Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Cross-site Scripting (XSS)CVE-2025-65956
Affects getformwork/formwork | Versions <2.2.0
Has fix
ComposerPublished 26 Nov 2025
  • M
Infinite loopCVE-2025-41074
Affects limesurvey/limesurvey | Versions >=2.2.5, <6.14.1
Has fix
ComposerPublished 21 Nov 2025
  • M
Infinite loopCVE-2025-41075
Affects limesurvey/limesurvey | Versions >=2.2.5, <6.14.2
Has fix
ComposerPublished 21 Nov 2025
  • M
Information ExposureCVE-2025-41076
Affects limesurvey/limesurvey | Versions >=2.2.5, <6.15.0
Has fix
ComposerPublished 21 Nov 2025
  • H
SQL InjectionCVE-2025-65103
Affects devcode-it/openstamanager | Versions <2.9.5
Has fix
ComposerPublished 20 Nov 2025
  • M
Expired Pointer DereferenceCVE-2025-12119
Affects mongodb/mongodb-extension | Versions >=1.20.0, <1.21.2
Has fix
ComposerPublished 20 Nov 2025
  • L
User Interface (UI) Misrepresentation of Critical InformationCVE-2025-13082
Affects drupal/core | Versions >=8.0.0, <10.4.9>=10.5.0, <10.5.6>=11.0.0, <11.1.9>=11.2.0, <11.2.8
Has fix
ComposerPublished 20 Nov 2025
  • L
Use of Web Browser Cache Containing Sensitive InformationCVE-2025-13083
Affects drupal/core | Versions >=8.0.0, <10.4.9>=10.5.0, <10.5.6>=11.0.0, <11.1.9>=11.2.0, <11.2.8
Has fix
ComposerPublished 20 Nov 2025
  • H
Deserialization of Untrusted DataCVE-2025-13081
Affects drupal/core | Versions >=8.0.0, <10.4.9>=10.5.0, <10.5.6>=11.0.0, <11.1.9>=11.2.0, <11.2.8
Has fix
ComposerPublished 20 Nov 2025
  • M
Improper Check for Unusual or Exceptional ConditionsCVE-2025-13080
Affects drupal/core | Versions >=8.0.0, <10.4.9>=10.5.0, <10.5.6>=11.0.0, <11.1.9>=11.2.0, <11.2.8
Has fix
ComposerPublished 20 Nov 2025
  • H
HTTP Header InjectionCVE-2025-63828
Affects backdrop/backdrop | Versions >=0.0.0
Has fix
ComposerPublished 19 Nov 2025
  • L
Cross-site Scripting (XSS)CVE-2025-64711
Affects privatebin/privatebin | Versions >=1.7.7, <2.0.3
Has fix
ComposerPublished 19 Nov 2025
  • M
Cross-site Scripting (XSS)CVE-2025-63645
Affects ph7software/ph7builder | Versions >=0.0.0
Has fix
ComposerPublished 19 Nov 2025
  • H
SQL InjectionCVE-2025-65093
Affects librenms/librenms | Versions >=25.10.0, <25.11.0
Has fix
ComposerPublished 19 Nov 2025
  • H
Cross-site Scripting (XSS)CVE-2025-65013
Affects librenms/librenms | Versions >=25.10.0, <25.11.0
Has fix
ComposerPublished 19 Nov 2025
  • M
Weak Password RequirementsCVE-2025-65014
Affects librenms/librenms | Versions >=25.10.0, <25.11.0
Has fix
ComposerPublished 19 Nov 2025
  • M
Cross-site Scripting (XSS)CVE-2025-65012
Affects getkirby/cms | Versions >=5.0.0, <5.1.4
Has fix
ComposerPublished 19 Nov 2025
  • H
SQL InjectionCVE-2025-62519
Affects phpmyfaq/phpmyfaq | Versions <4.0.14
Has fix
ComposerPublished 18 Nov 2025
  • M
Relative Path TraversalCVE-2025-64714
Affects privatebin/privatebin | Versions >=1.7.7, <2.0.3
Has fix
ComposerPublished 16 Nov 2025
  • M
Weak Password Recovery Mechanism for Forgotten Password
Affects shopware/core | Versions <6.6.10.9>=6.7.0.0, <6.7.4.1
Has fix
ComposerPublished 16 Nov 2025
  • M
Incorrect AuthorizationCVE-2025-64500
Affects symfony/http-foundation | Versions <5.4.50>=6.0.0-BETA1, <6.4.29>=7.0.0-BETA1, <7.3.7
Has fix
ComposerPublished 13 Nov 2025
  • H
Incorrect AuthorizationCVE-2025-12998
Affects codingms/modules | Versions <4.3.11>=5.0.0, <5.7.4>=6.0.0, <6.4.2>=7.0.0, <7.5.5
Has fix
ComposerPublished 12 Nov 2025
  • H
SQL InjectionCVE-2025-64519
Affects torrentpier/torrentpier | Versions <2.8.9
Has fix
ComposerPublished 11 Nov 2025
  • M
Resource InjectionCVE-2025-12918
Affects yungifez/skuul | Versions >=2.3.0
Has fix
ComposerPublished 10 Nov 2025
  • M
Missing AuthorizationCVE-2024-39418
Affects magento/community-edition | Versions <2.4.4-p10>=2.4.5, <2.4.5-p9>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2
Has fix
ComposerPublished 9 Nov 2025
  • M
Missing AuthorizationCVE-2024-39405
Affects magento/community-edition | Versions <2.4.4-p10>=2.4.5, <2.4.5-p9>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2
Has fix
ComposerPublished 9 Nov 2025
  • C
Command InjectionCVE-2024-39402
Affects magento/community-edition | Versions <2.4.4-p10>=2.4.5, <2.4.5-p9>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2
Has fix
ComposerPublished 9 Nov 2025
  • M
Premature Release of Resource During Expected LifetimeCVE-2024-39404
Affects magento/community-edition | Versions <2.4.4-p10>=2.4.5, <2.4.5-p9>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2
Has fix
ComposerPublished 9 Nov 2025
  • M
Premature Release of Resource During Expected LifetimeCVE-2024-39413
Affects magento/community-edition | Versions <2.4.4-p10>=2.4.5, <2.4.5-p9>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2
Has fix
ComposerPublished 9 Nov 2025
  • M
Premature Release of Resource During Expected LifetimeCVE-2024-39407
Affects magento/community-edition | Versions <2.4.4-p10>=2.4.5, <2.4.5-p9>=2.4.6, <2.4.6-p7>=2.4.7-beta1, <2.4.7-p2
Has fix
ComposerPublished 9 Nov 2025