Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • L
Cross-site Scripting (XSS)		concrete5/concrete5>=9.0.0RC1, <9.3.3Composer9 Aug 2024
  • L
Cross-site Scripting (XSS)		concrete5/concrete5<8.5.18>=9.0.0RC1, <9.3.3Composer9 Aug 2024
  • H
Server-Side Template Injection		shopware/platform<6.5.8.13>=6.6.0.0, <6.6.5.1Composer9 Aug 2024
  • H
Server-Side Template Injection		shopware/core<6.5.8.13>=6.6.0.0, <6.6.5.1Composer9 Aug 2024
  • H
Server-Side Template Injection		shopware/platform<6.5.8.13>=6.6.0.0, <6.6.5.1Composer9 Aug 2024
  • H
Server-Side Template Injection		shopware/core<6.5.8.13>=6.6.0.0, <6.6.5.1Composer9 Aug 2024
  • M
SQL Injection		shopware/platform<6.5.8.13>=6.6.0.0, <6.6.5.1Composer9 Aug 2024
  • M
SQL Injection		shopware/core<6.5.8.13>=6.6.0.0, <6.6.5.1Composer9 Aug 2024
  • M
Improper Preservation of Permissions		shopware/core<6.5.8.13>=6.6.0.0, <6.6.5.1Composer9 Aug 2024
  • M
Improper Preservation of Permissions		shopware/platform<6.5.8.13>=6.6.0.0, <6.6.5.1Composer9 Aug 2024
  • M
Cross-site Scripting (XSS)		magento/community-edition<2.4.4-p9>=2.4.5-p1, <2.4.5-p8>=2.4.6-p1, <2.4.6-p6>=2.4.7-beta1, <2.4.7-p1Composer8 Aug 2024
  • M
Incorrect Authorization		magento/community-edition<2.4.4-p9>=2.4.5-p1, <2.4.5-p8>=2.4.6-p1, <2.4.6-p6>=2.4.7-beta1, <2.4.7-p1Composer8 Aug 2024
  • M
Improper Access Control		magento/community-edition<2.4.4-p9>=2.4.5-p1, <2.4.5-p8>=2.4.6-p1, <2.4.6-p6>=2.4.7-beta1, <2.4.7-p1Composer8 Aug 2024
  • H
Improper Authorization		magento/community-edition<2.4.4-p9>=2.4.5-p1, <2.4.5-p8>=2.4.6-p1, <2.4.6-p6>=2.4.7-beta1, <2.4.7-p1Composer8 Aug 2024
  • H
Server-Side Request Forgery (SSRF)		magento/community-edition<2.4.4-p9>=2.4.5-p1, <2.4.5-p8>=2.4.6-p1, <2.4.6-p6>=2.4.7-beta1, <2.4.7-p1Composer8 Aug 2024
  • C
Improper Authentication		magento/community-edition<2.4.4-p9>=2.4.5-p1, <2.4.5-p8>=2.4.6-p1, <2.4.6-p6>=2.4.7-beta1, <2.4.7-p1Composer8 Aug 2024
  • M
Cross-site Scripting (XSS)		microweber/microweber<2.0.16Composer7 Aug 2024
  • M
Cross-Site Request Forgery (CSRF)		ipl/web<0.10.1Composer6 Aug 2024
  • M
Cross-site Scripting (XSS)		twitter/bootstrap<5.0.0-beta1Composer6 Aug 2024
  • M
Cross-site Scripting (XSS)		twbs/bootstrap<5.0.0-beta1Composer6 Aug 2024
  • M
Cross-site Scripting (XSS)		microweber/microweber>=0.0.0Composer6 Aug 2024
  • M
Cross-site Scripting (XSS)		microweber/microweber>=0.0.0Composer6 Aug 2024
  • M
Cross-site Scripting (XSS)		twitter/bootstrap>=4.0.0, <5.0.0.beta1Composer6 Aug 2024
  • M
Cross-site Scripting (XSS)		twbs/bootstrap>=4.0.0, <5.0.0.beta1Composer6 Aug 2024
  • L
Cross-site Scripting		concrete5/concrete5<9.3.3Composer2 Aug 2024
  • M
Cross-site Scripting (XSS)		ibexa/admin-ui>=4.6.0, <4.6.9Composer1 Aug 2024
  • M
Cross-site Scripting (XSS)		ezsystems/ezplatform-admin-ui>=3.3.0, <3.3.39Composer1 Aug 2024
  • H
Improper Access Control		studio-42/elfinder>=0.0.0Composer31 Jul 2024
  • M
Information Exposure		pimcore/admin-ui-classic-bundle<1.3.10>=1.4.0, <1.4.6>=1.5.0, <1.5.2Composer31 Jul 2024
  • M
Improper Input Validation		ec-cube/ec-cube>=4.0.0, <4.0.6-p5>=4.1.0, <4.1.2-p4>=4.2.0, <4.3.0Composer30 Jul 2024