Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-vrjr-p3xp-xx2x
  • Packagist/thorsten/phpmyfaq
phpMyFAQ Generates an Error Message Containing Sensitive Information if database server is not available 2 days ago
  • Fix available
  • Severity - 7.8 (High)
GHSA-52jr-x6h6-xj6g
  • Packagist/drupal/core
Drupal core vulnerable to improper error handling 3 days ago
  • Fix available
  • Severity - 5.9 (Medium)
GHSA-xq54-x54m-vcpx
  • Packagist/drupal/core
Drupal core Denial of Service 3 days ago
  • Fix available
  • Severity - 7.5 (High)
GHSA-4h8f-c635-25p7
  • Packagist/ibexa/post-install
ibexa/post-install affected by Breach with Varnish VCL 6 days ago
  • Fix available
GHSA-fh7v-q458-7vmw
  • Packagist/ibexa/http-cache
ibexa/http-cache affected by Breach with Varnish VCL 6 days ago
  • Fix available
GHSA-mgfg-7533-7jf6
  • Packagist/ezsystems/ezplatform-http-cache
ezsystems/ezplatform-http-cache affected by Breach with Varnish VCL 6 days ago
  • Fix available
GHSA-8w3p-gf85-qcch
  • Packagist/ibexa/admin-ui
Ibexa Admin UI vulnerable to Cross-site Scripting in a field that is used in the Content name pattern 6 days ago
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-pxm4-r5ph-q2m2
  • Packagist/simplesamlphp/saml2
  • Packagist/simplesamlphp/saml2-legacy
SimpleSAMLphp SAML2 has an XXE in parsing SAML messages 6 days ago
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-2x65-fpch-2fcm
  • Packagist/simplesamlphp/xml-common
SimpleSAMLphp xml-common XXE vulnerability 6 days ago
  • Fix available
  • Severity - 8.8 (High)
GHSA-mj5r-x73q-fjw6
  • Packagist/spencer14420/sp-php-email-handler
SPEmailHandler-PHP has Potential Abuse for Sending Arbitrary Emails 27 Nov
  • Fix available
  • Severity - 8.7 (High)
GHSA-rmv2-8jjc-23xw
  • Packagist/tecnickcom/tcpdf
TCPDF Local File Inclusion vulnerability 26 Nov
  • Fix available
  • Severity - 5.5 (Medium)
GHSA-fhg2-r2h9-h7q8
  • Packagist/moodle/moodle
Moodle IDOR when deleting OAuth2 linked accounts 20 Nov
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-j822-x5gg-5r56
  • Packagist/moodle/moodle
Moodle allows users to retrieve information they did not have permission to access 20 Nov
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-r4xr-m393-778m
  • Packagist/moodle/moodle
Moodle IDOR when accessing list of course badges 20 Nov
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-xfv7-h2qg-rjm7
  • Packagist/moodle/moodle
Moodle Lesson activity password bypass through PHP loose comparison 20 Nov
  • Fix available
  • Severity - 6.3 (Medium)
GHSA-m5vv-7jxc-8p6x
  • Packagist/redaxo/source
Redaxo Core CMS Cross Site Scripting (XSS) 19 Nov
  • Fix available
  • Severity - 5.3 (Medium)