (XSS)
concrete5/concrete5>=0.0.0Composer21 Apr 2025
  • M
Cross-site Scripting (XSS)
concrete5/concrete5>=0.0.0Composer21 Apr 2025
  • M
Arbitrary Code Injection
billz/raspap-webgui<3.10.0Composer18 Apr 2025
  • H
XML External Entity (XXE) Injection
ibexa/fieldtype-richtext>=4.6.0-beta1, <4.6.19Composer18 Apr 2025
  • H
XML External Entity (XXE) Injection
ezsystems/ezplatform-richtext>=2.3.0-beta1, <2.3.26Composer18 Apr 2025
  • M
Cross-site Request Forgery (CSRF)
wallabag/wallabag<2.6.11Composer18 Apr 2025
  • M
Deserialization of Untrusted Data
yiisoft/yii2>=0.0.0Composer17 Apr 2025
  • L
Missing Authorization
goalgorilla/open_social<12.3.11>=12.4.0, <12.4.10Composer14 Apr 2025
  • M
Missing Authorization
goalgorilla/open_social<12.3.11>=12.4.0, <12.4.10Composer14 Apr 2025
  • M
Cross-site Scripting (XSS)
digimix/wp-svg-upload>=0.0.0Composer14 Apr 2025
  • H
Directory Traversal
yeswiki/yeswiki<4.5.2Composer14 Apr 2025
  • M
Cross-site Scripting (XSS)
concrete5/concrete5>=0.0.0Composer14 Apr 2025
  • M
Server-side Request Forgery (SSRF)
shopxo/shopxo>=0.0.0Composer14 Apr 2025
  • M
Server-side Request Forgery (SSRF)
shopxo/shopxo>=0.0.0Composer14 Apr 2025
  • M
Cross-site Scripting (XSS)
shopxo/shopxo>=0.0.0Composer14 Apr 2025
  • M
SQL Injection
joomla/database<2.2.0>=3.0.0, <3.4.0Composer13 Apr 2025
  • M
Incorrect Authorization
pixelfed/pixelfed<0.12.5Composer13 Apr 2025
  • M
Cross-site Scripting (XSS)
verbb/formie<2.1.44>=3.0.0-beta.1, <3.0.23Composer13 Apr 2025
  • M
Cross-site Scripting (XSS)
verbb/formie<2.1.44>=3.0.0-beta.1, <3.0.23Composer13 Apr 2025
  • M
Observable Discrepancy
silverstripe/framework>=4.0.0, <5.3.23Composer11 Apr 2025
  • M
Cross-site Scripting (XSS)
silverstripe/framework<5.3.23Composer11 Apr 2025
  • M
Cross-site Scripting (XSS)
yiisoft/yii<1.1.31Composer11 Apr 2025
  • H
Access of Uninitialized Pointer
rudloff/rtmpdump-bin>=0.0.0Composer10 Apr 2025
  • H
Access of Uninitialized Pointer
rudloff/rtmpdump-bin>=0.0.0Composer10 Apr 2025
  • H
NULL Pointer Dereference
rudloff/rtmpdump-bin>=0.0.0Composer10 Apr 2025
  • C
Improper Protection of Alternate Path
yiisoft/yii2>=2.0.50, <2.0.52Composer10 Apr 2025