Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • H
Access Control Bypass		moodle/moodle<4.1.12>=4.2.0, <4.2.9>=4.3.0, <4.3.6>=4.4.0, <4.4.2Composer7 Nov 2024
  • H
Cross-site Request Forgery (CSRF)		moodle/moodle<4.1.12>=4.2.0, <4.2.9>=4.3.0, <4.3.6>=4.4.0, <4.4.2Composer7 Nov 2024
  • H
Improper Input Validation		moodle/moodle<4.1.12>=4.2.0, <4.2.9>=4.3.0, <4.3.6>=4.4.0, <4.4.2Composer7 Nov 2024
  • H
Access Control Bypass		moodle/moodle<4.1.12>=4.2.0, <4.2.9>=4.3.0, <4.3.6>=4.4.0, <4.4.2Composer7 Nov 2024
  • M
Cross-site Scripting (XSS)		unopim/unopim<0.1.4Composer7 Nov 2024
  • L
Protection Mechanism Failure		twig/twig<3.11.2>=3.12.0, <3.14.1Composer7 Nov 2024
  • L
Protection Mechanism Failure		twig/twig<3.11.2>=3.12.0, <3.14.1Composer7 Nov 2024
  • M
Access Restriction Bypass		symfony/symfony<5.4.46>=6.0.0-BETA1, <6.4.14>=7.0.0-BETA1, <7.1.7Composer6 Nov 2024
  • M
Improper Authorization		symfony/security-bundle<6.4.10>=7.0.0-BETA1, <7.0.10>=7.1.0-BETA1, <7.1.3Composer6 Nov 2024
  • M
Insertion of Sensitive Information Into Sent Data		symfony/http-client<5.4.46>=6.0.0-BETA1, <6.4.14>=7.0.0-BETA1, <7.1.7Composer6 Nov 2024
  • M
Misinterpretation of Input		symfony/validator<5.4.43>=6.0.0-BETA1, <6.4.11>=7.0.0-BETA1, <7.1.4Composer6 Nov 2024
  • M
Open Redirect		symfony/http-foundation<5.4.46>=6.0.0-BETA1, <6.4.14>=7.0.0-BETA1, <7.1.7Composer6 Nov 2024
  • M
Arbitrary Code Injection		symfony/process<5.4.46>=6.0.0-BETA1, <6.4.14>=7.0.0-BETA1, <7.1.7Composer6 Nov 2024
  • M
Cross-site Scripting (XSS)		athlon1600/youtube-downloader>=0.0.0Composer4 Nov 2024
  • M
Prototype Pollution		maximebf/debugbar<1.19.0Composer4 Nov 2024
  • M
Cross-site Scripting (XSS)		maximebf/debugbar<1.19.0Composer4 Nov 2024
  • M
Information Exposure		mediawiki/core<1.31.8>=1.32.0, <1.33.4>=1.34.0, <1.34.2Composer3 Nov 2024
  • H
Denial of Service (DoS)		billz/raspap-webgui<3.1.0Composer3 Nov 2024
  • M
Cross-site Scripting (XSS)		mediawiki/core>=1.20.3, <1.21.9>=1.22.0, <1.22.6Composer3 Nov 2024
  • H
Use of a Broken or Risky Cryptographic Algorithm		yeswiki/yeswiki<4.4.5Composer1 Nov 2024
  • H
Insufficient Verification of Data Authenticity		laravel/reverb<1.4.0Composer1 Nov 2024
  • M
Cross-site Scripting (XSS)		studio-42/elfinder<2.1.63Composer1 Nov 2024
  • C
Remote Code Execution (RCE)		studio-42/elfinder<2.1.63Composer1 Nov 2024
  • H
Open Redirect		drupal/drupal>=7.0, <7.24Composer31 Oct 2024
  • C
Deserialization of Untrusted Data		topthink/think>=6.1.3Composer31 Oct 2024
  • H
Denial of Service (DoS)		funadmin/funadmin>=0.0.0Composer29 Oct 2024
  • M
SQL Injection		funadmin/funadmin>=0.0.0Composer29 Oct 2024
  • M
SQL Injection		funadmin/funadmin>=0.0.0Composer29 Oct 2024
  • M
SQL Injection		funadmin/funadmin>=0.0.0Composer29 Oct 2024
  • M
SQL Injection		funadmin/funadmin>=0.0.0Composer29 Oct 2024