Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

packagist

packagist

468,797 packages · packagist.org

Security Advisories in packagist

High
7 days ago

Star Citizen EmbedVideo Extension Stored XSS through wikitext caused by usage of non-reserved data attributes GSA_kwCzR0hTQS00ajVoLW12ajMtbTQ4ds4ABMng

packagist starcitizenwiki/embedvideo
Low
7 days ago

Mangati NovoSGA XSS vulnerability in /admin GSA_kwCzR0hTQS00YzQ0LXI4cm0tM3AzOc4ABMnM

packagist novosga/novosga
Low
8 days ago

GP247 and S-Cart have a stored cross-site scripting (XSS) vulnerability GSA_kwCzR0hTQS00NnY0LTVtYzgtcTJjZs4ABMkl

packagist gp247/core, s-cart/core
Moderate
13 days ago

Snipe-IT allows unsafe deserialization GSA_kwCzR0hTQS1waHdqLWZnY2gteHZyas4ABMYS

packagist snipe/snipe-it
Moderate
13 days ago

Snipe-IT allows XSS GSA_kwCzR0hTQS1jOXdwLXByN2YtaGZxbc4ABMYR

packagist snipe/snipe-it
Low
15 days ago

TYPO3 "Form to Database" extension susceptible to Cross-site Scripting GSA_kwCzR0hTQS01NHBnLTJ4OWgtY214OM4ABMNz

packagist lavitto/typo3-form-to-database
Moderate
20 days ago

Subrion CMS: Authenticated administrators are able to gain escalated access through Run SQL Query tool GSA_kwCzR0hTQS1oOHd2LXZ2NTgtNDY4aM4ABMAf

packagist intelliants/subrion
High
21 days ago

Shopware: Reflective Cross Site-Scripting (XSS) in CMS components GSA_kwCzR0hTQS05djgyLXZjangtbTc2as4ABL8U

packagist shopware/core, shopware/shopware
Moderate
22 days ago

TinyEnv: Inline comments not stripped properly in .env values GSA_kwCzR0hTQS03MmNtLTcyMzYtaDQzcs4ABL5P

packagist datahihi1/tiny-env
Moderate
22 days ago

TinyEnv: Missing .env file not required — may cause unexpected behavior GSA_kwCzR0hTQS0zajdtLTVnNHEtZ2ZwY84ABL5O

packagist datahihi1/tiny-env
High
22 days ago

Maho is Vulnerable to Authenticated Remote Code Execution via File Upload GSA_kwCzR0hTQS12Z21tLTI3ZmMtdm1ncM4ABL5L

packagist mahocommerce/maho
Moderate
22 days ago

YesWiki Cross Site Scripting vulnerability GSA_kwCzR0hTQS0yOWNqLWN4dzQtdjRqMs4ABL2L

packagist yeswiki/yeswiki
Critical
22 days ago

Magento Community Edition Improper Input Validation vulnerability GSA_kwCzR0hTQS13aDkyLTZxNmctcHg3as4ABL2A

packagist magento/community-edition
High
22 days ago

TYPO3 Workspaces Module Information Disclosure GSA_kwCzR0hTQS13MnBmLTdxNXctMmNnd84ABL1q

packagist typo3/cms-workspaces
Moderate
22 days ago

TYPO3 backend modules have Broken Access Control GSA_kwCzR0hTQS0yZmh3LTJqN20tbXI0bc4ABL1p

packagist typo3/cms-backend, typo3/cms-beuser, typo3/cms-dashboard, typo3/cms-recycler, typo3/cms-workspaces
Moderate
22 days ago

TYPO3 CMS exposes sensitive information in an error message GSA_kwCzR0hTQS1jdm0yLTVmNzgtZzltOM4ABL1v

packagist typo3/cms-core
Moderate
22 days ago

TYPO3 CSV download feature information disclosure GSA_kwCzR0hTQS1qOHZtLTdxNTItMm0ybc4ABL1l

packagist typo3/cms-recordlist, typo3/cms-backend
Moderate
22 days ago

TYPO3 CMS uses insufficient entropy when generating passwords GSA_kwCzR0hTQS1wNWpxLTUzODMtcXZjN84ABL1m

packagist typo3/cms-core
Moderate
22 days ago

TYPO3 CMS has an open‑redirect vulnerability GSA_kwCzR0hTQS03MmpmLTVmZzUtM2N3M84ABL1s

packagist typo3/cms-core
Moderate
22 days ago

TYPO3 Bookmark Toolbar vulnerable to denial of service GSA_kwCzR0hTQS14cmNxLTUzM3EtOHJ4d84ABL1t

packagist typo3/cms-backend
Moderate
27 days ago

Presta Shop vulnerable to email enumeration GSA_kwCzR0hTQS04eHg1LWg2bTMtanIzM84ABLqp

packagist prestashop/prestashop
Moderate
28 days ago

Mautic Vulnerable to User Enumeration via Response Timing GSA_kwCzR0hTQS0zZ2d2LXF3Y3AtajZ4Z84ABLo1

packagist mautic/core
Moderate
28 days ago

Mautic vulnerable to reflected XSS in lead:addLeadTags - Quick Add GSA_kwCzR0hTQS05djhwLW04NW0tZjdtbc4ABLo0

packagist mautic/core
Moderate
28 days ago

Mautic vulnerable to secret data extraction via elfinder GSA_kwCzR0hTQS00MzhtLTZtaHctaHE1d84ABLoz

packagist mautic/core
Low
28 days ago

Mautic vulnerable to SSRF via webhook function GSA_kwCzR0hTQS1oajZmLTdocDcteGc2Oc4ABLoy

packagist mautic/core
High
29 days ago

PocketMine-MP `ResourcePackDataInfoPacket` amplification vulnerability due to lack of resource pack sequence status checking GSA_kwCzR0hTQS1mcXF2LTU2aDUtZjU3Z84ABLmH

packagist pocketmine/pocketmine-mp
Moderate
about 1 month ago

Contao does not properly manage privileges for page and article fields GSA_kwCzR0hTQS1xcWZxLTdjcHAtaGNxas4ABLfv

packagist contao/contao, contao/core-bundle
Moderate
about 1 month ago

Contao can disclose sensitive information in the news module GSA_kwCzR0hTQS13NTNtLWd4dmctdng3cM4ABLfu

packagist contao/contao, contao/core-bundle
Moderate
about 1 month ago

Contao discloses sensitive information in the front end search index GSA_kwCzR0hTQS0yeG1qLTh3bXEtNzQ3Nc4ABLft

packagist contao/contao, contao/core-bundle
Moderate
about 1 month ago

Contao applies improper access control in the back end voters GSA_kwCzR0hTQS03bTQ3LXI3NXItY3g4ds4ABLfs

packagist contao/contao, contao/core-bundle
Critical
about 1 month ago

The Freeform CraftCMS plugin contains an Server-side template injection (SSTI) vulnerability GSA_kwCzR0hTQS05aHAzLWY1ZzgtcmNjZ84ABLeK

packagist solspace/craft-freeform
High
about 1 month ago

Badaso CMS file upload vulnerability GSA_kwCzR0hTQS1ncXA5LWpoMzUtNDM5bc4ABLco

packagist badaso/core
Moderate
about 1 month ago

Easy!Appointments SQL injection vulnerability GSA_kwCzR0hTQS0yZjI4LTY5ajctODVoZs4ABLat

packagist alextselegidis/easyappointments
Moderate
about 1 month ago

Craft CMS Potential Remote Code Execution via Twig SSTI GSA_kwCzR0hTQS1jcmNxLTczOGctcHF2Y84ABLZ-

packagist craftcms/cms
High
about 1 month ago

Adminer PHP Object Injection issue leads to Denial of Service GSA_kwCzR0hTQS1tcWg0LTJtbTgtZzd3Oc4ABLZW

packagist vrana/adminer
High
about 1 month ago

PhpSpreadsheet vulnerable to SSRF when reading and displaying a processed HTML document in the browser GSA_kwCzR0hTQS1yeDdtLTY4dmMtcHB4aM4ABLZU

packagist phpoffice/phpspreadsheet
Low
about 1 month ago

UnoPim has CSV Injection on Quick Export feature GSA_kwCzR0hTQS03NHJnLTZmOTItZzZ3eM4ABLV5

packagist unopim/unopim
High
about 1 month ago

UnoPim has Broken Access Control GSA_kwCzR0hTQS04cDJmLWZ4NHEtNzVjeM4ABLV4

packagist unopim/unopim
Moderate
about 1 month ago

UnoPim vulnerable to CSRF on Product edit feature and creation of other types GSA_kwCzR0hTQS0yODd4LTZyMmgtZjltd84ABLTv

packagist unopim/unopim
High
about 1 month ago

UnoPim vulnerable to remote code execution through Arbitrary File upload GSA_kwCzR0hTQS12MjJ2LXh3aDctMnZybc4ABLTu

packagist unopim/unopim
Moderate
about 1 month ago

UnoPim has Stored Cross-site Scripting vulnerability in user creation functionality GSA_kwCzR0hTQS14cjk3LTI1djctaGMycc4ABLTt

packagist unopim/unopim
Moderate
about 1 month ago

WP Crontrol Authenticated (Administrator+) plugin vulnerable to Blind Server-Side Request Forgery GSA_kwCzR0hTQS0zNWM1LTY3Zm0tY3BjcM4ABLOE

packagist johnbillion/wp-crontrol
Moderate
about 1 month ago

MoonShine Arbitrary File Upload Vulnerability GSA_kwCzR0hTQS04eGZxLTdmNm0tbXBtZs4ABLMs

packagist moonshine/moonshine
Moderate
about 1 month ago

moonshine Stored Cross-Site Scripting Vulnerability in Create Admin GSA_kwCzR0hTQS1yaDlmLWdyNnEtbXBjNM4ABLMt

packagist moonshine/moonshine
Moderate
about 1 month ago

moonshine Stored Cross-Site Scripting Vulnerability in Create Article GSA_kwCzR0hTQS1wNjMyLTU4cHAtYzl4Z84ABLMu

packagist moonshine/moonshine
Moderate
about 1 month ago

MoonShine SQL Injection Vulnerability GSA_kwCzR0hTQS05ZzlqLTN3NjQtM2NqaM4ABLMv

packagist moonshine/moonshine
Moderate
about 1 month ago

LibreNMS allows stored XSS in Alert Template name field GSA_kwCzR0hTQS12eHE2LThjd20td2o5Oc4ABLL6

packagist librenms/librenms
High
about 2 months ago

Soosyze CMS's /user/login endpoint missing rate-limiting and lockout mechanisms GSA_kwCzR0hTQS12cTl4LXc4MnItcmhtY84ABLBd

packagist soosyze/soosyze
Moderate
about 2 months ago

svg-sanitizer Bypasses Attribute Sanitization GSA_kwCzR0hTQS0yMndxLXE4Nm0tODNmaM4ABK_r

packagist enshrined/svg-sanitize
High
about 2 months ago

Magento Cross-site Scripting vulnerability GSA_kwCzR0hTQS04bXE4LWMyNDMtMjMzNc4ABK9P

packagist magento/project-community-edition, magento/community-edition
Moderate
about 2 months ago

Craft CMS has a theoretical bypass for CVE-2025-23209 GSA_kwCzR0hTQS0ydmNmLXF4djMtMm1nd84ABK4m

packagist craftcms/cms
Moderate
about 2 months ago

Shopware race condition bypasses voucher restrictions GSA_kwCzR0hTQS0yN2d2LW1nN3ctbW0zNM4ABK0_

packagist shopware/platform
Moderate
about 2 months ago

Concrete CMS vulnerable to Reflected Cross-Site Scripting (XSS) in Conversation Messages Dashboard Page GSA_kwCzR0hTQS00cGNnLXBqcDUtM21jNs4ABKyv

packagist concrete5/concrete5
Low
about 2 months ago

Concrete CMS is vulnerable to Stored XSS from Home Folder on Members Dashboard page GSA_kwCzR0hTQS1jNXhmLXJtdjQtajg1aM4ABKyw

packagist concrete5/concrete5
Critical
about 2 months ago

ThinkPHP Path Traversal Vulnerability GSA_kwCzR0hTQS1tcndjLW12cjgtOXhxNc4ABKx6

packagist topthink/framework
Moderate
about 2 months ago

FPDI allows Memory Exhaustion (OOM) in PDF Parser which leads to Denial of Service GSA_kwCzR0hTQS1qeGhoLTQ2NDgtdnBwM84ABKxy

packagist setasign/fpdi
Critical
about 2 months ago

The ADOdb sqlite3 driver allows SQL injection GSA_kwCzR0hTQS12ZjJyLWN4ZzktcDdyZs4ABKv9

packagist adodb/adodb-php
Moderate
2 months ago

Microweber has Reflected XSS Vulnerability in the id Parameter GSA_kwCzR0hTQS04MzU3LWZqdngteHJtOM4ABKt-

packagist microweber/microweber
Moderate
2 months ago

Microweber has Reflected XSS Vulnerability in the layout Parameter GSA_kwCzR0hTQS1tdmozLWhjN2otdnA3NM4ABKuA

packagist microweber/microweber
Moderate
2 months ago

Microweber XSS Vulnerability in the homepage Endpoint GSA_kwCzR0hTQS0yeDJqLTNjMnYtZzNjMs4ABKt9

packagist microweber/microweber
Low
2 months ago

Microweber Has Stored XSS Vulnerability in User Profile Fields GSA_kwCzR0hTQS03ODJmLWd4ajUteHZxY84ABKsh

packagist microweber/microweber
High
2 months ago

Bacula-web SQL Injection Vulnerability GSA_kwCzR0hTQS1ocTI1LXZwNTYtcXI4Ns4ABKnw

packagist bacula-web/bacula-web
High
2 months ago

z-push/z-push-dev SQL Injection Vulnerability GSA_kwCzR0hTQS13ODMyLXczcDgtY3cyOc4ABKmv

packagist z-push/z-push-dev
Critical
2 months ago

CodeIgniter4's ImageMagick Handler has Command Injection Vulnerability GSA_kwCzR0hTQS05OTUyLWd2NjQteDk0Y84ABKle

packagist codeigniter4/framework
High
2 months ago

HAX CMS API Lacks Authorization Checks GSA_kwCzR0hTQS05anI5LThmZjMtbTg5NM4ABKiL

packagist, npm elmsln/haxcms, @haxtheweb/haxcms-nodejs
Moderate
2 months ago

Femanager extension for TYPO3 allows Insecure Direct Object Reference GSA_kwCzR0hTQS1yYzVmLTNoZnYtanhwMs4ABKaP

packagist in2code/femanager
Moderate
2 months ago

Powermail extension for TYPO3 allows Insecure Direct Object Reference GSA_kwCzR0hTQS14NzY5LTNjd3YtZjhoY84ABKaQ

packagist in2code/powermail
Moderate
2 months ago

HAX CMS application pages vulnerable to clickjacking GSA_kwCzR0hTQS01NHZ3LWY0eGYtZjkyas4ABKWO

packagist, npm elmsln/haxcms, @haxtheweb/haxcms-nodejs
High
2 months ago

LibreNMS has Authenticated Remote File Inclusion in ajax_form.php that Allows RCE GSA_kwCzR0hTQS1ncTk2LTh3MzgtaGhqMs4ABKWN

packagist librenms/librenms
High
2 months ago

Dolibarr has Remote Code Execution Vulnerability (Bypass) GSA_kwCzR0hTQS00OXh3LWh3OTQtZm12Ms4ABKWG

packagist dolibarr/dolibarr
Critical
2 months ago

nova-tiptap has Unauthenticated Arbitrary File Upload Vulnerability GSA_kwCzR0hTQS05NmMyLWg2NjctOWZ4cM4ABKWD

packagist manogi/nova-tiptap, marshmallow/nova-tiptap
Moderate
3 months ago

Filemanager is vulnerable to Relative Path Traversal through filemanager.php GSA_kwCzR0hTQS1yN3E2LTZmbXEtbXg0Y84ABKRr

packagist simogeo/filemanager
Critical
3 months ago

simogeo/filemanager arbitrary file upload vulnerability GSA_kwCzR0hTQS1tNWh3LXJodnItZjQ3Y84ABKRt

packagist simogeo/filemanager
Critical
3 months ago

Livewire is vulnerable to remote command execution during component property update hydration GSA_kwCzR0hTQS0yOWNxLTV3MzYteDd3M84ABKP8

packagist livewire/livewire
Critical
3 months ago

LaRecipe is vulnerable to Server-Side Template Injection attacks GSA_kwCzR0hTQS1qdjd4LXhodjItcDV2Ms4ABKHm

packagist binarytorch/larecipe
Moderate
3 months ago

phpThumb is vulnerable to Command Injection through its gif_outputAsJpeg function GSA_kwCzR0hTQS1xNzQ1LWNmcWgtaGNyd84ABKDj

packagist james-heinrich/phpthumb
High
3 months ago

DynamicPageList3 vulnerability exposes hidden/suppressed usernames GSA_kwCzR0hTQS03cGd3LXEzcXAtNnBncc4ABKAy

packagist universal-omega/dynamic-page-list3
Moderate
3 months ago

Cockpit - Content Platform vulnerable to XSS through name or email argument names GSA_kwCzR0hTQS1qNHJqLWZnY3Etd21xcM4ABJsb

packagist cockpit-hq/cockpit
High
3 months ago

Citizen Short Description stored XSS vulnerability through wikitext GSA_kwCzR0hTQS1wODVxLW13dzktZ3dxZs4ABJsB

packagist starcitizentools/short-description
High
3 months ago

Bolt CMS vulnerable to authenticated remote code execution GSA_kwCzR0hTQS1wOXFjLThqangtZzhjZ84ABJr8

packagist bolt/bolt
High
3 months ago

Citizen vulnerable to Stored XSS through short descriptions GSA_kwCzR0hTQS1wcm12LTdyOGMtNzk0Z84ABJr4

packagist starcitizentools/citizen-skin
High
3 months ago

starcitizentools/citizen-skin is vulnerable to Stored XSS attack in the legacy search bar through page descriptions GSA_kwCzR0hTQS1ycTZnLTZnOTQtamZyNM4ABJr1

packagist starcitizentools/citizen-skin
Moderate
3 months ago

Microweber CMS API has authenticated local file inclusion vulnerability GSA_kwCzR0hTQS1qNjR2LXhoNXctOGhxas4ABJpd

packagist microweber/microweber
High
3 months ago

TabberNeue vulnerable to Stored XSS through wikitext GSA_kwCzR0hTQS1qZmo3LTI0OXItN2oybc4ABJhi

packagist starcitizentools/tabber-neue
High
3 months ago

raspap-webgui has a Directory Traversal vulnerability GSA_kwCzR0hTQS0yNzdmLTM3Z3ctOWdtcc4ABJgE

packagist billz/raspap-webgui
Low
3 months ago

JuzaWeb CMS is vulnerable to Incorrect Privilege Assignment when installing Import Page component GSA_kwCzR0hTQS1ycTd4LWNmbWMtcnEzd84ABJdu

packagist juzaweb/cms
Low
3 months ago

JuzaWeb CMS is vulnerable to Incorrect Privilege Assignment when installing certain components GSA_kwCzR0hTQS1tcnBoLXBqdjItMzRmNM4ABJdq

packagist juzaweb/cms
Moderate
3 months ago

Moodle Session Fixation allows unauthenticated users to hijack sessions via sesskey parameter GSA_kwCzR0hTQS1jZ3Z2LTM0NTUtODI0as4ABJYe

packagist moodle/moodle
Critical
3 months ago

Pterodactyl Panel Allows Unauthenticated Arbitrary Remote Code Execution GSA_kwCzR0hTQS0yNHd2LTZjOTktZjg0M84ABJQ8

packagist pterodactyl/panel
Low
4 months ago

handcraftedinthealps/goodby-csv has Potential Gadget Chain allowing Remote Code Execution GSA_kwCzR0hTQS14M2M3LTIyYzgtcHJnN84ABJCU

packagist handcraftedinthealps/goodby-csv
Moderate
4 months ago

Ibexa RichText Field Type XSS vulnerabilities in back office GSA_kwCzR0hTQS05cXY2LTRwd20tbTY4Zs4ABJB1

packagist ibexa/fieldtype-richtext
Moderate
4 months ago

Ibexa Admin UI XSS vulnerabilities in back office GSA_kwCzR0hTQS01cjZ4LWc2anYtNHY4N84ABJB0

packagist ibexa/admin-ui
Moderate
4 months ago

Ibexa Admin UI assets XSS vulnerabilities in back office GSA_kwCzR0hTQS12aGdxLXI4Z3gtNWZwds4ABJBz

packagist ibexa/admin-ui-assets
Moderate
4 months ago

Ibexa eZ Platform Admin UI assets XSS vulnerabilities in back office GSA_kwCzR0hTQS1yNXJ4LTUzZzktMjVyas4ABJBy

packagist ezsystems/ezplatform-admin-ui-assets
Moderate
4 months ago

Ibexa eZ Platform Admin UI XSS vulnerabilities in back office GSA_kwCzR0hTQS1yN3BtLW13OGctcDdweM4ABJBx

packagist ezsystems/ezplatform-admin-ui
Moderate
4 months ago

starcitizentools/citizen-skin allows stored XSS in user registration date message GSA_kwCzR0hTQS0ydjN2LTN3aHAtOTUzaM4ABJBw

packagist starcitizentools/citizen-skin
Moderate
4 months ago

starcitizentools/citizen-skin allows stored XSS in menu heading message GSA_kwCzR0hTQS1nM2NwLXBxNzItaGpwds4ABJBv

packagist starcitizentools/citizen-skin
Moderate
4 months ago

starcitizentools/citizen-skin allows stored XSS in preference menu heading messages GSA_kwCzR0hTQS1qd3I3LTk5MmctNjhtaM4ABJBu

packagist starcitizentools/citizen-skin
Moderate
4 months ago

starcitizentools/citizen-skin allows stored XSS in search no result messages GSA_kwCzR0hTQS04NnhmLTJtZ3AtZ3YzZ84ABJBt

packagist starcitizentools/citizen-skin
Moderate
4 months ago

Citizen skin vulnerable to stored XSS through multiple system messages GSA_kwCzR0hTQS00YzJoLTY3cXEtdm04N84ABI_V

packagist starcitizentools/citizen-skin

Filter by Severity

Moderate 2,742 High 1,275 Critical 511 Low 282

Filter by Package

moodle/moodle 418 magento/community-edition 264 typo3/cms 169 pimcore/pimcore 120 dolibarr/dolibarr 116 typo3/cms-core 108 phpmyadmin/phpmyadmin 107 microweber/microweber 103 drupal/core 98 magento/project-community-edition 97 silverstripe/framework 90 librenms/librenms 83 drupal/drupal 73 thorsten/phpmyfaq 73 concrete5/concrete5 67 symfony/symfony 58 shopware/platform 58 craftcms/cms 53 mautic/core 47 baserproject/basercms 47 shopware/core 46 nilsteampassnet/teampass 42 mantisbt/mantisbt 41 showdoc/showdoc 41 froxlor/froxlor 40 intelliants/subrion 40 snipe/snipe-it 38 zendframework/zendframework1 32 shopware/shopware 31 getgrav/grav 30 mediawiki/core 28 centreon/centreon 27 contao/core-bundle 27 prestashop/prestashop 27 pocketmine/pocketmine-mp 25 getkirby/cms 24 grumpydictator/firefly-iii 23 simplesamlphp/simplesamlphp 23 laravel/framework 23 remdex/livehelperchat 23 tribalsystems/zenario 22 zendframework/zendframework 22 contao/contao 21 cockpit-hq/cockpit 20 typo3/cms-backend 20 funadmin/funadmin 20 topthink/framework 19 phpoffice/phpspreadsheet 19 genix/cms 18 forkcms/forkcms 18 francoisjacquet/rosariosis 17 cakephp/cakephp 17 ezsystems/ezpublish-kernel 17 yetiforce/yetiforce-crm 17 openmage/magento-lts 17 opencart/opencart 17 phpbb/phpbb 16 pimcore/admin-ui-classic-bundle 15 ec-cube/ec-cube 15 october/system 15 smarty/smarty 15 bolt/bolt 15 phpmailer/phpmailer 14 dompdf/dompdf 14 feehi/cms 14 codeigniter4/framework 14 silverstripe/cms 14 modx/revolution 14 yeswiki/yeswiki 14 lavalite/cms 13 elefant/cms 13 admidio/admidio 13 phpmyfaq/phpmyfaq 13 symfony/security 13 alextselegidis/easyappointments 13 studio-42/elfinder 13 impresscms/impresscms 13 sylius/sylius 12 wwbn/avideo 12 wallabag/wallabag 12 october/october 11 pagekit/pagekit 11 feehi/feehicms 11 tinymce 11 sulu/sulu 11 leantime/leantime 11 symfony/security-http 11 nukeviet/nukeviet 11 yiisoft/yii2 11 TinyMCE 11 tinymce/tinymce 11 ezsystems/ezplatform-kernel 11 spatie/browsershot 10 ssddanbrown/bookstack 10 symfony/http-foundation 10 magento/core 10 ezsystems/ezpublish-legacy 10 in2code/femanager 9 pterodactyl/panel 9 croogo/croogo 9 statamic/cms 9 pimcore/customer-management-framework-bundle 9 kevinpapst/kimai2 9 concrete5/core 9 twig/twig 9 billz/raspap-webgui 9 in2code/powermail 9 contao/core 9 ezsystems/ezplatform-admin-ui 9 directmailteam/direct-mail 8 composer/composer 8 gilacms/gila 8 october/cms 8 silverstripe/graphql 8 silverstripe/admin 8 codiad/codiad 8 starcitizentools/citizen-skin 8 flarum/core 8 joomla/joomla-cms 8 facturascripts/facturascripts 8 tecnickcom/tcpdf 8 vrana/adminer 7 passbolt/passbolt_api 7 shopxo/shopxo 7 yiisoft/yii2-dev 7 simplesamlphp/saml2 7 wpglobus/wpglobus 7 october/backend 7 backdrop/backdrop 7 unopim/unopim 7 redaxo/source 7 symfony/http-kernel 7 zoujingli/thinkadmin 6 yourls/yourls 6 gleez/cms 6 guzzlehttp/guzzle 6 nystudio107/craft-seomatic 6 phpseclib/phpseclib 6 drupal/core-recommended 6 typo3/cms-install 6 api-platform/core 6 bagisto/bagisto 6 dweeves/magmi 6 adodb/adodb-php 6 pear/archive_tar 6 icecoder/icecoder 6 oro/platform 6 anchorcms/anchor-cms 5 org.webjars:bootstrap 5 woocommerce/woocommerce 5 neos/flow 5 symfony/security-core 5 illuminate/database 5 kimai/kimai 5 getformwork/formwork 5 gugoan/economizzer 5 juzaweb/cms 5 ibexa/admin-ui 5 tcg/voyager 5 neos/neos 5 ibexa/core 5 phpservermon/phpservermon 5 typo3/flow 5 silverstripe/assets 5 thinkcmf/thinkcmf 5 elgg/elgg 5 twbs/bootstrap 5 phpoffice/phpexcel 5 mautic/core-lib 5 bottelet/flarepoint 5 cachethq/cachet 5 limesurvey/limesurvey 5 phpxmlrpc/phpxmlrpc 5 codeigniter/framework 4 enshrined/svg-sanitize 4 friendsofsymfony/user-bundle 4 reportico-web/reportico 4 bytefury/crater 4 shopware/storefront 4 automad/automad 4 flarum/framework 4 bref/bref 4 wp-premium/gravityforms 4 idno/known 4 yiisoft/yii 4 drupal/ai 4 notrinos/notrinos-erp 4 typo3/html-sanitizer 4 bootstrap 4 elmsln/haxcms 4 appwrite/server-ce 4 typo3/cms-form 4 typo3/cms-frontend 4 codeigniter4/shield 4 moonshine/moonshine 4 pyrocms/pyrocms 4 ezsystems/ezplatform 4 league/commonmark 4 processwire/processwire 4 oro/commerce 4

Filter by Repository

https://github.com/moodle/moodle 243 https://github.com/pimcore/pimcore 116 https://github.com/TYPO3/typo3 94 https://github.com/microweber/microweber 90 https://github.com/librenms/librenms 74 https://github.com/thorsten/phpmyfaq 69 https://github.com/silverstripe/silverstripe-framework 68 https://github.com/symfony/symfony 64 https://github.com/Dolibarr/dolibarr 60 https://github.com/mautic/mautic 46 https://github.com/phpmyadmin/phpmyadmin 45 https://github.com/concretecms/concretecms 44 https://github.com/shopware/platform 43 https://github.com/craftcms/cms 41 https://github.com/star7th/showdoc 39 https://github.com/mantisbt/mantisbt 38 https://github.com/magento/magento2 38 https://github.com/octobercms/october 36 https://github.com/shopware/shopware 35 https://github.com/snipe/snipe-it 30 https://github.com/contao/contao 30 https://github.com/baserproject/basercms 26 https://github.com/froxlor/froxlor 26 https://github.com/pmmp/PocketMine-MP 25 https://github.com/getgrav/grav 24 https://github.com/TYPO3/TYPO3.CMS 23 https://github.com/livehelperchat/livehelperchat 23 https://github.com/nilsteampassnet/TeamPass 23 https://github.com/firefly-iii/firefly-iii 23 https://github.com/PrestaShop/PrestaShop 23 https://github.com/getkirby/kirby 22 https://github.com/PHPOffice/PhpSpreadsheet 22 https://github.com/laravel/framework 21 https://github.com/funadmin/funadmin 20 https://github.com/simplesamlphp/simplesamlphp 20 https://github.com/TYPO3-CMS/core 19 https://github.com/intelliants/subrion 19 https://github.com/nilsteampassnet/teampass 19 https://github.com/OpenMage/magento-lts 17 https://github.com/liufee/cms 17 https://github.com/yetiforcecompany/yetiforcecrm 16 https://github.com/forkcms/forkcms 16 https://github.com/PHPMailer/PHPMailer 15 https://github.com/drupal/core 15 https://github.com/dompdf/dompdf 15 https://github.com/centreon/centreon 15 https://github.com/zendframework/zendframework 15 https://github.com/pimcore/admin-ui-classic-bundle 14 https://github.com/thorsten/phpMyFAQ 14 https://github.com/cockpit-hq/cockpit 14 https://github.com/smarty-php/smarty 12 https://github.com/codeigniter4/CodeIgniter4 12 https://github.com/YesWiki/yeswiki 12 https://github.com/yiisoft/yii2 12 https://sourceforge.net/projects/phpmyadmin.sourceforge.net 12 https://github.com/modxcms/revolution 12 https://github.com/centreon/centreon-archived 12 https://github.com/Sylius/Sylius 11 https://github.com/tinymce/tinymce 11 https://github.com/top-think/framework 11 https://github.com/Leantime/leantime 11 https://github.com/ezsystems/ezpublish-kernel 11 https://github.com/cakephp/cakephp 11 https://github.com/sulu/sulu 11 https://github.com/WWBN/AVideo 11 https://github.com/dolibarr/dolibarr 11 https://github.com/Studio-42/elFinder 11 https://github.com/opencart/opencart 10 https://github.com/bolt/bolt 10 https://github.com/semplon/GeniXCMS 10 https://github.com/wallabag/wallabag 10 https://github.com/kevinpapst/kimai2 9 https://github.com/alextselegidis/easyappointments 9 https://github.com/LavaLite/cms 9 https://github.com/neorazorx/facturascripts 9 https://github.com/spatie/browsershot 9 https://github.com/pterodactyl/panel 9 https://github.com/twigphp/Twig 8 https://github.com/Froxlor/Froxlor 8 https://github.com/TribalSystems/Zenario 8 https://github.com/pimcore/customer-data-framework 8 https://github.com/RaspAP/raspap-webgui 8 https://github.com/croogo/croogo 8 https://github.com/StarCitizenTools/mediawiki-skins-Citizen 8 https://github.com/GilaCMS/gila 8 https://github.com/admidio/admidio 8 https://github.com/statamic/cms 8 https://github.com/flarum/framework 8 https://github.com/francoisjacquet/rosariosis 8 https://github.com/tecnickcom/TCPDF 8 https://github.com/unopim/unopim 7 https://github.com/d4wner/Vulnerabilities-Report 7 https://github.com/pagekit/pagekit 7 https://github.com/wintercms/winter 7 https://github.com/ezsystems/ezplatform-kernel 7 https://github.com/ezsystems/ezplatform-admin-ui 7 https://github.com/passbolt/passbolt_api 7 https://github.com/composer/composer 7 https://github.com/Codiad/Codiad 7 https://github.com/guzzle/guzzle 6 https://github.com/oroinc/orocommerce 6 https://github.com/silverstripe/silverstripe-graphql 6 https://github.com/ADOdb/ADOdb 6 https://gitlab.com/francoisjacquet/rosariosis 6 https://github.com/api-platform/core 6 https://github.com/ImpressCMS/impresscms 6 https://github.com/LimeSurvey/LimeSurvey 6 https://github.com/gleez/cms 6 https://github.com/nystudio107/craft-seomatic 6 https://github.com/bookstackapp/bookstack 6 https://github.com/ezsystems/ezpublish-legacy 6 https://github.com/vrana/adminer 6 https://github.com/phpseclib/phpseclib 6 https://github.com/oroinc/platform 5 https://github.com/gggeek/phpxmlrpc 5 https://github.com/in2code-de/femanager 5 https://github.com/Admidio/admidio 5 https://github.com/zendframework/zf1 5 https://github.com/pear/Archive_Tar 5 https://github.com/dub-flow/vulnerability-research 5 https://github.com/auth0/auth0-PHP 5 https://github.com/nukeviet/nukeviet 5 https://github.com/backdrop/backdrop 5 https://github.com/getformwork/formwork 5 https://github.com/Bottelet/DaybydayCRM 5 https://github.com/contao/core 5 https://github.com/shopware5/shopware 5 https://github.com/twbs/bootstrap 5 https://github.com/thinkcmf/thinkcmf 5 https://github.com/ibexa/core 5 https://github.com/jbroadway/elefant 5 https://github.com/pixelfed/pixelfed 4 https://github.com/zoujingli/ThinkAdmin 4 https://github.com/phpservermon/phpservermon 4 https://github.com/TYPO3/html-sanitizer 4 https://github.com/reportico-web/reportico 4 https://github.com/darylldoyle/svg-sanitizer 4 https://github.com/codeigniter4/shield 4 https://github.com/ibexa/admin-ui 4 https://github.com/Cockpit-HQ/Cockpit 4 https://github.com/oroinc/crm 4 https://github.com/Sylius/SyliusResourceBundle 4 https://github.com/yourls/yourls 4 https://github.com/ezsystems/ezplatform-richtext 4 https://github.com/BookStackApp/BookStack 4 https://github.com/in2code-de/powermail 4 https://github.com/haxtheweb/issues 4 https://github.com/GiacoLenzo2109/MoonShine_Software_PoCs 4 https://github.com/fiveai/Cachet 4 https://github.com/appwrite/appwrite 4 https://github.com/hieuminhnv/Zenario-CMS-last-version 4 https://github.com/crater-invoice/crater 4 https://github.com/progprnv/CVE-Reports 4 https://github.com/kimai/kimai 4 https://github.com/froxlor/Froxlor 4 https://github.com/livewire/livewire 4 https://github.com/bagisto/bagisto 4 https://github.com/silverstripe/silverstripe-admin 4 https://github.com/ezsystems/ezplatform 4 https://github.com/brefphp/bref 4 https://github.com/dd3x3r/enhavo 3 https://github.com/verbb/comments 3 https://github.com/ezsystems/ezplatform-http-cache 3 https://github.com/phpbb/phpbb 3 https://github.com/thedevdojo/voyager 3 https://github.com/verbb/formie 3 https://github.com/xjzzzxx/vulFound 3 https://github.com/TYPO3-Solr/ext-solr 3 https://github.com/wikimedia/mediawiki 3 https://github.com/PrestaShop/productcomments 3 https://github.com/idno/known 3 https://github.com/liufee/feehicms 3 https://github.com/belong2yourself/vulnerabilities 3 https://github.com/yiisoft/yii 3 https://github.com/flarum/core 3 https://github.com/UniSharp/laravel-filemanager 3 https://github.com/orchidsoftware/platform 3 https://github.com/github/advisory-database 3 https://github.com/aimeos/ai-admin-graphql 3 https://github.com/uvdesk/community-skeleton 3 https://github.com/qcubed/qcubed 3 https://github.com/opensource-workshop/connect-cms 3 https://github.com/artesaos/seotools 3 https://github.com/redaxo/redaxo 3 https://github.com/nitsan-technologies/ns_backup 3 https://github.com/woocommerce/woocommerce 3 https://github.com/grokability/snipe-it 3 https://github.com/uasoft-indonesia/badaso 3 https://github.com/notrinos/notrinoserp 3 https://github.com/concrete5/concrete5 3 https://github.com/guzzle/psr7 3 https://github.com/Rudloff/alltube 3 https://github.com/FriendsOfSymfony/FOSUserBundle 3 https://github.com/alexbsec/CVEs 3 https://github.com/joomla/joomla-cms 3 https://github.com/Sylius/PayPalPlugin 3 https://github.com/phpbb/phpbb-app 3 https://github.com/elgg/elgg 3 https://github.com/PrivateBin/PrivateBin 3