Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Show:
Report a new vulnerability
Vulnerability Affects Type Published
  • H
Cross-site Scripting (XSS) 		craftcms/cms <3.3.8 Composer 11 Oct, 2019
  • H
Remote Code Execution (RCE) 		magento/community-edition >=2.2.0, <2.2.10,>=2.3.0, <2.3.2-p2 Composer 11 Oct, 2019
  • H
Remote Code Execution (RCE) 		magento/community-edition >=2.2.0, <2.2.10,>=2.3.0, <2.3.2-p2 Composer 11 Oct, 2019
  • H
Remote Code Execution (RCE) 		magento/community-edition >=2.1.0, <2.1.19,>=2.2.0, <2.2.10,>=2.3.0, <2.3.2-p2 Composer 11 Oct, 2019
  • H
Remote Code Execution (RCE) 		magento/community-edition >=2.2.0, <2.2.10,>=2.3.0, <2.3.2-p2 Composer 11 Oct, 2019
  • H
Remote Code Execution (RCE) 		magento/community-edition >=2.2.0, <2.2.10,>=2.3.0, <2.3.2-p2 Composer 11 Oct, 2019
  • H
SQL injection 		centreon/centreon >=2.8.0, <2.8.28,>=18.10.0, <18.10.4 Composer 09 Oct, 2019
  • H
Information Exposure 		centreon/centreon >=0.0.0 Composer 09 Oct, 2019
  • H
Cross-site Scripting (XSS) 		centreon/centreon >=2.8.0, <2.8.28,>=18.10.0, <18.10.5 Composer 09 Oct, 2019
  • H
Arbitrary File Upload 		centreon/centreon >=18.10.0, <18.10.4 Composer 09 Oct, 2019
  • L
Cookie Theft 		centreon/centreon >=0.0.0 Composer 09 Oct, 2019
  • H
Remote Code Execution (RCE) 		centreon/centreon >=2.8.0, <2.8.27,>=18.10.0, <18.10.4 Composer 09 Oct, 2019
  • M
Use of Insufficiently Random Values 		centreon/centreon >=2.8.0, <18.10.5 Composer 09 Oct, 2019
  • H
SQL Injection 		centreon/centreon >=2.8.0, <2.8.27,>=18.10.0, <18.10.4 Composer 09 Oct, 2019
  • M
Authentication Bypass 		centreon/centreon >=2.8.0, <2.8.28,>=18.10.0, <18.10.4 Composer 09 Oct, 2019
  • M
Remote Code Execution 		centreon/centreon >=2.8.0, <2.8.28,>=18.10.0, <18.10.4 Composer 08 Oct, 2019
  • H
Privilege Escalation 		centreon/centreon >=0.0.0 Composer 08 Oct, 2019
  • H
Cross-site Scripting (XSS) 		intelliants/subrion >=0.0.0 Composer 07 Oct, 2019
  • M
Cross-site Scripting (XSS) 		nilsteampassnet/teampass >=0.0.0 Composer 06 Oct, 2019
  • M
Cross-site Scripting (XSS) 		nilsteampassnet/teampass >=0.0.0 Composer 05 Oct, 2019
  • M
Cross-site Scripting (XSS) 		nilsteampassnet/teampass >=0.0.0 Composer 27 Sep, 2019
  • L
Improper Access Control 		silverstripe/assets <1.4.5 Composer 26 Sep, 2019
  • M
Improper Access Control 		silverstripe/framework >=4.4.0, <4.4.4,>=4.3.0, <4.3.6 Composer 26 Sep, 2019
  • H
Incorrect Access Control 		silverstripe/framework >=4.1.0, <4.3.6,>=4.4.0, <4.4.4 Composer 26 Sep, 2019
  • M
Incorrect Access Control 		silverstripe/assets <1.3.5 Composer 25 Sep, 2019
  • L
Session Fixation 		silverstripe/framework >=3.6.0, <3.6.8,>=3.7.0, <3.7.4,>=4.3.0, <4.3.6,>=4.4.0, <4.4.4 Composer 25 Sep, 2019
  • H
SQL Injection 		centreon/centreon >=0.0.0 Composer 25 Sep, 2019
  • H
Command Injection 		studio-42/elfinder <2.1.48 Composer 23 Sep, 2019
  • M
User Enumeration 		pagekit/pagekit >=0.0.0 Composer 22 Sep, 2019
  • M
Broken Access Control 		bagisto/bagisto <0.1.6 Composer 18 Sep, 2019