Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • H
External Control of File Name or PathCVE-2025-49138
Affects elmsln/haxcms | Versions >=0.0.0
Has fix
ComposerPublished 18 Jun 2025
  • H
Cross-site Scripting (XSS)CVE-2025-49577
Affects starcitizentools/citizen-skin | Versions >=2.13.0, <3.3.1
Has fix
ComposerPublished 17 Jun 2025
  • H
Cross-site Scripting (XSS)CVE-2025-49579
Affects starcitizentools/citizen-skin | Versions >=2.4.2, <3.3.1
Has fix
ComposerPublished 17 Jun 2025
  • H
Cross-site Scripting (XSS)CVE-2025-49578
Affects starcitizentools/citizen-skin | Versions >=3.3.0, <3.3.1
Has fix
ComposerPublished 17 Jun 2025
  • H
Cross-site Scripting (XSS)CVE-2025-49576
Affects starcitizentools/citizen-skin | Versions >=2.31.0, <3.3.1
Has fix
ComposerPublished 17 Jun 2025
  • H
Cross-site Scripting (XSS)
Affects starcitizentools/citizen-skin | Versions >=2.4.2, <3.3.1
Has fix
ComposerPublished 17 Jun 2025
  • H
Arbitrary Code InjectionCVE-2025-29661
Affects litepubl/cms | Versions >=5.97
Has fix
ComposerPublished 17 Jun 2025
  • L
Cross-site Scripting (XSS)CVE-2016-7111
Affects mantisbt/mantisbt | Versions <1.3.1
Has fix
ComposerPublished 15 Jun 2025
  • M
Cross-site Scripting (XSS)CVE-2017-7241
Affects mantisbt/mantisbt | Versions <1.3.9>=2.0.0, <2.1.3>=2.2.0, <2.2.3
Has fix
ComposerPublished 15 Jun 2025
  • M
Cross-site Scripting (XSS)CVE-2017-6973
Affects mantisbt/mantisbt | Versions <1.3.8>=2.0.0, <2.1.2>=2.2.0, <2.2.2
Has fix
ComposerPublished 15 Jun 2025
  • M
Cross-site Scripting (XSS)CVE-2022-33910
Affects mantisbt/mantisbt | Versions <2.25.5
Has fix
ComposerPublished 15 Jun 2025
  • M
Cross-site Scripting (XSS)CVE-2017-12062
Affects mantisbt/mantisbt | Versions >=2.0.0, <2.5.2
Has fix
ComposerPublished 15 Jun 2025
  • M
Cross-site Scripting (XSS)CVE-2017-7309
Affects mantisbt/mantisbt | Versions <1.3.9>=2.1.0, <2.1.3>=2.2.0, <2.2.3
Has fix
ComposerPublished 15 Jun 2025
  • M
Cross-site Scripting (XSS)CVE-2022-28508
Affects mantisbt/mantisbt | Versions <2.25.7
Has fix
ComposerPublished 15 Jun 2025
  • M
Cross-site Scripting (XSS)CVE-2025-5096
Affects tobiasbg/tablepress | Versions <2.3.2
Has fix
ComposerPublished 15 Jun 2025
  • M
Cross-site Scripting (XSS)CVE-2025-32699
Affects wikimedia/parsoid | Versions <0.16.5>=0.17.0-a1, <0.19.2>=0.20.0-a1, <0.20.2
Has fix
ComposerPublished 13 Jun 2025
  • M
Cross-site Scripting (XSS)CVE-2025-32699
Affects mediawiki/core | Versions <1.39.12>=1.42.0-rc.0, <1.42.6>=1.43.0-rc.0, <1.43.1
Has fix
ComposerPublished 13 Jun 2025
  • L
Exposure of Sensitive System Information to an Unauthorized Control SphereCVE-2025-32698
Affects mediawiki/core | Versions >=1.31, <1.39.12>=1.42.0-rc.0, <1.42.6>=1.43.0-rc.0, <1.43.1
Has fix
ComposerPublished 13 Jun 2025
  • L
Exposure of Sensitive System Information to an Unauthorized Control SphereCVE-2025-32700
Affects mediawiki/abuse-filter | Versions >=1.43.0, <1.44
Has fix
ComposerPublished 13 Jun 2025
  • L
Improper Preservation of PermissionsCVE-2025-32696
Affects mediawiki/core | Versions <1.39.12>=1.42.0-rc.0, <1.42.6>=1.43.0-rc.0, <1.43.1
Has fix
ComposerPublished 13 Jun 2025
  • M
Improper Encoding or Escaping of OutputCVE-2025-32072
Affects mediawiki/core | Versions <1.39.12>=1.42.0-rc.0, <1.42.6>=1.43.0-rc.0, <1.43.1
Has fix
ComposerPublished 13 Jun 2025
  • C
Improper Encoding or Escaping of OutputCVE-2025-32071
Affects wikibase/wikibase | Versions >=1.39, <1.44
Has fix
ComposerPublished 13 Jun 2025
  • M
Direct Request ('Forced Browsing')CVE-2025-47226
Affects snipe/snipe-it | Versions <8.1.0
Has fix
ComposerPublished 12 Jun 2025
  • M
Arbitrary File UploadCVE-2024-51991
Affects october/october | Versions <3.7.10
Has fix
ComposerPublished 12 Jun 2025
  • M
Cross-site Scripting (XSS)CVE-2025-26159
Affects nasirkhan/laravel-starter | Versions <11.11.0
Has fix
ComposerPublished 12 Jun 2025
  • M
Cross-site Scripting (XSS)CVE-2025-3568
Affects krayin/laravel-crm | Versions <2.1.1
Has fix
ComposerPublished 12 Jun 2025
  • M
Cross-site Scripting (XSS)CVE-2025-46041
Affects anchorcms/anchor-cms | Versions >=0.0.0
Has fix
ComposerPublished 11 Jun 2025
  • M
Cross-site Scripting (XSS)CVE-2025-44115
Affects cotonti/cotonti | Versions >=0.0.0
Has fix
ComposerPublished 11 Jun 2025
  • M
Cross-site Scripting (XSS)CVE-2025-3469
Affects mediawiki/core | Versions <1.39.12>=1.42.0-rc.0, <1.42.6>=1.43.0-rc.0, <1.43.1
Has fix
ComposerPublished 10 Jun 2025
  • M
Cross-site Scripting (XSS)CVE-2025-49130
Affects barryvdh/laravel-translation-manager | Versions <0.6.8
Has fix
ComposerPublished 10 Jun 2025