Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Missing AuthorizationCVE-2026-41128
Affects craftcms/cms | Versions >=5.6.0, <5.9.15
Has fix
ComposerPublished 19 Apr 2026
  • M
HTTP Response SplittingCVE-2026-39971
Affects s9y/serendipity | Versions <2.6.0
Has fix
ComposerPublished 19 Apr 2026
  • M
Reliance on Cookies without Validation and Integrity CheckingCVE-2026-39963
Affects s9y/serendipity | Versions <2.6.0
Has fix
ComposerPublished 19 Apr 2026
  • M
Incorrect AuthorizationCVE-2026-24749
Affects silverstripe/assets | Versions <2.4.5>=3.0.0-alpha1, <3.1.3
Has fix
ComposerPublished 19 Apr 2026
  • H
CRLF InjectionCVE-2026-41570
Affects phpunit/phpunit | Versions <12.5.22>=13.0.0, <13.1.6
Has fix
ComposerPublished 19 Apr 2026
  • M
Cross-site Request Forgery (CSRF)
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 Apr 2026
  • H
Directory Traversal
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-41061
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 Apr 2026
  • M
Cross-site Request Forgery (CSRF)
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 Apr 2026
  • M
Guessable CAPTCHA
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 Apr 2026
  • H
Server-side Request Forgery (SSRF)
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 Apr 2026
  • H
Permissive Cross-domain Policy with Untrusted Domains
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 Apr 2026
  • H
Origin Validation Error
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 Apr 2026
  • H
Cross-site Request Forgery (CSRF)CVE-2026-40925
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 Apr 2026
  • H
Directory TraversalCVE-2026-40909
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 Apr 2026
  • M
Active Debug Code
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 Apr 2026
  • H
Cross-site Request Forgery (CSRF)
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 Apr 2026
  • C
Arbitrary Code InjectionCVE-2026-40911
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 Apr 2026
  • H
Authorization Bypass Through User-Controlled Key
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 Apr 2026
  • M
Protection Mechanism FailureCVE-2026-22692
Affects october/october | Versions <3.7.13>=4.0.0, <4.1.5
Has fix
ComposerPublished 15 Apr 2026
  • M
Arbitrary Code InjectionCVE-2026-25125
Affects october/october | Versions <3.7.14>=4.0.0, <4.1.10
Has fix
ComposerPublished 15 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-25133
Affects october/october | Versions <3.7.14>=4.0.0, <4.1.10
Has fix
ComposerPublished 15 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-24906
Affects october/october | Versions <3.7.14>=4.0.0, <4.1.10
Has fix
ComposerPublished 15 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-24907
Affects october/october | Versions <3.7.14>=4.0.0, <4.1.10
Has fix
ComposerPublished 15 Apr 2026
  • H
Command InjectionCVE-2026-40261
Affects composer/composer | Versions >=2.0.0, <2.2.27>=2.3.0, <2.9.6
Has fix
ComposerPublished 15 Apr 2026
  • H
Command InjectionCVE-2026-40176
Affects composer/composer | Versions >=2.0.0, <2.2.27>=2.3.0, <2.9.6
Has fix
ComposerPublished 15 Apr 2026
  • H
Access Control BypassCVE-2026-38530
Affects krayin/laravel-crm | Versions >=2.2.0
Has fix
ComposerPublished 15 Apr 2026
  • H
Authorization Bypass Through User-Controlled KeyCVE-2026-38532
Affects krayin/laravel-crm | Versions >=2.2.0
Has fix
ComposerPublished 15 Apr 2026
  • H
Authorization Bypass Through User-Controlled KeyCVE-2026-38529
Affects krayin/laravel-crm | Versions >=2.2.0
Has fix
ComposerPublished 15 Apr 2026
  • H
Arbitrary Code InjectionCVE-2026-38526
Affects krayin/laravel-crm | Versions >=2.2.0
Has fix
ComposerPublished 15 Apr 2026