Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • H
CSV Injection		mantisbt/mantisbt<2.25.3Composer6 Jun 2025
  • H
Incorrect Authorization		mantisbt/mantisbt<2.24.4Composer6 Jun 2025
  • M
Cross-site Scripting (XSS)		mantisbt/mantisbt<2.25.2Composer6 Jun 2025
  • M
Cross-site Scripting (XSS)		mantisbt/mantisbt>=2.1.0, <2.24.2Composer6 Jun 2025
  • M
Cross-site Scripting (XSS)		mantisbt/mantisbt<2.21.3Composer6 Jun 2025
  • M
Cross-site Scripting (XSS)		mantisbt/mantisbt<2.21.2Composer6 Jun 2025
  • M
Cross-site Scripting (XSS)		mantisbt/mantisbt>=2.23.0, <2.24.3Composer6 Jun 2025
  • H
Command Injection		mantisbt/mantisbt<1.3.20>=2.0.0, <2.22.1Composer6 Jun 2025
  • M
SQL Injection		mantisbt/mantisbt<2.24.4Composer6 Jun 2025
  • M
Incorrect Authorization		mantisbt/mantisbt<2.24.3Composer6 Jun 2025
  • M
Insertion of Sensitive Information into Log File		yiisoft/yii2-redis<2.0.20Composer6 Jun 2025
  • C
Deserialization of Untrusted Data		auth0/auth0-php>=8.0.0-BETA3, <8.14.0Composer4 Jun 2025
  • M
Missing Authorization		mautic/core-lib<5.2.6>=6.0.0-alpha, <6.0.2Composer29 May 2025
  • M
Exposure of Sensitive System Information to an Unauthorized Control Sphere		mautic/core-lib<5.2.6>=6.0.0-alpha, <6.0.2Composer29 May 2025
  • M
Open Redirect		mautic/core-lib<5.2.6>=6.0.0-alpha, <6.0.2Composer29 May 2025
  • M
Timing Attack		mautic/core-lib<5.2.6>=6.0.0-alpha, <6.0.2Composer29 May 2025
  • M
Improper Validation of Specified Quantity in Input		mautic/core-lib<5.2.6>=6.0.0-alpha, <6.0.2Composer29 May 2025
  • M
Cross-site Scripting (XSS)		symfony/ux-twig-component<2.25.1Composer28 May 2025
  • C
Arbitrary File Upload		showdoc/showdoc<2.8.13Composer28 May 2025
  • H
Authorization Bypass Through User-Controlled Key		sjbr/sr-feuser-register>=5.1.0, <12.5.0Composer28 May 2025
  • C
Deserialization of Untrusted Data		sjbr/sr-feuser-register>=5.1.0, <12.5.0Composer28 May 2025
  • C
Arbitrary Code Injection		craftcms/cms>=3.0.0-RC1, <3.9.15>=4.0.0-RC1, <4.14.15>=5.0.0-RC1, <5.6.17Composer26 May 2025
  • M
Cross-site Scripting (XSS)		yeswiki/yeswiki<4.5.4Composer25 May 2025
  • M
Cross-site Scripting (XSS)		yeswiki/yeswiki<4.5.4Composer25 May 2025
  • M
Cross-site Scripting (XSS)		yeswiki/yeswiki<4.5.4Composer25 May 2025
  • M
Cross-site Scripting (XSS)		yeswiki/yeswiki<4.5.4Composer25 May 2025
  • H
Missing Authorization		yeswiki/yeswiki<4.5.4Composer25 May 2025
  • H
Improper Encoding or Escaping of Output		yeswiki/yeswiki<4.5.4Composer25 May 2025
  • M
Cross-site Scripting (XSS)		yeswiki/yeswiki<4.5.4Composer25 May 2025
  • M
Cross-site Scripting (XSS)		couleurcitron/tarteaucitron-wp<0.3.0Composer22 May 2025