Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • H
Remote Code Execution
drupal/drupal >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Remote Code Execution
drupal/core >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Remote Code Execution
drupal/drupal >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Remote Code Execution
drupal/core >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Open Redirect
drupal/core >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Open Redirect
drupal/drupal >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Access Restriction Bypass
drupal/core >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Access Restriction Bypass
drupal/drupal >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Open Redirect
drupal/core >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • H
Open Redirect
drupal/core >=7.0.0, <7.60,>=8.0.0, <8.5.8,>=8.6.0, <8.6.2 Composer 22 Oct, 2018
  • M
Cross-site Scripting (XSS)
aheinze/cockpit >=0.0.0 Composer 21 Oct, 2018
  • H
Directory Traversal
aheinze/cockpit >=0.0.0 Composer 18 Oct, 2018
  • M
Cross-site Request Forgery (CSRF)
aheinze/cockpit >=0.0.0 Composer 17 Oct, 2018
  • H
Deserialization of Untrusted Data
fossar/tcpdf-parser >=0.0.0 Composer 16 Oct, 2018
  • H
Deserialization of Untrusted Data
fooman/tcpdf <6.2.22 Composer 16 Oct, 2018
  • H
Deserialization of Untrusted Data
wallabag/tcpdf >=0.0.0 Composer 16 Oct, 2018
  • H
Deserialization of Untrusted Data
spoonity/tcpdf <6.2.22 Composer 16 Oct, 2018
  • M
XPath Injection
robrichards/xmlseclibs >=1.0.0, <3.0.2 Composer 09 Oct, 2018
  • M
Access Restriction Bypass
alterphp/easyadmin-extension-bundle >=1.3.0, <1.3.1,>=1.2.0, <1.2.11 Composer 03 Oct, 2018
  • M
SQL Injection
topthink/think <5.1.24 Composer 27 Sep, 2018
  • H
Arbitrary Code Execution
moodle/moodle <3.1.14,>=3.3.0, <3.3.8,>=3.4.0, <3.4.5,>=3.5.0, <3.5.2 Composer 27 Sep, 2018
  • M
Cross-site Scripting (XSS)
moodle/moodle <3.3.8,>=3.4.0, <3.4.5,>=3.5.0, <3.5.2 Composer 27 Sep, 2018
  • H
Arbitrary Code Injection
phpwhois/phpwhois <=4.2.5 Composer 20 Sep, 2018
  • M
Directory Traversal
smarty/smarty <3.1.33 Composer 20 Sep, 2018
  • H
Arbitrary Code Injection
jsmitty12/phpwhois <5.1.0 Composer 20 Sep, 2018
  • H
Arbitrary Code Injection
serluck/phpwhois <=4.2.6 Composer 20 Sep, 2018
  • H
Arbitrary Code Injection
kazist/phpwhois <=4.2.6 Composer 20 Sep, 2018
  • H
Arbitrary Code Injection
david-garcia/phpwhois <=4.3.1 Composer 20 Sep, 2018
  • H
Arbitrary Code Injection
ivankristianto/phpwhois <=4.3.0 Composer 20 Sep, 2018
  • H
Arbitrary Code Injection
brightlocal/phpwhois <=4.2.5 Composer 20 Sep, 2018