Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Expand this section

PACKAGE MANAGER

Report a new vulnerability
VULNERABILITY AFFECTS TYPE PUBLISHED
  • M
Cross-site Scripting (XSS)
mojo42/jirafeau Open this link in a new tab <4.4.0 Composer 18 May 2022
  • C
Deserialization of Untrusted Data
laravel/framework Open this link in a new tab >=0.0.0 Composer 16 May 2022
  • H
Privilege Escalation
facturascripts/facturascripts Open this link in a new tab >=0.0.0 Composer 15 May 2022
  • M
Cross-site Scripting (XSS)
facturascripts/facturascripts Open this link in a new tab >=0.0.0 Composer 12 May 2022
  • H
Privilege Escalation
alextselegidis/easyappointments Open this link in a new tab >=0.0.0 Composer 11 May 2022
  • H
Access Control Bypass
wp-graphql/wp-graphql Open this link in a new tab <0.3.5 Composer 10 May 2022
  • M
Access Restriction Bypass
craftcms/cms Open this link in a new tab >=0.0.0 Composer 10 May 2022
  • C
Unrestricted Upload of File with Dangerous Type
yetiforce/yetiforce-crm Open this link in a new tab >=0.0.0 Composer 6 May 2022
  • H
Cross-site Scripting (XSS)
contao/contao Open this link in a new tab >=4.13.0, <4.13.3 Composer 6 May 2022
  • M
Cross-site Scripting (XSS)
microweber/microweber Open this link in a new tab >=0.0.0 Composer 6 May 2022
  • C
Cross-site Scripting (XSS)
facturascripts/facturascripts Open this link in a new tab >=0.0.0 Composer 6 May 2022
  • M
Cross-site Scripting (XSS)
intelliants/subrion Open this link in a new tab >=0.0.0 Composer 6 May 2022
  • M
Cross-site Scripting (XSS)
khaled-alshamaa/ar-php Open this link in a new tab >=0.0.0 Composer 6 May 2022
  • L
Cross-site Scripting (XSS)
remdex/livehelperchat Open this link in a new tab <3.99 Composer 4 May 2022
  • M
Cross-site Scripting (XSS)
microweber/microweber Open this link in a new tab >=0.0.0 Composer 4 May 2022
  • C
Remote Code Execution (RCE)
shopxo/shopxo Open this link in a new tab >=0.0.0 Composer 3 May 2022
  • M
Information Exposure
snipe/snipe-it Open this link in a new tab >=0.3.0-alpha, <5.3.8 Composer 2 May 2022
  • H
Incorrect Authorization
moodle/moodle Open this link in a new tab >=3.9, <3.9.13 >=3.10, <3.10.10 >=3.11, <3.11.6 >=4.0.0-rc1, <4.0.0 Composer 1 May 2022
  • H
Improper Neutralization of Formula Elements in a CSV File
luyadev/yii-helpers Open this link in a new tab <1.2.1 Composer 1 May 2022
  • M
Information Exposure
mediawiki/core Open this link in a new tab >=0.0.0 Composer 1 May 2022
  • L
Cross-site Scripting (XSS)
automad/automad Open this link in a new tab >=0.0.0 Composer 1 May 2022
  • H
Improper Authentication
moodle/moodle Open this link in a new tab >=3.9, <3.9.13 >=3.10, <3.10.10 >=3.11, <3.11.6 >=4.0.0-rc1, <4.0.0 Composer 1 May 2022
  • C
Improper Preservation of Permissions
ibexa/core Open this link in a new tab >=4.0.0, <4.0.5 >=4.1.0, <4.1.2 Composer 1 May 2022
  • C
Improper Preservation of Permissions
ezsystems/ezplatform-kernel Open this link in a new tab >=1.3.0, <1.3.17 >=7.5.0, <7.5.28 Composer 1 May 2022
  • H
Information Exposure
zendframework/zend-feed Open this link in a new tab >=1.0.0, <2.10.3 Composer 29 Apr 2022
  • H
Information Exposure
zendframework/zend-diactoros Open this link in a new tab >=1.0.0, <1.8.4 Composer 29 Apr 2022
  • H
Information Exposure
zendframework/zend-http Open this link in a new tab >=1.0.0, <2.8.1 Composer 29 Apr 2022
  • M
Cross-site Scripting (XSS)
shopware/shopware Open this link in a new tab >=5.0.0, <5.7.9 Composer 29 Apr 2022
  • M
Weak Password Recovery Mechanism for Forgotten Password
shopware/shopware Open this link in a new tab >=5.0.4, <5.7.9 Composer 29 Apr 2022
  • M
Cross-site Request Forgery (CSRF)
shopware/shopware Open this link in a new tab >=5.2.0, <5.7.9 Composer 29 Apr 2022