Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Advisories
Loading...
High
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg3cXctbXhybS1jNmgy
Unauthenticated crypto and weak IV in Magento\Framework\EncryptionEcosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Published: about 3 years ago
Moderate
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZtNjgtODltOC00Z2pq
JavaScript injection possible via html commentsEcosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Published: about 3 years ago
Moderate
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh2NjktZjd4NS1yNHF3
Cross-Site Scripting via Attribute Set NameEcosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Published: about 3 years ago
Moderate
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTYyZngtM3Y0Zi1td3ht
Bypass of sitemp access restrictionsEcosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Published: about 3 years ago
Critical
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNxNXgtN214cC1ycDZq
Remote code execution via vulnerable Symphony dependecy injectionEcosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Published: about 3 years ago
High
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg5Y2gtaHFmOS1yZ3Az
Using JS libraries with known security vulnerabilitiesEcosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Published: about 3 years ago
Moderate
Ecosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQyN2ctMnI4My0zY2Nt
Information disclosure through processing of external XML entitiesEcosystems: packagist
Packages: magento/community-edition
Source: GitHub Advisory Database
Published: about 3 years ago
Filter by Severity
Filter by Ecosystem
Filter by Package
microweber/microweber
67
pimcore/pimcore
43
shopware/platform
40
typo3/cms-core
38
showdoc/showdoc
36
shopware/core
31
librenms/librenms
30
snipe/snipe-it
28
moodle/moodle
25
remdex/livehelperchat
22
dolibarr/dolibarr
21
typo3/cms
18
mautic/core
18
concrete5/concrete5
17
cakephp/cakephp
17
shopware/shopware
17
silverstripe/framework
16
thorsten/phpmyfaq
16
yetiforce/yetiforce-crm
16
pocketmine/pocketmine-mp
15
baserproject/basercms
15
craftcms/cms
14
tribalsystems/zenario
13
grumpydictator/firefly-iii
13
getkirby/cms
12
phpmailer/phpmailer
12
symfony/symfony
12
forkcms/forkcms
12
openmage/magento-lts
12
feehi/feehicms
11
intelliants/subrion
11
francoisjacquet/rosariosis
11
getgrav/grav
11
drupal/core
11
contao/core-bundle
10
october/system
10
centreon/centreon
9
froxlor/froxlor
9
concrete5/core
9
kevinpapst/kimai2
9
topthink/framework
8
elefant/cms
8
facturascripts/facturascripts
8
impresscms/impresscms
8
ssddanbrown/bookstack
8
sylius/sylius
8
ezsystems/ezpublish-kernel
7
feehi/cms
7
october/cms
7
magento/community-edition
7
codeigniter4/framework
7
october/backend
7
laravel/framework
7
simplesamlphp/simplesamlphp
6
guzzlehttp/guzzle
6
smarty/smarty
6
pterodactyl/panel
6
ezsystems/ezplatform-kernel
5
prestashop/prestashop
5
vrana/adminer
5
phpxmlrpc/phpxmlrpc
5
backdrop/backdrop
5
sulu/sulu
5
yourls/yourls
5
bottelet/flarepoint
5
symfony/security-http
5
pear/archive_tar
4
flarum/core
4
bolt/bolt
4
ezsystems/ezplatform-admin-ui
4
dompdf/dompdf
4
pagekit/pagekit
4
idno/known
4
nukeviet/nukeviet
4
phpmyadmin/phpmyadmin
4
cachethq/cachet
4
bytefury/crater
4
symfony/http-foundation
4
directmailteam/direct-mail
4
symfony/security
3
typo3/cms-form
3
rudloff/alltube
3
spatie/browsershot
3
silverstripe/assets
3
tinymce
3
symfony/http-kernel
3
TinyMCE
3
notrinos/notrinos-erp
3
sylius/resource-bundle
3
nystudio107/craft-seomatic
3
ibexa/core
3
nilsteampassnet/teampass
3
enshrined/svg-sanitize
3
composer/composer
3
tinymce/tinymce
3
icecoder/icecoder
3
oro/platform
3
phpoffice/phpspreadsheet
3
illuminate/database
3
prestashop/productcomments
3
elgg/elgg
3
facade/ignition
3
gilacms/gila
3
twig/twig
3
shopware/storefront
3
studio-42/elfinder
2
shopxo/shopxo
2
laravel/laravel
2
lavalite/cms
2
verot/class.upload.php
2
com.google.protobuf:protobuf-parent
2
exceedone/exment
2
ptrofimov/beanstalk_console
2
wintercms/winter
2
symfony/framework-bundle
2
ether/logs
2
latte/latte
2
october/october
2
october/rain
2
exceedone/laravel-admin
2
ezsystems/ezplatform-rest
2
silverstripe/graphql
2
buddypress/buddypress
2
yiisoft/yii2-dev
2
billz/raspap-webgui
2
yoast-seo-for-typo3/yoast_seo
2
miniorange/miniorange-saml
2
phpfastcache/phpfastcache
2
protobuf
2
typo3/cms-backend
2
drupal/drupal
2
typo3/html-sanitizer
2
badaso/core
2
github.com/protocolbuffers/protobuf
2
google/protobuf
2
silverstripe/cms
2
silverstripe/admin
2
alextselegidis/easyappointments
2
ibexa/admin-ui
2
opencart/opencart
2
typo3fluid/fluid
2
processwire/processwire
2
in2code/femanager
2
oro/commerce
2
noumo/easyii
2
symfony/cache
2
unisharp/laravel-filemanager
2
librenms
2
league/commonmark
2
aheinze/cockpit
2
cuyz/valinor
2
packbackbooks/lti-1-3-php-library
2
Google.Protobuf
2
admidio/admidio
2
getkirby/panel
2
dweeves/magmi
2
helloxz/imgurl
2
privatebin/privatebin
2
filegator/filegator
2
neos/neos
2
s-cart/s-cart
2
bolt/core
2
erusev/parsedown
2
anchorcms/anchor-cms
2
croogo/croogo
2
squizlabs/php_codesniffer
2
modx/revolution
2
limesurvey/limesurvey
1
catfan/medoo
1
phpmyfaq/phpmyfaq
1
neoan3-apps/template
1
ttskch/pagination-service-provider
1
globalpayments/php-sdk
1
doctrine/dbal
1
hov/jobfair
1
oro/crm
1
silverstripe/versioned-admin
1
symfony/serializer
1
phpservermon/phpservermon
1
area17/twill
1
yiisoft/yii2
1
fluidtypo3/vhs
1
harvesthq/chosen
1
snipe-it
1
gaoming13/wechat-php-sdk
1
joomla/archive
1
hillelcoren/invoice-ninja
1
cardgate/magento2
1
netgen/tagsbundle
1
arc/web
1
adminer
1
silverstripe/hybridsessions
1
spipu/html2pdf
1
socialiteproviders/steam
1
adodb/adodb-php
1
livehelperchat/livehelperchat
1
flarum/sticky
1
barryvdh/laravel-translation-manager
1
xataface/xataface
1
simplesamlphp/simplesamlphp-module-openid
1
vova07/yii2-fileapi-widget
1
appwrite/server-ce
1
litespeed.js
1
laravel/fortify
1
pear/crypt_gpg
1
flarum/tags
1
nette/application
1
hjue/justwriting
1
prestashop/ps_linklist
1
neorazorx/facturascripts
1
genix/cms
1
barrelstrength/sprout-forms
1
wwbn/avideo
1
Sylius/Sylius
1
marcwillmann/turn
1
sylius/grid-bundle
1
php-mod/curl
1
fof/upload
1
prestashop/ps_facetedsearch
1
topthink/thinkphp
1
matyhtf/framework
1
melisplatform/melis-front
1
melisplatform/melis-cms
1
czproject/git-php
1
bmarshall511/wordpress_zero_spam
1
statamic/cms
1
yeswiki/yeswiki
1
tastyigniter/tastyigniter
1
symfony/security-core
1
fenom/fenom
1
open-web-analytics/open-web-analytics
1
pimcore/data-hub
1
wanglelecc/laracms
1
librenms/librenms/
1
pocketmine/bedrock-protocol
1
silverstripe/subsites
1
api-platform/core
1
wpanel/wpanel4-cms
1
luyadev/yii-helpers
1
innologi/typo3-appointments
1
web-auth/webauthn-framework
1
sumocoders/framework-user-bundle
1
barzahlen/barzahlen-php
1
symfony/security-guard
1
sylius/paypal-plugin
1
zendframework/zend-diactoros
1
wp-graphql/wp-graphql
1
s-cart/core
1
ibexa/post-install
1
friendsoftypo3/mediace
1
symfony/mime
1
mojo42/jirafeau
1
ectouch/ectouch
1
robrichards/xmlseclibs
1
zendframework/zend-http
1
phpunit/phpunit
1
brotkrueml/typo3-matomo-integration
1
brotkrueml/schema
1
bagisto/bagisto
1
phpseclib/phpseclib
1
krayin/laravel-crm
1
symbiote/silverstripe-versionedfiles
1
gos/web-socket-bundle
1
fof/byobu
1
yiisoft/yii2-gii
1
guzzlehttp/psr7
1
thinkcmf/thinkcmf
1
symfont/process
1
prestashop/blockwishlist
1
cakephp/database
1
wp-cli/wp-cli
1
simplesamlphp/simplesamlphp-module-openidprovider
1
liftkit/database
1
shopware/production
1
contao/managed-edition
1
codiad/codiad
1
ezsystems/ezpublish-legacy
1
kitodo/presentation
1
zendesk/zendesk_api_client_php
1
mittwald/typo3_forum
1
symfony/proxy-manager-bridge
1
apereo/phpcas
1
yii2mod/yii2-cms
1
in2code/lux
1
himiklab/yii2-jqgrid-widget
1
symfony/phpunit-bridge
1
woocommerce/woocommerce
1
islandora/islandora
1
laminas/laminas-diactoros
1
mezzio/mezzio-swoole
1
webcoast/deferred-image-processing
1
ecodev/newsletter
1
sukohi/surpass
1
hyn/multi-tenant
1
laminas/laminas-form
1
symbiote/silverstripe-seed
1
flarum/mentions
1
django-tinymce
1
getkirby/starterkit
1
rankmath/seo-by-rank-math
1