Developer Tools
Snyk Learn
Snyk Advisor
Code Checker
About Snyk
Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All Vulnerabilities
Expand this section
APPLICATION
Cargo
cocoapods
Composer
Go
hex
Maven
npm
NuGet
pip
pub
RubyGems
Swift
Unmanaged (C/C++)
Expand this section
OPERATING SYSTEM
All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi
Report a new vulnerability
VULNERABILITY
AFFECTS
TYPE
PUBLISHED
C
Unrestricted Upload of File with Dangerous Type
ezsystems/ezpublish-kernel
<5.4.14.1
>=6.0, <6.13.6.2
>=7.0, <7.5.6.2
Composer
26 Apr 2024
C
Unrestricted Upload of File with Dangerous Type
ezsystems/ezpublish-legacy
>=0.0.0
Composer
26 Apr 2024
M
Cross-site Scripting
evolutioncms/evolution
>=1.4.0, <1.4.6
Composer
26 Apr 2024
M
Improper Restriction of Rendered UI Layers or Frames
ec-cube/ec-cube
>=3.0.0, <4.1-beta2
Composer
26 Apr 2024
M
Cross-site Scripting
ec-cube/ec-cube
>=4.0.0, <4.0.6
Composer
26 Apr 2024
M
Cross-site Scripting
ec-cube/ec-cube
>=3.0.0, <4.0.6
Composer
26 Apr 2024
M
Cross-site Scripting
ec-cube/ec-cube
>=4.0.0, <4.0.5-p1
Composer
26 Apr 2024
C
Information Exposure Through Timing Discrepancy
mdanter/ecc
>=0.0.0
Composer
26 Apr 2024
M
URL Redirection to Untrusted Site ('Open Redirect')
ec-cube/ec-cube
>=3.0.0, <3.0.17
Composer
26 Apr 2024
M
Cross-site Scripting (XSS)
craftcms/cms
>=0.0.0
Composer
26 Apr 2024
M
Cross-site Scripting (XSS)
angular-translate
*
npm
26 Apr 2024
C
OS Command Injection
akeneo/pim-community-dev
>=1.4, <1.4.28
>=1.5, <1.5.15
>=1.6, <1.6.6
Composer
26 Apr 2024
M
Cross-site Scripting
genix/cms
<1.1.1
Composer
26 Apr 2024
H
Improper Neutralization of Special Elements Used in a Template Engine
craftcms/cms
>=0.0.0
Composer
26 Apr 2024
C
Server-Side Template Injection
changedetection.io
[,0.45.21)
pip
26 Apr 2024
M
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
silverstripe/framework
<3.5.6
>=3.6.0, <3.6.3
>=4.0.0, <4.0.1
Composer
26 Apr 2024
H
Cross-Site Request Forgery (CSRF)
intelliants/subrion
>=0.0.0
Composer
26 Apr 2024
H
Improper Privilege Management
github.com/minio/minio/cmd
*
Go
26 Apr 2024
M
Cross-site Scripting (XSS)
org.wso2.am:am-parent
[,4.2.0)
Maven
26 Apr 2024
H
Out-of-bounds Write
exiv2
[0.14.1,0.16.0)
pip
26 Apr 2024
M
Heap-based Buffer Overflow
grub2
[,2.02-beta3)
Unmanaged (C/C++)
26 Apr 2024
H
Denial of Service (DoS)
haproxy
[,2.8.0)
Unmanaged (C/C++)
26 Apr 2024
H
Exposure of Sensitive Information to an Unauthorized Actor
sqlpage
<0.14.0
Cargo
26 Apr 2024
H
Resource Consumption
python-jose
[0,]
pip
26 Apr 2024
H
Improper Verification of Cryptographic Signature
python-jose
[0,]
pip
26 Apr 2024
L
Improper Control of Generation of Code ('Code Injection')
vyper
[0,]
pip
26 Apr 2024
M
Improper Control of Generation of Code ('Code Injection')
vyper
[0.3.4,]
pip
26 Apr 2024
L
Improper Locking
vyper
[,0.3.0)
pip
26 Apr 2024
M
Improper Input Validation
vyper
[0,]
pip
26 Apr 2024
M
Improper Input Validation
vyper
[0.3.4,]
pip
26 Apr 2024