Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
Improper Authorization		moodle/moodle<4.5.0-rc2Composer18 Nov 2024
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.10.0Composer17 Nov 2024
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.10.0Composer17 Nov 2024
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.10.0Composer17 Nov 2024
  • M
Command Injection		librenms/librenms<24.10.0Composer17 Nov 2024
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.10.0Composer17 Nov 2024
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.10.0Composer17 Nov 2024
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.10.0Composer17 Nov 2024
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.10.0Composer17 Nov 2024
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.10.0Composer17 Nov 2024
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.10.0Composer17 Nov 2024
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.10.0Composer17 Nov 2024
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.10.0Composer17 Nov 2024
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.10.0Composer17 Nov 2024
  • M
Cross-site Scripting (XSS)		librenms/librenms<24.10.0Composer17 Nov 2024
  • M
Improper Authorization		dolibarr/dolibarr<15.0.0Composer15 Nov 2024
  • C
Deserialization of Untrusted Data		dompdf/dompdf<2.0.0Composer15 Nov 2024
  • C
XML External Entity (XXE) Injection		dompdf/dompdf<2.0.0Composer15 Nov 2024
  • M
Cross-site Scripting (XSS)		unopim/unopim<0.1.5Composer14 Nov 2024
  • H
Access Control Bypass		craftcms/cms>=4.0.0-RC1, <4.12.5>=5.0.0-RC1, <5.4.6Composer14 Nov 2024
  • H
Files or Directories Accessible to External Parties		craftcms/cms>=3.5.13, <4.12.1>=5.0.0-alpha.1, <5.4.2Composer14 Nov 2024
  • H
Arbitrary Code Injection		craftcms/cms>=4.0.0-RC1, <4.12.2>=5.0.0-RC1, <5.4.3Composer14 Nov 2024
  • M
Information Exposure		moodle/moodle>=4.4.0, <4.4.4Composer14 Nov 2024
  • H
Deserialization of Untrusted Data		backpack/filemanager<2.0.2>=3.0.0, <3.0.9Composer14 Nov 2024
  • H
Authentication Bypass		symfony/security-http>=5.3.0, <5.4.47>=6.0.0-BETA1, <6.4.15>=7.0.0-BETA1, <7.1.8Composer14 Nov 2024
  • H
Authentication Bypass		symfony/symfony>=5.3.0, <5.4.47>=6.0.0-BETA1, <6.4.15>=7.0.0-BETA1, <7.1.8Composer14 Nov 2024
  • M
Cross-site Scripting (XSS)		snipe/snipe-it>0.0.0Composer13 Nov 2024
  • M
CSV Injection		snipe/snipe-it>=0.0.0Composer13 Nov 2024
  • H
Arbitrary Argument Injection		laravel/framework<6.20.45>=7.0.0, <7.30.7>=8.0.0, <8.83.28>=9.0.0, <9.52.17>=10.0.0, <10.48.23>=11.0.0, <11.31.0Composer13 Nov 2024
  • M
Cross-site Scripting (XSS)		moodle/moodle>=4.1.0, <4.1.12>=4.2.0, <4.2.9>=4.3.0, <4.3.6>=4.4.0, <4.4.2Composer12 Nov 2024