Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-5hc5-fxr9-5frc
  • Packagist/mautic/core
 Mautic has insufficient authentication in upgrade flow 20 hours ago
  • Fix available
  • Severity - 7.4 (High)
GHSA-8vff-35qm-qjvv
  • Packagist/mautic/core
 Mautic allows users enumeration due to weak password login 23 hours ago
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-qf6m-6m4g-rmrc
  • Packagist/mautic/core
  • Packagist/mautic/core-lib
 Mautic has insufficient authentication in upgrade flow 23 hours ago
  • Fix available
  • Severity - 5.1 (Medium)
GHSA-xpc5-rr39-v8v2
  • Packagist/mautic/core-lib
  • Packagist/mautic/core
 Mautic has an XSS in contact tracking and page hits report 23 hours ago
  • Fix available
  • Severity - 5.1 (Medium)
GHSA-73gr-32wg-qhh7
  • Packagist/mautic/core
  • Packagist/mautic/core-lib
 Mautic vulnerable to XSS in contact/company tracking (no authentication) 23 hours ago
  • Fix available
  • Severity - 5.1 (Medium)
GHSA-xv68-rrmw-9xwf
  • Packagist/mautic/core
  • Packagist/mautic/core-lib
 Mautic vulnerable to Cross-site Scripting (XSS) - stored (edit form HTML field) 23 hours ago
  • Fix available
  • Severity - 5.1 (Medium)
GHSA-x3jx-5w6m-q2fc
  • Packagist/mautic/core-lib
  • Packagist/mautic/core
 Mautic vulnerable to Improper Access Control in UI upgrade process yesterday
  • Fix available
  • Severity - 8.3 (High)
GHSA-998c-q8hh-h8gv
  • Packagist/concrete5/concrete5
 Concrete CMS stored XSS vulnerability in the "Top Navigator Bar" block yesterday
  • Fix available
  • Severity - 4.6 (Medium)
GHSA-534c-hcr7-67jg
  • Packagist/kimai/kimai
 Kimai has an XXE Leading to Local File Read 2 days ago
  • Fix available
  • Severity - 8.5 (High)
GHSA-rw5h-g8xq-6877
  • Packagist/wireui/wireui
 Wire UI has a JS XSS Vulnerability on route /wireui/button?label=Content 2 days ago
  • Fix available
  • Severity - 5.1 (Medium)
GHSA-6rgh-r6j3-3223
  • Packagist/czim/file-handling
 czim/file-handling vulnerable to SSRF and directory traversal 2 days ago
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-q25c-r482-77p9
  • Packagist/in2code/powermail
 powermail TYPO3 extension has Insecure Direct Object Reference 2 days ago
  • Fix available
  • Severity - 5.5 (Medium)
GHSA-2xpq-xp6c-5mgj
  • Packagist/contao/core-bundle
 Contao affected by insert tag injection via canonical URL 2 days ago
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-4p75-5p53-65m9
  • Packagist/contao/core-bundle
 Contao affected by directory traversal in the file selector widget 2 days ago
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-vm6r-j788-hjh5
  • Packagist/contao/core-bundle
 Contao affected by remote command execution through file upload 2 days ago
  • Fix available
  • Severity - 8.7 (High)
GHSA-xmxj-v2q8-8qx6
  • Packagist/concrete5/concrete5
 Concrete CMS Stored XSS in the "Next&Previous Nav" block 3 days ago
  • Fix available
  • Severity - 4.6 (Medium)
Load more...