About Snyk
Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
Expand this section
PACKAGE MANAGER
any
cocoapods
Composer
Go
hex
Linux
Maven
npm
NuGet
pip
RubyGems
Unmanaged (C/C++)
Report a new vulnerability
VULNERABILITY
AFFECTS
TYPE
PUBLISHED
M
Cross-site Scripting (XSS)
mojo42/jirafeau
Open this link in a new tab
<4.4.0
Composer
18 May 2022
C
Deserialization of Untrusted Data
laravel/framework
Open this link in a new tab
>=0.0.0
Composer
16 May 2022
H
Privilege Escalation
facturascripts/facturascripts
Open this link in a new tab
>=0.0.0
Composer
15 May 2022
M
Cross-site Scripting (XSS)
facturascripts/facturascripts
Open this link in a new tab
>=0.0.0
Composer
12 May 2022
H
Privilege Escalation
alextselegidis/easyappointments
Open this link in a new tab
>=0.0.0
Composer
11 May 2022
H
Access Control Bypass
wp-graphql/wp-graphql
Open this link in a new tab
<0.3.5
Composer
10 May 2022
M
Access Restriction Bypass
craftcms/cms
Open this link in a new tab
>=0.0.0
Composer
10 May 2022
C
Unrestricted Upload of File with Dangerous Type
yetiforce/yetiforce-crm
Open this link in a new tab
>=0.0.0
Composer
6 May 2022
H
Cross-site Scripting (XSS)
contao/contao
Open this link in a new tab
>=4.13.0, <4.13.3
Composer
6 May 2022
M
Cross-site Scripting (XSS)
microweber/microweber
Open this link in a new tab
>=0.0.0
Composer
6 May 2022
C
Cross-site Scripting (XSS)
facturascripts/facturascripts
Open this link in a new tab
>=0.0.0
Composer
6 May 2022
M
Cross-site Scripting (XSS)
intelliants/subrion
Open this link in a new tab
>=0.0.0
Composer
6 May 2022
M
Cross-site Scripting (XSS)
khaled-alshamaa/ar-php
Open this link in a new tab
>=0.0.0
Composer
6 May 2022
L
Cross-site Scripting (XSS)
remdex/livehelperchat
Open this link in a new tab
<3.99
Composer
4 May 2022
M
Cross-site Scripting (XSS)
microweber/microweber
Open this link in a new tab
>=0.0.0
Composer
4 May 2022
C
Remote Code Execution (RCE)
shopxo/shopxo
Open this link in a new tab
>=0.0.0
Composer
3 May 2022
M
Information Exposure
snipe/snipe-it
Open this link in a new tab
>=0.3.0-alpha, <5.3.8
Composer
2 May 2022
H
Incorrect Authorization
moodle/moodle
Open this link in a new tab
>=3.9, <3.9.13
>=3.10, <3.10.10
>=3.11, <3.11.6
>=4.0.0-rc1, <4.0.0
Composer
1 May 2022
H
Improper Neutralization of Formula Elements in a CSV File
luyadev/yii-helpers
Open this link in a new tab
<1.2.1
Composer
1 May 2022
M
Information Exposure
mediawiki/core
Open this link in a new tab
>=0.0.0
Composer
1 May 2022
L
Cross-site Scripting (XSS)
automad/automad
Open this link in a new tab
>=0.0.0
Composer
1 May 2022
H
Improper Authentication
moodle/moodle
Open this link in a new tab
>=3.9, <3.9.13
>=3.10, <3.10.10
>=3.11, <3.11.6
>=4.0.0-rc1, <4.0.0
Composer
1 May 2022
C
Improper Preservation of Permissions
ibexa/core
Open this link in a new tab
>=4.0.0, <4.0.5
>=4.1.0, <4.1.2
Composer
1 May 2022
C
Improper Preservation of Permissions
ezsystems/ezplatform-kernel
Open this link in a new tab
>=1.3.0, <1.3.17
>=7.5.0, <7.5.28
Composer
1 May 2022
H
Information Exposure
zendframework/zend-feed
Open this link in a new tab
>=1.0.0, <2.10.3
Composer
29 Apr 2022
H
Information Exposure
zendframework/zend-diactoros
Open this link in a new tab
>=1.0.0, <1.8.4
Composer
29 Apr 2022
H
Information Exposure
zendframework/zend-http
Open this link in a new tab
>=1.0.0, <2.8.1
Composer
29 Apr 2022
M
Cross-site Scripting (XSS)
shopware/shopware
Open this link in a new tab
>=5.0.0, <5.7.9
Composer
29 Apr 2022
M
Weak Password Recovery Mechanism for Forgotten Password
shopware/shopware
Open this link in a new tab
>=5.0.4, <5.7.9
Composer
29 Apr 2022
M
Cross-site Request Forgery (CSRF)
shopware/shopware
Open this link in a new tab
>=5.2.0, <5.7.9
Composer
29 Apr 2022