Browse Security Advisories
Moderate Security Advisories for matrix-synapse Clear Filters
Moderate
10 months ago
Synapse Matrix has a partial room state leak via Sliding Sync
pypi
matrix-synapse
Moderate
10 months ago
Synapse's unauthenticated writes to the media repository allow planting of problematic content
pypi
matrix-synapse
Moderate
over 1 year ago
Synapse V2 state resolution weakness allows Denial of Service (DoS)
pypi
matrix-synapse
Moderate
almost 2 years ago
Synapse vulnerable to leak of remote user device information
pypi
matrix-synapse
Moderate
almost 2 years ago
matrix-synapse vulnerable to denial of service due to malicious server ACL events
pypi
matrix-synapse
Moderate
about 2 years ago
matrix-synapse vulnerable to improper validation of receipts allows forged read receipts
pypi
matrix-synapse
Moderate
over 2 years ago
Synapse has URL deny list bypass via oEmbed and image URLs when generating previews
pypi
matrix-synapse
Moderate
over 2 years ago
Synapse has improper checks for deactivated users during login
pypi
matrix-synapse
Moderate
over 2 years ago
Synapse Outgoing federation to specific hosts can be disabled by sending malicious invites
pypi
matrix-synapse
Moderate
over 4 years ago
Denial of service (via resource exhaustion) due to improper input validation in third-party identifier endpoint
pypi
matrix-synapse
Moderate
over 4 years ago
Denial of service attack via push rule patterns in matrix-synapse
pypi
matrix-synapse
Moderate
over 4 years ago
Denial of service (via resource exhaustion) due to improper input validation on third-party identifier endpoints
pypi
matrix-synapse
Moderate
over 4 years ago
Denial of service (via resource exhaustion) due to improper input validation on groups/communities endpoints
pypi
matrix-synapse
Moderate
over 4 years ago
HTML injection in email and account expiry notifications
pypi
matrix-synapse
Moderate
over 4 years ago
Cross-site scripting (XSS) vulnerability in the password reset endpoint
pypi
matrix-synapse
Moderate
almost 5 years ago
Cross-site scripting (XSS) vulnerability in the fallback authentication endpoint
pypi
matrix-synapse
Filter by Severity
Filter by Ecosystem
maven
3,263
packagist
2,960
pypi
2,034
npm
1,381
go
1,298
nuget
471
cargo
419
rubygems
417
hex
16
swift
11
actions
8
pub
2
Filter by Package
moodle/moodle
307
tensorflow
200
tensorflow-cpu
191
tensorflow-gpu
187
magento/community-edition
151
org.jenkins-ci.main:jenkins-core
148
typo3/cms
118
com.liferay.portal:release.portal.bom
104
org.apache.tomcat:tomcat
94
pimcore/pimcore
87
github.com/mattermost/mattermost/server/v8
83
com.liferay.portal:release.dxp.bom
80
typo3/cms-core
74
microweber/microweber
72
silverstripe/framework
67
phpmyadmin/phpmyadmin
56
dolibarr/dolibarr
55
drupal/core
53
github.com/usememos/memos
50
magento/project-community-edition
49
thorsten/phpmyfaq
47
concrete5/concrete5
46
apache-superset
45
apache-airflow
44
actionpack
44
librenms/librenms
43
Django
42
drupal/drupal
37
showdoc/showdoc
34
Plone
34
picklescan
34
org.elasticsearch:elasticsearch
33
mantisbt/mantisbt
33
org.keycloak:keycloak-core
32
github.com/grafana/grafana
31
craftcms/cms
31
nova
29
github.com/mattermost/mattermost-server/v6
29
github.com/mattermost/mattermost-server
28
moin
27
mautic/core
27
snipe/snipe-it
27
symfony/symfony
27
intelliants/subrion
27
baserproject/basercms
26
k8s.io/kubernetes
25
ansible
25
shopware/platform
23
directus
22
github.com/hashicorp/vault
21
nilsteampassnet/teampass
21
org.keycloak:keycloak-services
21
github.com/answerdev/answer
21
mediawiki/core
20
org.apache.struts:struts2-core
20
gradio
20
froxlor/froxlor
20
grumpydictator/firefly-iii
20
github.com/cilium/cilium
19
shopware/shopware
19
matrix-synapse
19
plone
19
github.com/docker/docker
18
remdex/livehelperchat
18
github.com/argoproj/argo-cd/v2
17
DotNetNuke.Core
17
salt
17
getkirby/cms
17
shopware/core
17
rdiffweb
16
prestashop/prestashop
16
django
16
zendframework/zendframework1
16
yetiforce/yetiforce-crm
15
vyper
15
io.undertow:undertow-core
15
org.opencms:opencms-core
15
org.apache.jspwiki:jspwiki-main
15
rack
15
github.com/hashicorp/nomad
15
contao/core-bundle
15
org.apache.tomcat.embed:tomcat-embed-core
14
github.com/hashicorp/consul
14
tinymce
14
puppet
14
glance
14
org.xwiki.platform:xwiki-platform-oldcore
14
typo3/cms-backend
13
keystone
13
github.com/openfga/openfga
13
tribalsystems/zenario
13
org.springframework.security:spring-security-core
13
nokogiri
13
com.jfinal:jfinal
13
com.thoughtworks.xstream:xstream
13
github.com/goharbor/harbor
13
forkcms/forkcms
13
transformers
12
next
12
wallabag/wallabag
12
org.bouncycastle:bcprov-jdk15on
12
helm.sh/helm/v3
12
simplesamlphp/simplesamlphp
12
roundup
12
genix/cms
11
github.com/traefik/traefik/v2
11
TinyMCE
11
github.com/ethereum/go-ethereum
11
ec-cube/ec-cube
11
ghost
11
github.com/containerd/containerd
11
lavalite/cms
11
activesupport
11
laravel/framework
11
github.com/argoproj/argo-cd
11
@openzeppelin/contracts
11
ckeditor4
11
org.eclipse.jetty:jetty-server
11
feehi/feehicms
11
getgrav/grav
11
tinymce/tinymce
11
@openzeppelin/contracts-upgradeable
11
contao/contao
11
com.vaadin:vaadin-bom
10
org.apache.jspwiki:jspwiki-war
10
org.keycloak:keycloak-parent
10
notebook
10
joplin
10
silverstripe/cms
10
org.apache.nifi:nifi
10
electron
10
github.com/greenpau/caddy-security
10
org.springframework:spring-core
10
fat_free_crm
10
OctoPrint
10
zendframework/zendframework
10
vite
10
bolt/bolt
10
opencart/opencart
10
vllm
10
francoisjacquet/rosariosis
10
com.liferay.portal:com.liferay.portal.impl
10
aiohttp
10
surrealdb
10
PaddlePaddle
10
org.apache.solr:solr-core
10
cakephp/cakephp
9
angular
9
org.mortbay.jetty:jetty
9
pyftpdlib
9
org.apache.activemq:activemq-client
9
swagger-ui
9
github.com/rancher/rancher
9
urllib3
9
org.jenkins-ci.plugins:script-security
9
org.opencrx:opencrx-core-models
9
horizon
9
rubygems-update
9
org.jenkins-ci.plugins:git
9
open-webui
9
org.igniterealtime.openfire:parent
9
calibreweb
9
gogs.io/gogs
9
sylius/sylius
9
code.gitea.io/gitea
9
wasmtime
9
phpoffice/phpspreadsheet
9
pimcore/admin-ui-classic-bundle
9
publify_core
9
impresscms/impresscms
8
alextselegidis/easyappointments
8
Microsoft.ChakraCore
8
org.apache.tomcat:tomcat-coyote
8
rails-html-sanitizer
8
activerecord
8
pyload-ng
8
onionshare-cli
8
opencv-contrib-python
8
org.jenkins-ci.plugins:electricflow
8
parse-server
8
opencv-python
8
sulu/sulu
8
github.com/kubeedge/kubeedge
8
github.com/mattermost/mattermost-plugin-confluence
8
camaleon_cms
8
editor.md
8
org.apache.archiva:archiva
8
neutron
8
mlflow
8
org.opensearch.plugin:opensearch-security
8
phpbb/phpbb
8
org.webjars:bootstrap
8
phpmyfaq/phpmyfaq
8
github.com/cri-o/cri-o
8
org.bouncycastle:bcprov-jdk15to18
8
org.apache.ranger:ranger
8
org.bouncycastle:bcprov-jdk14
8
centreon/centreon
8
modoboa
8
org.jenkins-ci.plugins:subversion
8