Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-8x9v-8qgj-945x
  • Packagist/snipe/snipe-it
 Snipe-IT has Cross-site Scripting vulnerability in CSV import workflow yesterday
  • No fix available
  • Severity - 5.2 (Medium)
GHSA-g6xh-wrpf-v6j6
  • Packagist/phppgadmin/phppgadmin
 phppgadmin contains a SQL injection vulnerability yesterday
  • No fix available
  • Severity - 6.5 (Medium)
GHSA-r63p-v37q-g74c
  • Packagist/phppgadmin/phppgadmin
 phppgadmin contains an incorrect access control vulnerability yesterday
  • No fix available
  • Severity - 6.1 (Medium)
GHSA-927w-vq5c-8gc3
  • Packagist/phppgadmin/phppgadmin
 phppgadmin contains a SQL injection vulnerability yesterday
  • No fix available
  • Severity - 6.5 (Medium)
GHSA-h369-cpjj-qfff
  • Packagist/phppgadmin/phppgadmin
 phppgadmin vulnerable to Cross-site Scripting yesterday
  • No fix available
  • Severity - 2.1 (Low)
GHSA-2jm2-2p35-rp3j
  • Packagist/devcode-it/openstamanager
 OpenSTAManager has Authenticated SQL Injection in API via 'display' parameter 2 days ago
  • Fix available
  • Severity - 8.8 (High)
GHSA-mwcc-7vpp-xmv9
  • Packagist/mongodb/mongodb-extension
 MongoDB driver extension affected by mongoc_bulk_operation_t's read of invalid memory 3 days ago
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-6pmj-xjxp-p8g9
  • Packagist/librenms/librenms
 LibreNMS is vulnerable to SQL Injection (Boolean-Based Blind) in hostname parameter in ajax_output.php endpoint 3 days ago
  • No fix available
  • Severity - 5.5 (Medium)
GHSA-ffpg-gm3h-4p5p
  • Packagist/backdrop/backdrop
 Backdrop CMS Host Header Injection vulnerability 3 days ago
  • No fix available
  • Severity - 6.9 (Medium)
GHSA-83v7-c2cf-p9c2
  • Packagist/drupal/core
 Drupal core allows Forceful Browsing 3 days ago
  • Fix available
  • Severity - 2.7 (Low)
GHSA-h89p-5896-f4q8
  • Packagist/drupal/core
 Drupal core allows Content Spoofing 3 days ago
  • Fix available
  • Severity - 2.1 (Low)
GHSA-m6vv-vcj8-w8m7
  • Packagist/drupal/core
 Drupal core allows Object Injection 3 days ago
  • Fix available
  • Severity - 4.5 (Medium)
GHSA-mhpg-hpj5-73r2
  • Packagist/drupal/core
 Drupal core allows Exploiting Incorrectly Configured Access Control Security Levels 3 days ago
  • Fix available
  • Severity - 1.7 (Low)
GHSA-9jrw-jrrj-p6fr
  • Packagist/drupal/email_tfa
 Drupal Email TFA allows Functionality Bypass 3 days ago
  • Fix available
  • Severity - 5.4 (Medium)
GHSA-gg35-374m-9ph8
  • Packagist/drupal/simple_multistep
 Drupal Simple multi step form allows Cross-Site Scripting 3 days ago
  • Fix available
  • Severity - 1.1 (Low)
GHSA-5mrf-j8v6-f45g
  • Packagist/librenms/librenms
 LibreNMS has Weak Password Policy 3 days ago
  • Fix available
  • Severity - 3.7 (Low)
Load more...