Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Cross-site Scripting (XSS)CVE-2025-65621
Affects snipe/snipe-it | Versions <8.3.4
Has fix
ComposerPublished 4 Dec 2025
  • H
Directory TraversalCVE-2025-65345
Affects alexusmai/laravel-file-manager | Versions >=2.0.0, <3.3.2
Has fix
ComposerPublished 4 Dec 2025
  • H
Arbitrary Command InjectionCVE-2025-65657
Affects feehi/cms | Versions >=0.0.1
Has fix
ComposerPublished 3 Dec 2025
  • H
Arbitrary File UploadCVE-2025-13827
Affects mautic/core-lib | Versions >=4.0.0-alpha1, <4.4.18>=5.0.0-alpha, <5.2.9>=6.0.0-alpha, <6.0.7
Has fix
ComposerPublished 3 Dec 2025
  • H
Arbitrary File UploadCVE-2025-13827
Affects mautic/core | Versions >=4.0.0-alpha1, <4.4.18>=5.0.0-alpha, <5.2.9>=6.0.0-alpha, <6.0.7
Has fix
ComposerPublished 3 Dec 2025
  • C
Access Control BypassCVE-2025-13828
Affects mautic/core-lib | Versions >=4.0.0-alpha1, <4.4.18>=5.0.0-alpha, <5.2.9>=6.0.0-alpha, <6.0.7
Has fix
ComposerPublished 3 Dec 2025
  • C
Access Control BypassCVE-2025-13828
Affects mautic/core | Versions >=4.0.0-alpha1, <4.4.18>=5.0.0-alpha, <5.2.9>=6.0.0-alpha, <6.0.7
Has fix
ComposerPublished 3 Dec 2025
  • H
Unsafe Dependency ResolutionCVE-2025-65656
Affects dcat/laravel-admin | Versions >=0.1.0
Has fix
ComposerPublished 3 Dec 2025
  • H
Cross-site Scripting (XSS)CVE-2025-66468
Affects aimeos/ai-cms-grapesjs | Versions >=2022.4.1, <2022.10.9>=2023.4.1, <2023.10.15>=2024.4.1, <2024.10.8>=2025.4.1, <2025.10.2
Has fix
ComposerPublished 3 Dec 2025
  • M
Improper Restriction of Rendered UI Layers or FramesCVE-2025-63522
Affects feehi/cms | Versions >=0.0.1
Has fix
ComposerPublished 3 Dec 2025
  • M
Authorization Bypass Through User-Controlled KeyCVE-2025-63523
Affects feehi/cms | Versions >=0.0.1
Has fix
ComposerPublished 3 Dec 2025
  • M
Cross-site Scripting (XSS)CVE-2025-63520
Affects feehi/cms | Versions >=0.0.1
Has fix
ComposerPublished 3 Dec 2025
  • H
Improper AuthorizationCVE-2025-66301
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • H
Improper Neutralization of Special Elements Used in a Template EngineCVE-2025-66297
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • H
Improper Neutralization of Special Elements Used in a Template EngineCVE-2025-66298
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • H
Directory TraversalCVE-2025-66300
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • H
Arbitrary Code InjectionCVE-2025-66294
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • H
Arbitrary Code InjectionCVE-2025-66299
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • H
Incorrect Privilege AssignmentCVE-2025-66296
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • H
Information ExposureCVE-2025-66304
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • M
Directory TraversalCVE-2025-66302
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • M
Uncaught ExceptionCVE-2025-66305
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • H
Directory TraversalCVE-2025-66295
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • M
Authorization Bypass Through User-Controlled KeyCVE-2025-66306
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • M
Denial of Service (DoS)CVE-2025-66303
Affects getgrav/grav | Versions <1.8.0-beta.27
Has fix
ComposerPublished 2 Dec 2025
  • M
Cross-site Scripting (XSS)CVE-2025-64049
Affects redaxo/source | Versions <5.20.1
Has fix
ComposerPublished 27 Nov 2025
  • H
Arbitrary Code InjectionCVE-2025-64050
Affects redaxo/source | Versions <5.20.1
Has fix
ComposerPublished 27 Nov 2025
  • M
Cross-site Scripting (XSS)CVE-2025-66026
Affects redaxo/source | Versions <5.20.1
Has fix
ComposerPublished 27 Nov 2025
  • L
Cross-site Scripting (XSS)CVE-2025-65961
Affects contao/core-bundle | Versions >=4.0.0, <4.13.57>=5.0.0-RC1, <5.3.42>=5.4.0-RC1, <5.6.5
Has fix
ComposerPublished 27 Nov 2025
  • H
Insufficient Type DistinctionCVE-2025-65960
Affects contao/core-bundle | Versions <4.13.57>=5.0.0-RC1, <5.3.42>=5.4.0-RC1, <5.6.5
Has fix
ComposerPublished 27 Nov 2025