Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • H
Improper Access Control
drupal/core >=8.7.4, <8.7.5 Composer 18 Jul, 2019
  • M
Cross-site Scripting (XSS)
grumpydictator/firefly-iii <4.7.17.3 Composer 18 Jul, 2019
  • M
Cross-site Scripting (XSS)
grumpydictator/firefly-iii <4.7.17.3 Composer 18 Jul, 2019
  • M
Cross-site Scripting (XSS)
grumpydictator/firefly-iii <4.7.17.3 Composer 18 Jul, 2019
  • M
Cross-site Scripting (XSS)
grumpydictator/firefly-iii <4.7.17.2 Composer 18 Jul, 2019
  • M
Cross-site Scripting (XSS)
dolibarr/dolibarr >6.0.3, <=6.0.4 Composer 16 Jul, 2019
  • M
Deserialization of Untrusted Data
pimcore/pimcore <5.7.1 Composer 15 Jul, 2019
  • H
Arbitrary File Upload
pimcore/pimcore <5.7.1 Composer 15 Jul, 2019
  • M
Cross-site Scripting (XSS)
simplesamlphp/simplesamlphp >=1.12.0, <1.17.3 Composer 14 Jul, 2019
  • H
Cross Site Request Forgery (CSRF)
flarum/core <0.1.0-beta.9 Composer 08 Jul, 2019
  • M
Cross-site Scripting (XSS)
glpi/glpi <9.4.3 Composer 04 Jul, 2019
  • M
Cross-site Scripting (XSS)
intelliants/subrion <4.1.4 Composer 03 Jul, 2019
  • H
Arbitrary Command Execution
centreon/centreon >=0.0.0 Composer 02 Jul, 2019
  • H
Cross-site Scripting (XSS)
xorti/mxgraph-editor >=0.0.0 Composer 01 Jul, 2019
  • L
Information Exposure
moodle/moodle >=3.6, <3.6.4 Composer 26 Jun, 2019
  • M
Open Redirect
moodle/moodle <3.1.18,>=3.4, <3.4.9,>=3.5, <3.5.6,>=3.6, <3.6.4 Composer 26 Jun, 2019
  • M
Information Disclosure
typo3/cms >=8.0.0, <8.7.27,>=9.0.0, <9.5.8 Composer 25 Jun, 2019
  • H
Arbitrary Code Execution
typo3/cms >=8.0.0, <8.7.27,>=9.0.0, <9.5.8 Composer 25 Jun, 2019
  • H
Arbitrary Code Execution
typo3/cms-core >=8.0.0, <8.7.27,>=9.0.0, <9.5.8 Composer 25 Jun, 2019
  • H
Deserialization of Untrusted Data
typo3/cms >=8.0.0, <8.7.27,>=9.0.0, <9.5.8 Composer 25 Jun, 2019
  • H
Deserialization of Untrusted Data
typo3/cms-core >=8.0.0, <8.7.27,>=9.0.0, <9.5.8 Composer 25 Jun, 2019
  • M
Cross-Site Scripting (XSS)
typo3/cms >=8.3.0, <8.7.27,>=9.0.0, <9.5.8 Composer 25 Jun, 2019
  • M
Cross-Site Scripting (XSS)
typo3/cms-core >=8.3.0, <8.7.27,>=9.0.0, <9.5.8 Composer 25 Jun, 2019
  • L
Session Fixation
typo3/cms >=8.0.0, <8.7.27,>=9.0.0, <9.5.8 Composer 25 Jun, 2019
  • L
Session Fixation
typo3/cms-core >=8.0.0, <8.7.27,>=9.0.0, <9.5.8 Composer 25 Jun, 2019
  • H
Improper Access Control
typo3/cms >=9.0.0, <9.5.8 Composer 25 Jun, 2019
  • H
Cross-site Scripting (XSS)
shopware/shopware <5.5.8 Composer 24 Jun, 2019
  • M
Cross-site Scripting (XSS)
mantisbt/mantisbt >=2.1.0, <2.17.1 Composer 20 Jun, 2019
  • H
SQL injection
centreon/centreon >=18.10.0, <18.10.5,>=2.8.0, <2.8.28 Composer 20 Jun, 2019
  • M
Cross-site Scripting (XSS)
craftcms/cms <=3.1.30 Composer 18 Jun, 2019