Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

Browse Security Advisories

Security Advisories for ezsystems/ezpublish-kernel in packagist Clear Filters

High
about 1 year ago

eZ Platform Object Injection in SiteAccessMatchListener GSA_kwCzR0hTQS02NHZqLTkzM2YtNnBtM84AA8Ht

packagist ezsystems/ezpublish-kernel
High
about 1 year ago

eZ Publish Remote code execution in file uploads GSA_kwCzR0hTQS0zdndyLWpqNGYtaDk4eM4AA8Hq

packagist ezsystems/ezpublish-kernel
Moderate
about 1 year ago

eZ Platform REST API returns list of all SiteAccesses GSA_kwCzR0hTQS05d3d4LWM3MjMtdm04eM4AA8Ho

packagist ezsystems/ezpublish-kernel
Low
over 1 year ago

Download route allows filename change in eZpublish kernel GSA_kwCzR0hTQS05NDZjLWY5dzYtMmMyNc4AA26n

packagist ezsystems/ezpublish-kernel
High
over 2 years ago

Company admin role gives excessive privileges in eZ Platform Ibexa GSA_kwCzR0hTQS1xcTJqLTlwZjgtZzU4Y84AAyDw

packagist ezsystems/ezplatform-kernel, ezsystems/ezpublish-kernel
Low
over 2 years ago

Timing attack in eZ Platform Ibexa GSA_kwCzR0hTQS02Nm00LWdjOGgtaHBqeM4AAyDt

packagist ezsystems/ezpublish-kernel, ezsystems/ezplatform-kernel
Moderate
over 2 years ago

User account enumeration in eZ Publish Ibexa Kernel GSA_kwCzR0hTQS04OXAzLTlqOGMtZnFoNM4AAyDu

packagist ezsystems/ezpublish-kernel
Moderate
over 2 years ago

Cross Site Scripting in eZ Platform Ibexa Kernel GSA_kwCzR0hTQS1jNzM3LWpod3ItZnF4as4AAyDx

packagist ezsystems/ezplatform-kernel, ezsystems/ezpublish-kernel
Critical
over 2 years ago

Access control issue in ezsystems/ezpublish-kernel GSA_kwCzR0hTQS1oNXYyLXdyaHAtNXYzNc4AAyDv

packagist ezsystems/ezpublish-kernel
Critical
over 2 years ago

eZ Platform users with the Company admin role can assign any role to any user GSA_kwCzR0hTQS05OXIzLXhtbXEtN3E3Z84AAv0h

packagist ezsystems/ezpublish-kernel
Critical
about 3 years ago

Login timing attack in ezsystems/ezpublish-kernel GSA_kwCzR0hTQS14ZnFnLXA0OGctaGg5NM4AArUB

packagist ezsystems/ezpublish-kernel
Critical
about 3 years ago

eZ Publish Kernel and Legacy Unrestricted Upload of File with Dangerous Type GSA_kwCzR0hTQS01NHA1LWd4cTYtajk4Z84AAj_C

packagist ezsystems/ezpublish-legacy, ezsystems/ezpublish-kernel
Critical
over 3 years ago

Object state limitation has no effect GSA_kwCzR0hTQS01eDRmLTd4Z3EtcjQyeM1REw

packagist ezsystems/ezpublish-kernel
Critical
over 3 years ago

Code injection in ezsystems/ezpublish-kernel GSA_kwCzR0hTQS14d3Y2LXY3cXgtZjVqY80tiQ

packagist ezsystems/ezpublish-kernel
High
over 3 years ago

IBX-1392: Image filenames sanitization GSA_kwCzR0hTQS00NG00LTljanAtajU4N80kcg

packagist ezsystems/ezpublish-kernel
High
over 4 years ago

Cross-site scripting in eZ Platform Kernel MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1ydmotN3E0Zi01cDQy

packagist ezsystems/ezplatform-kernel, ezsystems/ezpublish-kernel
High
over 4 years ago

/user/sessions endpoint allows detecting valid accounts MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdtcmYtOTlndy12dndq

packagist ezsystems/ezpublish-kernel

Filter by Severity

Moderate 10,084 High 8,048 Critical 3,306 Low 1,447

Filter by Ecosystem

maven 6,666 packagist 5,357 pypi 4,846 npm 4,195 go 2,803 nuget 1,702 cargo 1,067 rubygems 919 hex 37 swift 35 actions 32 pub 10

Filter by Package

moodle/moodle 418 magento/community-edition 300 typo3/cms 190 pimcore/pimcore 120 dolibarr/dolibarr 116 typo3/cms-core 111 phpmyadmin/phpmyadmin 107 drupal/core 103 magento/project-community-edition 100 microweber/microweber 99 silverstripe/framework 92 drupal/drupal 83 librenms/librenms 82 thorsten/phpmyfaq 73 symfony/symfony 69 concrete5/concrete5 65 shopware/platform 57 craftcms/cms 51 baserproject/basercms 47 shopware/core 45 mautic/core 44 nilsteampassnet/teampass 42 showdoc/showdoc 41 mantisbt/mantisbt 41 froxlor/froxlor 40 intelliants/subrion 39 snipe/snipe-it 36 zendframework/zendframework1 34 shopware/shopware 30 getgrav/grav 30 mediawiki/core 28 centreon/centreon 27 prestashop/prestashop 26 contao/core-bundle 25 pocketmine/pocketmine-mp 24 getkirby/cms 24 magento/core 24 zendframework/zendframework 23 simplesamlphp/simplesamlphp 23 remdex/livehelperchat 23 grumpydictator/firefly-iii 23 phpoffice/phpexcel 23 laravel/framework 23 tribalsystems/zenario 22 phpoffice/phpspreadsheet 21 cockpit-hq/cockpit 20 funadmin/funadmin 20 topthink/framework 18 genix/cms 18 forkcms/forkcms 18 contao/contao 18 ezsystems/ezpublish-kernel 17 symfony/security 17 openmage/magento-lts 17 yetiforce/yetiforce-crm 17 cakephp/cakephp 17 francoisjacquet/rosariosis 17 typo3/cms-backend 17 opencart/opencart 17 october/system 16 phpbb/phpbb 16 symfony/security-http 15 silverstripe/cms 15 bolt/bolt 15 smarty/smarty 15 ec-cube/ec-cube 15 pimcore/admin-ui-classic-bundle 15 dompdf/dompdf 14 codeigniter4/framework 14 phpmailer/phpmailer 14 modx/revolution 14 feehi/cms 14 elefant/cms 13 phpmyfaq/phpmyfaq 13 admidio/admidio 13 lavalite/cms 13 sylius/sylius 13 yeswiki/yeswiki 13 studio-42/elfinder 13 impresscms/impresscms 13 wallabag/wallabag 12 symfony/http-foundation 12 wwbn/avideo 12 alextselegidis/easyappointments 12 tinymce/tinymce 11 nukeviet/nukeviet 11 leantime/leantime 11 ezsystems/ezplatform-kernel 11 october/october 11 yiisoft/yii2 11 pagekit/pagekit 11 feehi/feehicms 11 TinyMCE 11 sulu/sulu 11 tinymce 11 spatie/browsershot 10 ezsystems/ezpublish-legacy 10 ssddanbrown/bookstack 10 in2code/femanager 9 contao/core 9 twbs/bootstrap 9 croogo/croogo 9 concrete5/core 9 bootstrap 9 ezsystems/ezplatform-admin-ui 9 bootstrap 9 twig/twig 9 in2code/powermail 9 kevinpapst/kimai2 9 pterodactyl/panel 9 bootstrap 9 pimcore/customer-management-framework-bundle 9 org.webjars:bootstrap 9 statamic/cms 9 billz/raspap-webgui 9 silverstripe/graphql 8 joomla/joomla-cms 8 flarum/core 8 silverstripe/admin 8 directmailteam/direct-mail 8 composer/composer 8 facturascripts/facturascripts 8 gilacms/gila 8 tecnickcom/tcpdf 8 october/cms 8 codiad/codiad 8 starcitizentools/citizen-skin 8 passbolt/passbolt_api 7 symfony/http-kernel 7 yiisoft/yii2-dev 7 backdrop/backdrop 7 bootstrap-sass 7 shopxo/shopxo 7 october/backend 7 simplesamlphp/saml2 7 wpglobus/wpglobus 7 bootstrap.sass 7 redaxo/source 7 zoujingli/thinkadmin 6 dweeves/magmi 6 guzzlehttp/guzzle 6 vrana/adminer 6 typo3/cms-install 6 bagisto/bagisto 6 icecoder/icecoder 6 bootstrap-sass 6 drupal/core-recommended 6 oro/platform 6 pear/archive_tar 6 gleez/cms 6 nystudio107/craft-seomatic 6 yourls/yourls 6 api-platform/core 6 phpseclib/phpseclib 6 getformwork/formwork 5 adodb/adodb-php 5 cachethq/cachet 5 limesurvey/limesurvey 5 typo3/flow 5 thinkcmf/thinkcmf 5 ibexa/admin-ui 5 anchorcms/anchor-cms 5 neos/flow 5 illuminate/database 5 kimai/kimai 5 symfony/security-core 5 silverstripe/assets 5 neos/neos 5 tcg/voyager 5 phpservermon/phpservermon 5 mautic/core-lib 5 gugoan/economizzer 5 woocommerce/woocommerce 5 bottelet/flarepoint 5 phpxmlrpc/phpxmlrpc 5 symfony/security-bundle 5 ibexa/core 5 elgg/elgg 5 juzaweb/cms 5 dcat/laravel-admin 4 shopware/storefront 4 bytefury/crater 4 ckeditor4 4 oro/commerce 4 ckeditor/ckeditor 4 wintercms/winter 4 sylius/resource-bundle 4 friendsofsymfony/user-bundle 4 livewire/livewire 4 flarum/framework 4 pixelfed/pixelfed 4 froala/wysiwyg-editor 4 typo3/cms-form 4 appwrite/server-ce 4 elmsln/haxcms 4 reportico-web/reportico 4 sjbr/sr-feuser-register 4 evolutioncms/evolution 4 notrinos/notrinos-erp 4 typo3/cms-frontend 4

Filter by Repository

https://github.com/ezsystems/ezpublish-kernel 11 https://github.com/ezsystems/ezplatform-kernel 2