Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
- H
Arbitrary File UploadCVE-2026-40488
Affects openmage/magento-lts | Versions <20.17.0
Has fix
ComposerPublished 28 Apr 2026
- M
SQL InjectionCVE-2026-6982
Affects showdoc/showdoc | Versions >=2.5.3, <3.8.1
Has fix
ComposerPublished 27 Apr 2026
- M
Server-side Request Forgery (SSRF)CVE-2026-41887
Affects flarum/core | Versions <1.8.16>=2.0.0-beta.1, <2.0.0-rc.1
Has fix
ComposerPublished 27 Apr 2026
- C
Deserialization of Untrusted DataCVE-2026-25524
Affects openmage/magento-lts | Versions <20.17.0
Has fix
ComposerPublished 27 Apr 2026
- H
CRLF InjectionCVE-2026-41570
Affects phpunit/phpunit | Versions >=12.5.21, <12.5.22>=13.1.5, <13.1.6
Has fix
ComposerPublished 27 Apr 2026
- M
Missing AuthorizationCVE-2026-40098
Affects openmage/magento-lts | Versions <20.17.0
Has fix
ComposerPublished 27 Apr 2026
- H
Directory TraversalCVE-2026-25525
Affects openmage/magento-lts | Versions <20.17.0
Has fix
ComposerPublished 27 Apr 2026
- H
Incorrect AuthorizationCVE-2026-41325
Affects getkirby/cms | Versions <4.9.0>=5.0.0-alpha.1, <5.4.0
Has fix
ComposerPublished 27 Apr 2026
- M
XML InjectionCVE-2026-32870
Affects getkirby/cms | Versions <4.9.0>=5.0.0-alpha.1, <5.4.0
Has fix
ComposerPublished 27 Apr 2026
- M
Incorrect AuthorizationCVE-2026-40099
Affects getkirby/cms | Versions <4.9.0>=5.0.0-alpha.1, <5.4.0
Has fix
ComposerPublished 26 Apr 2026
Affects getkirby/cms | Versions >=3.8.0-rc.1, <4.9.0>=5.0.0-alpha.1, <5.4.0
Has fix
ComposerPublished 26 Apr 2026
- M
Cross-site Scripting (XSS)CVE-2025-10354
Affects mediawiki/semantic-media-wiki | Versions <5.0.2
Has fix
ComposerPublished 26 Apr 2026
- C
Authorization Bypass Through User-Controlled KeyCVE-2018-25270
Affects top-think/framework | Versions <5.1.32
Has fix
ComposerPublished 26 Apr 2026
- H
Cross-site Scripting (XSS)CVE-2026-41201
Affects ci4-cms-erp/ci4ms | Versions <0.31.5.0
Has fix
ComposerPublished 26 Apr 2026
- C
Directory TraversalCVE-2026-41202
Affects ci4-cms-erp/ci4ms | Versions <0.31.5.0
Has fix
ComposerPublished 26 Apr 2026
- C
Directory TraversalCVE-2026-41203
Affects ci4-cms-erp/ci4ms | Versions <0.31.5.0
Has fix
ComposerPublished 26 Apr 2026
- M
Cross-site Scripting (XSS)CVE-2025-13784
Affects yungifez/skuul | Versions >=0.0.0
Has fix
ComposerPublished 26 Apr 2026
- M
Cross-site Request Forgery (CSRF)CVE-2026-40929
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 26 Apr 2026
- M
Guessable CAPTCHACVE-2026-40935
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 26 Apr 2026
- M
Active Debug CodeCVE-2026-40908
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 26 Apr 2026
- H
Authorization Bypass Through User-Controlled KeyCVE-2026-40907
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 26 Apr 2026
- M
Cross-site Scripting (XSS)CVE-2019-20921
Affects snapappointments/bootstrap-select | Versions <1.13.6
Has fix
ComposerPublished 23 Apr 2026
- L
Incorrect AuthorizationCVE-2026-29179
Affects october/october | Versions <4.1.17
Has fix
ComposerPublished 22 Apr 2026
- M
Incorrect AuthorizationCVE-2026-26067
Affects october/october | Versions <4.1.17
Has fix
ComposerPublished 22 Apr 2026
- H
Incomplete List of Disallowed InputsCVE-2026-26274
Affects october/october | Versions <4.1.17
Has fix
ComposerPublished 22 Apr 2026
- L
Cross-site Scripting (XSS)CVE-2026-27937
Affects october/october | Versions <4.1.17
Has fix
ComposerPublished 22 Apr 2026
- H
Cleartext Storage of Sensitive InformationCVE-2026-6553
Affects typo3/cms-core | Versions >14.2.0, <14.3.0
Has fix
ComposerPublished 21 Apr 2026
- H
Cleartext Storage of Sensitive InformationCVE-2026-6553
Affects typo3/cms-backend | Versions >14.2.0, <14.3.0
Has fix
ComposerPublished 21 Apr 2026
- M
SQL InjectionCVE-2026-41143
Affects yeswiki/yeswiki | Versions <4.6.1
Has fix
ComposerPublished 19 Apr 2026