Vulnerability Database
Blog
FAQ
Docs
arrow_forward
search
Vulnerabilities
search
All ecosystems
398347
AlmaLinux
3942
Alpaquita
6265
Alpine
3803
Android
3012
BellSoft Hardened Containers
216
Bitnami
5970
Chainguard
30945
CRAN
11
crates.io
1787
Debian
48047
Echo
1750
GHC
3
GIT
49575
GitHub Actions
35
Go
4653
Hackage
24
Hex
38
Linux
13573
Mageia
5669
Maven
5870
MinimOS
3422
npm
68509
NuGet
1460
openEuler
5028
openSUSE
10164
OSS-Fuzz
3677
Packagist
4807
Pub
10
PyPI
16537
Red Hat
17009
Rocky Linux
1965
RubyGems
1784
SUSE
16699
SwiftURL
36
Ubuntu
46231
Wolfi
15821
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-54pg-2x9h-cmx8
Packagist/lavitto/typo3-form-to-database
TYPO3 "Form to Database" extension susceptible to Cross-site Scripting
yesterday
Fix available
Severity - 2.3 (Low)
GHSA-h8wv-vv58-468h
Packagist/intelliants/subrion
Subrion CMS: Authenticated administrators are able to gain escalated access through Run SQL Query tool
6 days ago
No fix available
Severity - 6.5 (Medium)
GHSA-9v82-vcjx-m76j
Packagist/shopware/shopware
Packagist/shopware/core
Shopware: Reflective Cross Site-Scripting (XSS) in CMS components
10 Sep
Fix available
Severity - 8.8 (High)
GHSA-72cm-7236-h43r
Packagist/datahihi1/tiny-env
TinyEnv: Inline comments not stripped properly in .env values
09 Sep
Fix available
Severity - 5.1 (Medium)
GHSA-3j7m-5g4q-gfpc
Packagist/datahihi1/tiny-env
TinyEnv: Missing .env file not required — may cause unexpected behavior
09 Sep
Fix available
Severity - 5.1 (Medium)
GHSA-vgmm-27fc-vmgp
Packagist/mahocommerce/maho
Maho is Vulnerable to Authenticated Remote Code Execution via File Upload
09 Sep
Fix available
Severity - 8.7 (High)
GHSA-29cj-cxw4-v4j2
Packagist/yeswiki/yeswiki
YesWiki Cross Site Scripting vulnerability
09 Sep
No fix available
Severity - 6.1 (Medium)
GHSA-wh92-6q6g-px7j
Packagist/magento/community-edition
Packagist/magento/project-community-edition
Magento Community Edition Improper Input Validation vulnerability
09 Sep
No fix available
Severity - 9.1 (Critical)
GHSA-2fhw-2j7m-mr4m
Packagist/typo3/cms-workspaces
Packagist/typo3/cms-recycler
Packagist/typo3/cms-dashboard
Packagist/typo3/cms-beuser
Packagist/typo3/cms-backend
TYPO3 backend modules have Broken Access Control
09 Sep
Fix available
Severity - 5.3 (Medium)
GHSA-cvm2-5f78-g9m8
Packagist/typo3/cms-core
TYPO3 CMS exposes sensitive information in an error message
09 Sep
Fix available
Severity - 5.3 (Medium)
GHSA-j8vm-7q52-2m2m
Packagist/typo3/cms-backend
Packagist/typo3/cms-recordlist
TYPO3 CSV download feature information disclosure
09 Sep
Fix available
Severity - 5.3 (Medium)
GHSA-w2pf-7q5w-2cgw
Packagist/typo3/cms-workspaces
TYPO3 Workspaces Module Information Disclosure
09 Sep
Fix available
Severity - 7.1 (High)
GHSA-72jf-5fg5-3cw3
Packagist/typo3/cms-core
TYPO3 CMS has an open‑redirect vulnerability
09 Sep
Fix available
Severity - 5.3 (Medium)
GHSA-p5jq-5383-qvc7
Packagist/typo3/cms-core
TYPO3 CMS uses insufficient entropy when generating passwords
09 Sep
Fix available
Severity - 6.3 (Medium)
GHSA-xrcq-533q-8rxw
Packagist/typo3/cms-backend
TYPO3 Bookmark Toolbar vulnerable to denial of service
09 Sep
Fix available
Severity - 5.1 (Medium)
GHSA-8xx5-h6m3-jr33
Packagist/prestashop/prestashop
Presta Shop vulnerable to email enumeration
04 Sep
Fix available
Severity - 4.2 (Medium)
Load more...
Packagist - OSV