Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-54pg-2x9h-cmx8
  • Packagist/lavitto/typo3-form-to-database
 TYPO3 "Form to Database" extension susceptible to Cross-site Scripting yesterday
  • Fix available
  • Severity - 2.3 (Low)
GHSA-h8wv-vv58-468h
  • Packagist/intelliants/subrion
 Subrion CMS: Authenticated administrators are able to gain escalated access through Run SQL Query tool 6 days ago
  • No fix available
  • Severity - 6.5 (Medium)
GHSA-9v82-vcjx-m76j
  • Packagist/shopware/shopware
  • Packagist/shopware/core
 Shopware: Reflective Cross Site-Scripting (XSS) in CMS components 10 Sep
  • Fix available
  • Severity - 8.8 (High)
GHSA-72cm-7236-h43r
  • Packagist/datahihi1/tiny-env
 TinyEnv: Inline comments not stripped properly in .env values 09 Sep
  • Fix available
  • Severity - 5.1 (Medium)
GHSA-3j7m-5g4q-gfpc
  • Packagist/datahihi1/tiny-env
 TinyEnv: Missing .env file not required — may cause unexpected behavior 09 Sep
  • Fix available
  • Severity - 5.1 (Medium)
GHSA-vgmm-27fc-vmgp
  • Packagist/mahocommerce/maho
 Maho is Vulnerable to Authenticated Remote Code Execution via File Upload 09 Sep
  • Fix available
  • Severity - 8.7 (High)
GHSA-29cj-cxw4-v4j2
  • Packagist/yeswiki/yeswiki
 YesWiki Cross Site Scripting vulnerability 09 Sep
  • No fix available
  • Severity - 6.1 (Medium)
GHSA-wh92-6q6g-px7j
  • Packagist/magento/community-edition
  • Packagist/magento/project-community-edition
 Magento Community Edition Improper Input Validation vulnerability 09 Sep
  • No fix available
  • Severity - 9.1 (Critical)
GHSA-2fhw-2j7m-mr4m
  • Packagist/typo3/cms-workspaces
  • Packagist/typo3/cms-recycler
  • Packagist/typo3/cms-dashboard
  • Packagist/typo3/cms-beuser
  • Packagist/typo3/cms-backend
 TYPO3 backend modules have Broken Access Control 09 Sep
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-cvm2-5f78-g9m8
  • Packagist/typo3/cms-core
 TYPO3 CMS exposes sensitive information in an error message 09 Sep
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-j8vm-7q52-2m2m
  • Packagist/typo3/cms-backend
  • Packagist/typo3/cms-recordlist
 TYPO3 CSV download feature information disclosure 09 Sep
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-w2pf-7q5w-2cgw
  • Packagist/typo3/cms-workspaces
 TYPO3 Workspaces Module Information Disclosure 09 Sep
  • Fix available
  • Severity - 7.1 (High)
GHSA-72jf-5fg5-3cw3
  • Packagist/typo3/cms-core
 TYPO3 CMS has an open‑redirect vulnerability 09 Sep
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-p5jq-5383-qvc7
  • Packagist/typo3/cms-core
 TYPO3 CMS uses insufficient entropy when generating passwords 09 Sep
  • Fix available
  • Severity - 6.3 (Medium)
GHSA-xrcq-533q-8rxw
  • Packagist/typo3/cms-backend
 TYPO3 Bookmark Toolbar vulnerable to denial of service 09 Sep
  • Fix available
  • Severity - 5.1 (Medium)
GHSA-8xx5-h6m3-jr33
  • Packagist/prestashop/prestashop
 Presta Shop vulnerable to email enumeration 04 Sep
  • Fix available
  • Severity - 4.2 (Medium)
Load more...