Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Show:
Report a new vulnerability
Vulnerability Affects Type Published
  • H
Remote Code Execution 		drupal/drupal >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Remote Code Execution 		drupal/core >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Remote Code Execution 		drupal/drupal >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Remote Code Execution 		drupal/core >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Open Redirect 		drupal/core >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Open Redirect 		drupal/drupal >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Access Restriction Bypass 		drupal/core >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Access Restriction Bypass 		drupal/drupal >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Open Redirect 		drupal/core >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Open Redirect 		drupal/core >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • M
Cross-site Scripting (XSS) 		aheinze/cockpit >=0.0.0 Composer 21 Oct, 2018
  • H
Directory Traversal 		aheinze/cockpit >=0.0.0 Composer 18 Oct, 2018
  • M
Cross-site Request Forgery (CSRF) 		aheinze/cockpit >=0.0.0 Composer 17 Oct, 2018
  • H
Deserialization of Untrusted Data 		fossar/tcpdf-parser >=0.0.0 Composer 16 Oct, 2018
  • H
Deserialization of Untrusted Data 		fooman/tcpdf <6.2.22 Composer 16 Oct, 2018
  • H
Deserialization of Untrusted Data 		wallabag/tcpdf >=0.0.0 Composer 16 Oct, 2018
  • H
Deserialization of Untrusted Data 		spoonity/tcpdf <6.2.22 Composer 16 Oct, 2018
  • M
XPath Injection 		robrichards/xmlseclibs >=1.0.0, <3.0.2 Composer 09 Oct, 2018
  • M
Access Restriction Bypass 		alterphp/easyadmin-extension-bundle >=1.3.0, <1.3.1,>=1.2.0, <1.2.11 Composer 03 Oct, 2018
  • M
SQL Injection 		topthink/think <5.1.24 Composer 27 Sep, 2018
  • H
Arbitrary Code Execution 		moodle/moodle <3.1.14,>=3.3.0, <3.3.8,>=3.4.0, <3.4.5,>=3.5.0, <3.5.2 Composer 27 Sep, 2018
  • M
Cross-site Scripting (XSS) 		moodle/moodle <3.3.8,>=3.4.0, <3.4.5,>=3.5.0, <3.5.2 Composer 27 Sep, 2018
  • H
Arbitrary Code Injection 		phpwhois/phpwhois <=4.2.5 Composer 20 Sep, 2018
  • M
Directory Traversal 		smarty/smarty <3.1.33 Composer 20 Sep, 2018
  • H
Arbitrary Code Injection 		jsmitty12/phpwhois <5.1.0 Composer 20 Sep, 2018
  • H
Arbitrary Code Injection 		serluck/phpwhois <=4.2.6 Composer 20 Sep, 2018
  • H
Arbitrary Code Injection 		kazist/phpwhois <=4.2.6 Composer 20 Sep, 2018
  • H
Arbitrary Code Injection 		david-garcia/phpwhois <=4.3.1 Composer 20 Sep, 2018
  • H
Arbitrary Code Injection 		ivankristianto/phpwhois <=4.3.0 Composer 20 Sep, 2018
  • H
Arbitrary Code Injection 		brightlocal/phpwhois <=4.2.5 Composer 20 Sep, 2018
Subscribe to RSS feed