Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-qh8m-9qxx-53m5
  • Packagist/cakephp/cakephp
 CakePHP PaginatorHelper::limitControl() vulnerable to reflected cross-site-scripting 2 days ago
  • Fix available
  • Severity - 5.4 (Medium)
GHSA-rwr8-xrpw-9qf5
  • Packagist/solspace/craft-freeform
 solspace/craft-freeform Exposed to Known Axios Vulnerabilities via Precompiled Assets 3 days ago
  • Fix available
GHSA-58q2-9x27-h2jm
  • Packagist/solspace/craft-freeform
 solspace/craft-freeform Has a DoS Vulnerability 3 days ago
  • Fix available
  • Severity - 2.7 (Low)
GHSA-54v4-4685-vwrj
  • Packagist/alextselegidis/easyappointments
 alextselegidis/easyappointments is Vulnerable to CSRF Protection Bypass 3 days ago
  • No fix available
  • Severity - 7.4 (High)
GHSA-4wg4-p27p-5q2r
  • Packagist/pimcore/web2print-tools-bundle
 Pimcore Web2Print Tools Bundle "Favourite Output Channel Configuration" Missing Function Level Authorization 3 days ago
  • Fix available
  • Severity - 5.4 (Medium)
GHSA-hqrp-m84v-2m2f
  • Packagist/pimcore/admin-ui-classic-bundle
 Pimcore's Admin Classic Bundle is Missing Function Level Authorization on "Predefined Properties" Listing 3 days ago
  • Fix available
  • Severity - 4.3 (Medium)
GHSA-m3r2-724c-pwgf
  • Packagist/pimcore/pimcore
 Pimcore is Vulnerable to Broken Access Control: Missing Function Level Authorization on "Static Routes" Listing 3 days ago
  • Fix available
  • Severity - 4.3 (Medium)
GHSA-q433-j342-rp9h
  • Packagist/pimcore/pimcore
 Pimcore ENV Variables and Cookie Informations are exposed in http_error_log 3 days ago
  • Fix available
  • Severity - 8.6 (High)
DRUPAL-CONTRIB-2026-005
  • Packagist:https://packages.drupal.org/8/drupal/social_auth_entra_id
 See record for full details 5 days ago
  • Fix available
DRUPAL-CONTRIB-2026-004
  • Packagist:https://packages.drupal.org/8/drupal/pianoanalytics
 See record for full details 5 days ago
  • Fix available
DRUPAL-CONTRIB-2026-003
  • Packagist:https://packages.drupal.org/8/drupal/atsmarttag
 See record for full details 5 days ago
  • Fix available
DRUPAL-CONTRIB-2026-002
  • Packagist:https://packages.drupal.org/8/drupal/role_delegation
 See record for full details 5 days ago
  • Fix available
DRUPAL-CONTRIB-2026-001
  • Packagist:https://packages.drupal.org/8/drupal/ginvite
 See record for full details 5 days ago
  • Fix available
GHSA-7cw6-7h3h-v8pf
  • Packagist/shopware/core
  • Packagist/shopware/shopware
 Shopware Has Improper Control of Generation of Code in Twig rendered views 5 days ago
  • Fix available
  • Severity - 7.2 (High)
GHSA-r7vr-wg3f-8hr9
  • Packagist/concrete5/concrete5
 Concrete5 CMS contains an XPath injection vulnerability 5 days ago
  • No fix available
  • Severity - 6.9 (Medium)
GHSA-7vp9-x248-9vr9
  • Packagist/typo3/cms-core
 TYPO3 CMS Allows Insecure Deserialization via Mailer File Spool 5 days ago
  • Fix available
  • Severity - 5.2 (Medium)
Load more...