Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • H
Arbitrary Code Injection
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • H
Arbitrary Code Injection
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • H
Incorrect Privilege Assignment
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • H
Information Exposure
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • M
Directory Traversal
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • M
Uncaught Exception
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • H
Directory Traversal
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • M
Authorization Bypass Through User-Controlled Key
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • M
Denial of Service (DoS)
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • M
Cross-site Scripting (XSS)
Affects redaxo/source | Versions <5.20.1
Has fix
ComposerPublished 27 Nov 2025
  • H
Arbitrary Code Injection
Affects redaxo/source | Versions <5.20.1
Has fix
ComposerPublished 27 Nov 2025
  • M
Cross-site Scripting (XSS)
Affects redaxo/source | Versions <5.20.1
Has fix
ComposerPublished 27 Nov 2025
  • L
Cross-site Scripting (XSS)
Affects contao/core-bundle | Versions >=4.0.0, <4.13.57>=5.0.0-RC1, <5.3.42>=5.4.0-RC1, <5.6.5
Has fix
ComposerPublished 27 Nov 2025
  • H
Insufficient Type Distinction
Affects contao/core-bundle | Versions <4.13.57>=5.0.0-RC1, <5.3.42>=5.4.0-RC1, <5.6.5
Has fix
ComposerPublished 27 Nov 2025
  • M
Cross-site Scripting (XSS)
Affects getformwork/formwork | Versions <2.2.0
Has fix
ComposerPublished 26 Nov 2025
  • M
Infinite loop
Affects limesurvey/limesurvey | Versions >=2.2.5, <6.14.1
Has fix
ComposerPublished 21 Nov 2025
  • M
Infinite loop
Affects limesurvey/limesurvey | Versions >=2.2.5, <6.14.2
Has fix
ComposerPublished 21 Nov 2025
  • M
Information Exposure
Affects limesurvey/limesurvey | Versions >=2.2.5, <6.15.0
Has fix
ComposerPublished 21 Nov 2025
  • H
SQL Injection
Affects devcode-it/openstamanager | Versions <2.9.5
Has fix
ComposerPublished 20 Nov 2025
  • M
Expired Pointer Dereference
Affects mongodb/mongodb-extension | Versions >=1.20.0, <1.21.2
Has fix
ComposerPublished 20 Nov 2025
  • L
User Interface (UI) Misrepresentation of Critical Information
Affects drupal/core | Versions >=8.0.0, <10.4.9>=10.5.0, <10.5.6>=11.0.0, <11.1.9>=11.2.0, <11.2.8
Has fix
ComposerPublished 20 Nov 2025
  • L
Use of Web Browser Cache Containing Sensitive Information
Affects drupal/core | Versions >=8.0.0, <10.4.9>=10.5.0, <10.5.6>=11.0.0, <11.1.9>=11.2.0, <11.2.8
Has fix
ComposerPublished 20 Nov 2025
  • H
Deserialization of Untrusted Data
Affects drupal/core | Versions >=8.0.0, <10.4.9>=10.5.0, <10.5.6>=11.0.0, <11.1.9>=11.2.0, <11.2.8
Has fix
ComposerPublished 20 Nov 2025
  • M
Improper Check for Unusual or Exceptional Conditions
Affects drupal/core | Versions >=8.0.0, <10.4.9>=10.5.0, <10.5.6>=11.0.0, <11.1.9>=11.2.0, <11.2.8
Has fix
ComposerPublished 20 Nov 2025
  • H
HTTP Header Injection
Affects backdrop/backdrop | Versions >=0.0.0
Has fix
ComposerPublished 19 Nov 2025
  • L
Cross-site Scripting (XSS)
Affects privatebin/privatebin | Versions >=1.7.7, <2.0.3
Has fix
ComposerPublished 19 Nov 2025
  • M
Cross-site Scripting (XSS)
Affects ph7software/ph7builder | Versions >=0.0.0
Has fix
ComposerPublished 19 Nov 2025
  • H
SQL Injection
Affects librenms/librenms | Versions >=25.10.0, <25.11.0
Has fix
ComposerPublished 19 Nov 2025
  • H
Cross-site Scripting (XSS)
Affects librenms/librenms | Versions >=25.10.0, <25.11.0
Has fix
ComposerPublished 19 Nov 2025
  • M
Weak Password Requirements
Affects librenms/librenms | Versions >=25.10.0, <25.11.0
Has fix
ComposerPublished 19 Nov 2025