Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • H
Server-side Request Forgery (SSRF)CVE-2026-28423
Affects statamic/cms | Versions <5.73.11>=6.0.0-alpha.1, <6.4.0
Has fix
ComposerPublished 2 Mar 2026
  • H
Arbitrary Code InjectionCVE-2026-28425
Affects statamic/cms | Versions <5.73.11>=6.0.0-alpha.1, <6.4.0
Has fix
ComposerPublished 2 Mar 2026
  • M
Incorrect Privilege AssignmentCVE-2026-2896
Affects funadmin/funadmin | Versions >=0.0.0
Has fix
ComposerPublished 2 Mar 2026
  • M
Information ExposureCVE-2026-2894
Affects funadmin/funadmin | Versions >=0.0.0
Has fix
ComposerPublished 2 Mar 2026
  • M
Deserialization of Untrusted DataCVE-2026-2898
Affects funadmin/funadmin | Versions >=0.0.0
Has fix
ComposerPublished 2 Mar 2026
  • M
Cross-site Scripting (XSS)CVE-2026-2897
Affects funadmin/funadmin | Versions >=0.0.0
Has fix
ComposerPublished 2 Mar 2026
  • M
Weak Password Recovery Mechanism for Forgotten PasswordCVE-2026-2895
Affects funadmin/funadmin | Versions >=0.0.0
Has fix
ComposerPublished 2 Mar 2026
  • H
SQL InjectionCVE-2026-3105
Affects mautic/core-lib | Versions >=2.10.0, <5.2.10>=6.0.0-alpha, <6.0.8>=7.0.0-alpha, <7.0.1
Has fix
ComposerPublished 2 Mar 2026
  • L
Cross-site Scripting (XSS)
Affects craftcms/cms | Versions >=5.0.0-RC1, <5.8.23>=4.5.0-beta.1, <4.16.19
Has fix
ComposerPublished 2 Mar 2026
  • H
Server-side Request Forgery (SSRF)CVE-2026-27732
Affects wwbn/avideo | Versions <22.0.0
Has fix
ComposerPublished 1 Mar 2026
  • H
Weak Password Recovery Mechanism for Forgotten PasswordCVE-2026-27593
Affects statamic/cms | Versions <5.73.10>=6.0.0-alpha.1, <6.3.3
Has fix
ComposerPublished 1 Mar 2026
  • M
Cross-site Scripting (XSS)CVE-2026-27621
Affects typicms/core | Versions <16.1.7
Has fix
ComposerPublished 1 Mar 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-26047
Affects moodle/moodle | Versions <4.5.9>=5.0.0-beta, <5.0.5>=5.1.0-beta, <5.1.2
Has fix
ComposerPublished 1 Mar 2026
  • H
Arbitrary Code InjectionCVE-2026-26045
Affects moodle/moodle | Versions <4.5.9>=5.0.0-beta, <5.0.5>=5.1.0-beta, <5.1.2
Has fix
ComposerPublished 1 Mar 2026
  • C
Arbitrary Code Injection
Affects unisharp/laravel-filemanager | Versions >=0.1.0
Has fix
ComposerPublished 25 Feb 2026
  • M
SQL InjectionCVE-2026-27461
Affects pimcore/pimcore | Versions <12.3.3
Has fix
ComposerPublished 25 Feb 2026
  • M
Time-of-check Time-of-use (TOCTOU) Race ConditionCVE-2026-27128
Affects craftcms/cms | Versions >=4.5.0-RC1, <4.16.19>=5.0.0-RC1, <5.8.23
Has fix
ComposerPublished 24 Feb 2026
  • M
Time-of-check Time-of-use (TOCTOU) Race ConditionCVE-2026-27127
Affects craftcms/cms | Versions >=3.5.0, <4.16.19>=5.0.0-RC1, <5.8.23
Has fix
ComposerPublished 24 Feb 2026
  • H
Server-side Request Forgery (SSRF)CVE-2026-27129
Affects craftcms/cms | Versions >=3.5.0, <4.16.19>=5.0.0-RC1, <5.8.23
Has fix
ComposerPublished 24 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2026-27126
Affects craftcms/cms | Versions <4.16.19>=5.0.0-RC1, <5.8.23
Has fix
ComposerPublished 24 Feb 2026
  • H
Incorrect Privilege AssignmentCVE-2026-27198
Affects getformwork/formwork | Versions >=2.0.0, <2.3.4
Has fix
ComposerPublished 23 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2026-27196
Affects statamic/cms | Versions <5.73.9>=6.0.0-alpha.1, <6.3.2
Has fix
ComposerPublished 23 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2026-27568
Affects wwbn/avideo | Versions <21.0
Has fix
ComposerPublished 23 Feb 2026
  • C
Deserialization of Untrusted DataCVE-2026-27206
Affects zumba/json-serializer | Versions <3.2.3
Has fix
ComposerPublished 22 Feb 2026
  • H
SQL InjectionCVE-2026-26988
Affects librenms/librenms | Versions <26.2.0
Has fix
ComposerPublished 20 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2026-26992
Affects librenms/librenms | Versions <26.2.0
Has fix
ComposerPublished 20 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2026-26989
Affects librenms/librenms | Versions <26.2.0
Has fix
ComposerPublished 20 Feb 2026
  • M
Improper Encoding or Escaping of OutputCVE-2026-27016
Affects librenms/librenms | Versions >=24.10.0, <26.2.0
Has fix
ComposerPublished 20 Feb 2026
  • H
SQL InjectionCVE-2026-26990
Affects librenms/librenms | Versions <26.2.0
Has fix
ComposerPublished 20 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2026-26987
Affects librenms/librenms | Versions <26.2.0
Has fix
ComposerPublished 20 Feb 2026