Homepage
About Snyk

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Expand this section

APPLICATION

Expand this section

OPERATING SYSTEM

Report a new vulnerability
VULNERABILITY AFFECTS TYPE PUBLISHED
  • H
Weak Password Recovery Mechanism for Forgotten Password 		cartalyst/sentry >=0.0.0 Composer 16 May 2024
  • H
Directory Traversal 		getgrav/grav <1.7.46 Composer 16 May 2024
  • H
SQL Injection 		adodb/adodb-php <5.20.11 Composer 16 May 2024
  • M
Insufficient Session Expiration 		reportico-web/reportico >=0.0.0 Composer 15 May 2024
  • M
Exposure of Sensitive Information to an Unauthorized Actor 		prestashop/prestashop >=8.1.5, <8.1.6 Composer 15 May 2024
  • C
Cross-site Scripting (XSS) 		prestashop/prestashop >=8.1.0, <8.1.6 Composer 15 May 2024
  • C
Use of Password Hash With Insufficient Computational Effort 		php-censor/php-censor >=2.1.4, <2.1.5 Composer 15 May 2024
  • C
Unrestricted Upload of File with Dangerous Type 		cockpit-hq/cockpit <2.7.0 Composer 15 May 2024
  • M
Improper Verification of Cryptographic Signature 		typo3/cms-core >=9.0.0, <9.5.48 >=10.0.0, <10.4.45 >=11.0.0, <11.5.37 >=12.0.0, <12.4.15 >=13.0.0, <13.1.1 Composer 15 May 2024
  • M
Cross-site Scripting (XSS) 		typo3/cms-core >=9.0.0, <9.5.48 >=10.0.0, <10.4.45 >=11.0.0, <11.5.37 >=12.0.0, <12.4.15 >=13.0.0, <13.1.1 Composer 15 May 2024
  • M
Cross-site Scripting (XSS) 		typo3/cms-core >=9.0.0, <9.5.48 >=10.0.0, <10.4.45 >=11.0.0, <11.5.37 >=12.0.0, <12.4.15 >=13.0.0, <13.1.1 Composer 15 May 2024
  • L
Cross-site Scripting 		typo3/cms-core >=13.0.0, <13.1.1 Composer 15 May 2024
  • M
Cross-site Scripting (XSS) 		mantisbt/mantisbt <2.26.2 Composer 14 May 2024
  • H
Authentication Bypass Using an Alternate Path or Channel 		mantisbt/mantisbt <2.26.2 Composer 14 May 2024
  • M
Exposure of Sensitive Information to an Unauthorized Actor 		mantisbt/mantisbt <2.26.2 Composer 14 May 2024
  • M
Cross-site Scripting (XSS) 		froxlor/froxlor <2.1.9 Composer 12 May 2024
  • M
Cross-site Scripting (XSS) 		sylius/sylius <1.12.16 >=1.13.0-alpha.1, <1.13.1 Composer 12 May 2024
  • M
Cross-site Scripting 		mantisbt/mantisbt <2.24.3 Composer 8 May 2024
  • L
Information Exposure 		kimai/kimai <2.16.0 Composer 8 May 2024
  • M
Cross-site Scripting 		mediawiki/core <1.39.7 >=1.40.0, <1.40.3 >=1.41.0, <1.41.1 Composer 7 May 2024
  • M
Resource Exhaustion 		mediawiki/core <1.39.7 >=1.40.0, <1.40.3 >=1.41.0, <1.41.1 Composer 7 May 2024
  • H
Code Injection 		tribalsystems/zenario <9.5.60437 Composer 7 May 2024
  • M
Cross-site Scripting (XSS) 		tribalsystems/zenario <9.5.60602 Composer 7 May 2024
  • H
Deserialization of Untrusted Data 		spatie/image-optimizer <1.7.3 Composer 6 May 2024
  • L
Improper Authorization 		moodle/moodle <3.6.7 >=3.7.0-beta, <3.7.3 Composer 6 May 2024
  • L
Cross-site Scripting (XSS) 		bolt/bolt >=0.0.0 Composer 6 May 2024
  • M
Cross-site Scripting (XSS) 		wpglobus/wpglobus <1.9.7 Composer 5 May 2024
  • M
Cross-site Scripting (XSS) 		moodle/moodle >=3.9, <3.9.15 >=3.11, <3.11.8 >=4.0, <4.0.2 Composer 5 May 2024
  • L
Cross-Site Request Forgery (CSRF) 		dolibarr/dolibarr =7.0.0 Composer 5 May 2024
  • H
Exposure of Sensitive Information to an Unauthorized Actor 		top-think/framework >=0.0.0 Composer 5 May 2024