Vulnerability Database
Blog
FAQ
Docs
Vulnerabilities
search
All ecosystems
231077
AlmaLinux
3083
Alpine
3538
Android
2115
Bitnami
4448
Chainguard
14034
CRAN
10
crates.io
1440
Debian
41014
GIT
23126
GitHub Actions
19
Go
3439
Hackage
19
Hex
30
Linux
13574
Maven
5051
npm
19016
NuGet
1353
openSUSE
8620
OSS-Fuzz
2615
Packagist
4029
Pub
8
PyPI
13899
Rocky Linux
1344
RubyGems
1612
SUSE
14728
SwiftURL
32
Ubuntu
40354
Wolfi
8527
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-5hc5-fxr9-5frc
Packagist/mautic/core
Mautic has insufficient authentication in upgrade flow
23 hours ago
Fix available
Severity - 7.4 (High)
GHSA-8vff-35qm-qjvv
Packagist/mautic/core
Mautic allows users enumeration due to weak password login
yesterday
Fix available
Severity - 6.9 (Medium)
GHSA-qf6m-6m4g-rmrc
Packagist/mautic/core
Packagist/mautic/core-lib
Mautic has insufficient authentication in upgrade flow
yesterday
Fix available
Severity - 5.1 (Medium)
GHSA-xpc5-rr39-v8v2
Packagist/mautic/core-lib
Packagist/mautic/core
Mautic has an XSS in contact tracking and page hits report
yesterday
Fix available
Severity - 5.1 (Medium)
GHSA-73gr-32wg-qhh7
Packagist/mautic/core
Packagist/mautic/core-lib
Mautic vulnerable to XSS in contact/company tracking (no authentication)
yesterday
Fix available
Severity - 5.1 (Medium)
GHSA-xv68-rrmw-9xwf
Packagist/mautic/core
Packagist/mautic/core-lib
Mautic vulnerable to Cross-site Scripting (XSS) - stored (edit form HTML field)
yesterday
Fix available
Severity - 5.1 (Medium)
GHSA-x3jx-5w6m-q2fc
Packagist/mautic/core-lib
Packagist/mautic/core
Mautic vulnerable to Improper Access Control in UI upgrade process
yesterday
Fix available
Severity - 8.3 (High)
GHSA-998c-q8hh-h8gv
Packagist/concrete5/concrete5
Concrete CMS stored XSS vulnerability in the "Top Navigator Bar" block
2 days ago
Fix available
Severity - 4.6 (Medium)
GHSA-534c-hcr7-67jg
Packagist/kimai/kimai
Kimai has an XXE Leading to Local File Read
2 days ago
Fix available
Severity - 8.5 (High)
GHSA-rw5h-g8xq-6877
Packagist/wireui/wireui
Wire UI has a JS XSS Vulnerability on route /wireui/button?label=Content
2 days ago
Fix available
Severity - 5.1 (Medium)
GHSA-6rgh-r6j3-3223
Packagist/czim/file-handling
czim/file-handling vulnerable to SSRF and directory traversal
2 days ago
Fix available
Severity - 6.9 (Medium)
GHSA-q25c-r482-77p9
Packagist/in2code/powermail
powermail TYPO3 extension has Insecure Direct Object Reference
2 days ago
Fix available
Severity - 5.5 (Medium)
GHSA-2xpq-xp6c-5mgj
Packagist/contao/core-bundle
Contao affected by insert tag injection via canonical URL
2 days ago
Fix available
Severity - 6.9 (Medium)
GHSA-4p75-5p53-65m9
Packagist/contao/core-bundle
Contao affected by directory traversal in the file selector widget
2 days ago
Fix available
Severity - 5.3 (Medium)
GHSA-vm6r-j788-hjh5
Packagist/contao/core-bundle
Contao affected by remote command execution through file upload
2 days ago
Fix available
Severity - 8.7 (High)
GHSA-xmxj-v2q8-8qx6
Packagist/concrete5/concrete5
Concrete CMS Stored XSS in the "Next&Previous Nav" block
3 days ago
Fix available
Severity - 4.6 (Medium)
Load more...
Packagist - OSV