Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • H
Arbitrary Code Injection
dolibarr/dolibarr<21.0.3Composer6 Oct 2025
  • M
Directory Traversal
auth0/auth0-php>=3.3.0, <8.17.0Composer3 Oct 2025
  • M
Cross-site Scripting (XSS)
joomla/filter<2.0.6>=3.0.0, <3.0.5>=4.0.0, <4.0.1Composer3 Oct 2025
  • M
Cross-site Scripting (XSS)
mediawiki/cargo<3.4.4Composer30 Sept 2025
  • M
Cross-site Scripting (XSS)
shopware/storefront>=6.6.10.0, <6.7.2.1Composer29 Sept 2025
  • M
Cross-site Scripting (XSS)
starcitizenwiki/embedvideo>=0.0.0Composer28 Sept 2025
  • M
Cross-site Scripting (XSS)
novosga/novosga<2.2.13Composer28 Sept 2025
  • M
Cross-site Scripting (XSS)
s-cart/core>=4.0.0-betaComposer26 Sept 2025
  • M
Cross-site Scripting (XSS)
gp247/core<1.1.24Composer26 Sept 2025
  • H
Arbitrary File Upload
hillelcoren/invoice-ninja<5.11.73Composer22 Sept 2025
  • H
Deserialization of Untrusted Data
snipe/snipe-it<8.1.18Composer22 Sept 2025
  • M
Cross-site Scripting (XSS)
snipe/snipe-it<8.1.18Composer22 Sept 2025
  • C
Improper Input Validation
magento/community-edition<2.4.7-p8Composer19 Sept 2025
  • C
Improper Input Validation
magento/project-community-edition>=0.0.0Composer19 Sept 2025
  • M
Cross-site Scripting (XSS)
zencart/zencart>=0.0.0Composer18 Sept 2025
  • M
SQL Injection
open-web-analytics/open-web-analytics<1.8.1Composer17 Sept 2025
  • L
Cross-site Scripting (XSS)
lavitto/typo3-form-to-database<2.2.5>=3.0.0, <3.2.2>=4.0.0, <4.2.3>=5.0.0, <5.0.2Composer17 Sept 2025
  • M
Cross-site Scripting (XSS)
yeswiki/yeswiki>=0.0.0Composer17 Sept 2025
  • M
Missing Authorization
typo3/cms-recordlist>=11.3.0Composer15 Sept 2025
  • M
Missing Authorization
typo3/cms-backend>=12.0.0, <12.4.37>=13.0.0, <13.4.18Composer15 Sept 2025
  • M
Uncaught Exception
typo3/cms-backend>=11.3.0, <12.4.37>=13.0.0, <13.4.18Composer15 Sept 2025
  • H
Missing Authorization
typo3/cms-workspaces<12.4.37>=13.0.0, <13.4.18Composer15 Sept 2025
  • M
Missing Authorization
typo3/cms-workspaces<12.4.37>=13.0.0, <13.4.18Composer15 Sept 2025
  • M
Missing Authorization
typo3/cms-recycler<12.4.37>=13.0.0, <13.4.18Composer15 Sept 2025
  • M
Missing Authorization
typo3/cms-dashboard<12.4.37>=13.0.0, <13.4.18Composer15 Sept 2025
  • M
Missing Authorization
typo3/cms-beuser<12.4.37>=13.0.0, <13.4.18Composer15 Sept 2025
  • M
Missing Authorization
typo3/cms-backend<12.4.37>=13.0.0, <13.4.18Composer15 Sept 2025
  • M
Information Exposure
typo3/cms-core<12.4.37>=13.0.0, <13.4.18Composer15 Sept 2025
  • M
Insufficient Entropy
typo3/cms-core>=12.1.0, <12.4.37>=13.0.0, <13.4.18Composer15 Sept 2025
  • M
Open Redirect
typo3/cms-core<12.4.37>=13.0.0, <13.4.18Composer15 Sept 2025