Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Broken Access Control
typo3/cms >=8.0.0, <8.7.23,>=9.0.0, <9.5.4 Composer 22 Jan, 2019
  • M
Information Disclosure
typo3/cms >=8.0.0, <8.7.23,>=9.0.0, <9.5.4 Composer 22 Jan, 2019
  • M
Cross-Site Scripting (XSS)
typo3/cms >=8.0.0, <8.7.23,>=9.0.0, <9.5.4 Composer 22 Jan, 2019
  • M
Cross-Site Scripting (XSS)
typo3/cms >=8.0.0, <8.7.23,>=9.0.0, <9.5.4 Composer 22 Jan, 2019
  • M
Cross-Site Scripting (XSS)
typo3/cms >=9.0.0, <9.5.4 Composer 22 Jan, 2019
  • H
Arbitrary Code Execution
typo3/cms >=8.0.0, <8.7.23,>=9.0.0, <9.5.4 Composer 22 Jan, 2019
  • H
Security Misconfiguration
typo3/cms >=8.0.0, <8.7.23,>=9.0.0, <9.5.4 Composer 22 Jan, 2019
  • M
Access Control Bypass
api-platform/core >=2.2.0, <2.2.10,>=2.3.0, <2.3.6 Composer 20 Jan, 2019
  • M
Cross-site Scripting (XSS)
microweber/microweber >=0.0.0 Composer 17 Jan, 2019
  • M
Arbitrary Code Injection
woocommerce/woocommerce <3.2.4 Composer 16 Jan, 2019
  • M
Remote Code Execution (RCE)
pear/archive_tar <1.4.4 Composer 15 Jan, 2019
  • H
Information Exposure
studio-42/elfinder <2.1.45 Composer 14 Jan, 2019
  • H
Directory Traversal
topthink/think <1.0.0 Composer 14 Jan, 2019
  • H
Server Side Request Forgery (SSRF)
studio-42/elfinder <2.1.46 Composer 14 Jan, 2019
  • M
Cross-site Scripting (XSS)
dolibarr/dolibarr <8.0.4 Composer 06 Jan, 2019
  • H
SQL Injection
dolibarr/dolibarr <8.0.4 Composer 06 Jan, 2019
  • M
Cross-site Scripting (XSS)
dolibarr/dolibarr <8.0.4 Composer 06 Jan, 2019
  • H
Privilege Escalation
magento/core <1.9.3.10 Composer 02 Jan, 2019
  • H
Information Exposure
magento/core <1.9.4.0 Composer 31 Dec, 2018
  • H
Authentication Bypass
magento/core <1.9.4.0 Composer 31 Dec, 2018
  • H
Remote Code Execution (RCE)
magento/core <1.9.4.0 Composer 31 Dec, 2018
  • H
Remote Code Execution (RCE)
magento/core <1.9.4.0 Composer 31 Dec, 2018
  • M
Privilege Escalation
magento/core <1.9.4.0 Composer 31 Dec, 2018
  • H
Remote Code Execution (RCE)
magento/core <1.9.4.0 Composer 31 Dec, 2018
  • M
Remote Code Execution (RCE)
magento/core <1.9.4.0 Composer 31 Dec, 2018
  • M
Cross-Site Scripting (XSS)
magento/core <1.9.4.0 Composer 31 Dec, 2018
  • M
Cross-Site Scripting (XSS)
magento/core <1.9.4.0 Composer 31 Dec, 2018
  • M
Cross-Site Scripting (XSS)
magento/core <1.9.4.0 Composer 31 Dec, 2018
  • M
Information Exposure
magento/core <1.9.4.0 Composer 31 Dec, 2018
  • M
Cross-Site Scripting (XSS)
magento/core <1.9.4.0 Composer 31 Dec, 2018