Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
GHSA-77rm-9x9h-xj3g
  • NuGet/Google.Protobuf
  • Packagist/google/protobuf
  • Maven/com.google.protobuf:protobuf-parent
  • Go/github.com/protocolbuffers/protobuf
  • PyPI/protobuf
NULL Pointer Dereference in Protocol Buffers
  • 0.0.1-test1
  • 3.0.0
  • 3.0.0-alpha4
  • 3.0.0-beta2
  • 3.0.0-beta3
  • 3.0.0-beta4
  • 3.1.0
  • ...
2022-08-15T08:53:05.256472Z Fix available
GHSA-5h9g-x5rv-25wg
  • npm/tinymce
  • NuGet/TinyMCE
  • Packagist/tinymce/tinymce
Cross-site scripting vulnerability in TinyMCE
  • 3.4.3.2
  • 3.4.4
  • 3.4.5
  • 3.4.7
  • 3.5.0
  • 3.5.0.1
  • 3.5.1
  • ...
2022-08-15T08:35:27.155328Z Fix available
GHSA-r8hm-w5f7-wj39
  • npm/tinymce
  • Packagist/tinymce/tinymce
  • NuGet/TinyMCE
  • PyPI/django-tinymce
Cross-site scripting vulnerability in TinyMCE plugins
  • 3.4.3.2
  • 3.4.4
  • 3.4.5
  • 3.4.7
  • 3.5.0
  • 3.5.0.1
  • 3.5.1
  • ...
2022-08-15T08:34:03.370032Z Fix available
GHSA-jwvw-v7c5-m82h
  • NuGet/Google.Protobuf
  • Maven/com.google.protobuf:protobuf-parent
  • Go/github.com/protocolbuffers/protobuf
  • Packagist/google/protobuf
  • PyPI/protobuf
protobuf susceptible to buffer overflow
  • 0.0.1-test1
  • 3.0.0
  • 3.0.0-alpha4
  • 3.0.0-beta2
  • 3.0.0-beta3
  • 3.0.0-beta4
  • 3.1.0
  • ...
2022-08-15T08:22:52.777621Z Fix available
GHSA-pf6p-25r2-fx45
  • Packagist/dompdf/dompdf
Server-Side Request Forgery in dompdf/dompdf
  • See details.
2022-08-12T21:03:44Z Fix available
GHSA-cf6r-q678-f2p7
  • Packagist/microweber/microweber
Cross-site Scripting in microweber
  • See details.
2022-08-12T15:30:00Z Fix available
GHSA-2jx3-5j9v-prpp
  • Packagist/prestashop/blockwishlist
BlockWishList SQL Injection vulnerability
  • See details.
2022-08-11T20:36:40Z Fix available
GHSA-66hf-2p6w-jqfw
  • Packagist/laravel/framework
  • Packagist/laravel/framework
  • Packagist/laravel/framework
Laravel Framework XSS in Blade templating engine
  • See details.
2022-08-11T19:19:57Z Fix available
GHSA-9vwf-54m9-gc4f
  • Packagist/snipe/snipe-it
snipe-it is vulnerable to Improper Access Control
  • See details.
2022-08-11T19:17:54Z Fix available
GHSA-7v7w-f7c6-f829
  • Packagist/yetiforce/yetiforce-crm
YetiForceCRM is vulnerable to Business Logic Errors because product amount can be a negative number
  • See details.
2022-08-11T18:47:52Z No fix available
GHSA-cxg7-84wp-8pcq
  • Packagist/yetiforce/yetiforce-crm
YetiForceCRM is vulnerable to Business Logic Errors in the weight of a product
  • See details.
2022-08-11T18:47:07Z No fix available
GHSA-9c5c-5j4h-8q2c
  • Packagist/ssddanbrown/bookstack
BookStack is vulnerable to Improper Access Control.
  • See details.
2022-08-11T18:45:55Z Fix available
GHSA-4rmr-c2jx-vx27
  • Packagist/mustache/mustache
Mustache remote code injection vulnerability
  • See details.
2022-08-11T17:05:16Z Fix available
GHSA-5hfj-r725-wpc4
  • Packagist/october/system
  • Packagist/october/system
october/system arbitrary code execution
  • See details.
2022-08-11T16:55:36Z Fix available
GHSA-wv23-pfj7-2mjj
  • Packagist/october/system
  • Packagist/october/system
October/System authenticated file write leads to remote code execution
  • See details.
2022-08-11T16:54:35Z Fix available
GHSA-93wh-35r4-6qmw
  • Packagist/moodle/moodle
  • Packagist/moodle/moodle
  • Packagist/moodle/moodle
  • Packagist/moodle/moodle
Moodle allowed some users without permission to view other users' full names
  • See details.
2022-08-11T16:37:15Z Fix available