Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All Vulnerabilities
APPLICATION
Cargo | Rust
Objective-C, CocoaPods | Swift
Composer | PHP
Conan | C/C++
GitHub | Go
Hex | Elixir / Erlang
Maven | Java
npm | JavaScript
NuGet | C#/F#/VB
Pypi | Python
pub | Dart, Flutter
RubyGems | Ruby
Swift Packages | Swift
C/C++
OPERATING SYSTEM
All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
MinimOS
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi
Report a new vulnerability
Vulnerabilities
Packages
M
Server-side Request Forgery (SSRF)
CVE-2026-55599
Affects
phpseclib/phpseclib
| Versions
>=0.1.1, <1.0.30
>=2.0.0, <2.0.55
>=3.0.0, <3.0.54
M
Cross-site Scripting (XSS)
Affects
silverstripe/cms
| Versions
>=3.1.0, <3.1.10-rc1
M
Server-side Request Forgery (SSRF)
CVE-2026-49359
Affects
pontedilana/php-weasyprint
| Versions
<2.6.0
H
Command Injection
CVE-2026-49260
Affects
pontedilana/php-weasyprint
| Versions
<2.5.1
M
Cross-site Scripting (XSS)
Affects
silverstripe/cms
| Versions
>=3.1.0, <3.1.10-rc1
H
Directory Traversal
CVE-2026-9506
Affects
bagisto/bagisto
| Versions
<2.4.2
H
XML Injection
CVE-2026-53723
Affects
guzzlehttp/guzzle-services
| Versions
<1.5.4
H
Missing Encryption of Sensitive Data
CVE-2026-55568
Affects
guzzlehttp/guzzle
| Versions
<7.12.1
H
HTTP Request Smuggling
Affects
silverstripe/framework
| Versions
>=3.0.0, <3.0.14
>=3.1.0, <3.1.13
M
Open Redirect
Affects
silverstripe/framework
| Versions
>=3.0.0, <3.0.14
>=3.1.0, <3.1.13
M
Cross-site Scripting (XSS)
Affects
silverstripe/framework
| Versions
>=3.1.0, <3.1.10-rc1
M
Origin Validation Error
CVE-2026-55767
Affects
guzzlehttp/guzzle
| Versions
<7.12.1
L
Cross-site Scripting (XSS)
CVE-2026-50183
Affects
wwbn/avideo
| Versions
>=0.0.0
H
Insufficient Verification of Data Authenticity
CVE-2026-47696
Affects
wwbn/avideo
| Versions
>=0.0.0
M
Cross-site Scripting (XSS)
CVE-2026-47694
Affects
wwbn/avideo
| Versions
>=0.0.0
H
Cross-site Scripting (XSS)
CVE-2026-54458
Affects
wwbn/avideo
| Versions
>=0.0.0
M
Cross-site Scripting (XSS)
Affects
silverstripe/framework
| Versions
>=3.1.0, <3.1.10-rc1
M
Cross-site Scripting (XSS)
CVE-2026-50182
Affects
wwbn/avideo
| Versions
>=0.0.0
M
Incorrect Authorization
Affects
silverstripe/framework
| Versions
>=3.0.0, <3.0.14
>=3.1.0, <3.1.13
M
Cross-site Request Forgery (CSRF)
Affects
silverstripe/framework
| Versions
<3.1.17-rc2
>=3.2.0-beta1, <3.2.2-rc2
>3.3.0-beta1, <3.3.0-rc3
H
Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')
Affects
silverstripe/framework
| Versions
<3.1.12
M
Missing Authorization
Affects
silverstripe/framework
| Versions
<3.1.17-rc2
>=3.2.0-beta1, <3.2.2
>3.3.0-beta1, <3.3.0-rc3
M
Cross-site Scripting (XSS)
CVE-2026-48157
Affects
slim/slim
| Versions
>=4.4.0, <4.15.2
L
Cross-site Scripting (XSS)
Affects
silverstripe/framework
| Versions
<3.0.13
>=3.1.0, <3.1.12
H
Insufficient Granularity of Access Control
CVE-2026-47366
Affects
phpbb/phpbb
| Versions
>=3.3.0, <3.3.17
M
SQL Injection
CVE-2026-48613
Affects
phpbb/phpbb-core
| Versions
>=3.3.8, <3.3.17
M
Cross-site Request Forgery (CSRF)
CVE-2026-48612
Affects
phpbb/phpbb-core
| Versions
>=3.3.0, <3.3.17
C
Missing Authentication for Critical Function
CVE-2026-48611
Affects
phpbb/phpbb-core
| Versions
>=3.3.0, <3.3.17
H
Improper Neutralization of Special Elements Used in a Template Engine
CVE-2026-11407
Affects
pimcore/pimcore
| Versions
<2026.1.6
M
CRLF Injection
CVE-2026-55766
Affects
guzzlehttp/psr7
| Versions
<2.12.1