packagist
Security Advisories in packagist
High
1 day ago
MantisBT has a Private Bugnote Attachment Content Leak via REST API
packagist
mantisbt/mantisbt
Moderate
1 day ago
MantisBT: Authorization Bypass in Bugnote Editing via Issue Update API
packagist
mantisbt/mantisbt
Moderate
1 day ago
MantisBT is Vulnerable to Reflected XSS in Rendering Dynamic Custom Textarea Field
packagist
mantisbt/mantisbt
High
1 day ago
MantisBT is Vulnerable to Stored XSS in Saved-Filter Owner Column
packagist
mantisbt/mantisbt
Moderate
1 day ago
MantisBT has Potential Referer-Based Reflected HTML Injection / XSS in Tag Update Page
packagist
mantisbt/mantisbt
High
1 day ago
MantisBT has a Content Security Policy bypass via attachments
packagist
mantisbt/mantisbt
High
1 day ago
MantisBT is Vulnerable to XSS leading to account takeover via updating a user's font family preference
packagist
mantisbt/mantisbt
Moderate
1 day ago
MantisBT is Vulnerable to Stored XSS in Custom Field Textarea Values
packagist
mantisbt/mantisbt
Moderate
1 day ago
MantisBT: Bugnote Revision Page Leaks Private Issue Metadata After Issue Access Is Revoked
packagist
mantisbt/mantisbt
Moderate
1 day ago
MantisBT has an Authorization Bypass that Allows Uploading Attachments to Private Issues via REST API
packagist
mantisbt/mantisbt
Moderate
1 day ago
MantisBT has an authorization bypass that allows reading attachments after losing access to a private issue
packagist
mantisbt/mantisbt
Moderate
1 day ago
MantisBT has an authorization bypass in private issue monitoring
packagist
mantisbt/mantisbt
High
1 day ago
MantisBT is Vulnerable to Stored HTML Injection/XSS in Clone Issue Form
packagist
mantisbt/mantisbt
Moderate
1 day ago
MantisBT Vulnerable to Privilege Escalation from Manager to Administrator
packagist
mantisbt/mantisbt
Moderate
1 day ago
MantisBT Has Authorization Bypass in Global Profile Creation
packagist
mantisbt/mantisbt
High
1 day ago
elFinder MySQL has a SQL Injection in its Volume Driver (elFinderVolumeMySQL)
packagist
studio-42/elfinder
High
4 days ago
Phpseclib needs guardrails on large binaryfield integers
packagist
phpseclib/phpseclib
High
4 days ago
Snipe-IT has Privilege Escalation via API Permissions Assignment
packagist
snipe/snipe-it
Moderate
4 days ago
Snipe-IT has Stored XSS via Component Checkout Notes (v8.4.0)
packagist
snipe/snipe-it
Moderate
4 days ago
Kimai has an arbitrary file read in its invoice PDF renderer (admin)
packagist
kimai/kimai
Moderate
4 days ago
Grav: Stored XSS via page title (data[header][title]) in admin panel
packagist
getgrav/grav
Critical
4 days ago
PrestaShop has a stored XSS executable in customer service view
packagist
prestashop/prestashop
Low
5 days ago
Webauthn has a User Verification Downgrade via Default-Open ClientOverridePolicy
packagist
web-auth/webauthn-framework
Moderate
5 days ago
FacturaScripts Vulnerable to Authenticated Remote Code Execution (RCE) via GIF Image Upload in Product Images
packagist
facturascripts/facturascripts
Moderate
5 days ago
FacturaScripts Vulnerable to Unauthenticated phpinfo() Disclosure via Installer Endpoint
packagist
facturascripts/facturascripts
Moderate
5 days ago
FacturaScripts vulnerable to stored XSS via product reference in sales/purchases
packagist
facturascripts/facturascripts
Low
5 days ago
FacturaScripts vulnerable to Reflected Cross-Site Scripting (XSS) via Cookie Manipulation
packagist
facturascripts/facturascripts
Moderate
5 days ago
FacturaScripts Vulnerable to Unstripped Image Metadata (EXIF) Leakage via Library Module File Upload/Download
packagist
facturascripts/facturascripts
High
5 days ago
FacturaScripts Vulnerable to Remote Code Execution (RCE) via Zip Slip in Plugin Upload Mechanism
packagist
facturascripts/facturascripts
Moderate
5 days ago
Webkul Krayin CRM is Vulnerable to Cross-Site Scripting in the /admin/activities/create endpoint
packagist
krayin/laravel-crm
Critical
5 days ago
Compromised tag of intercom-php published via GitHub
packagist
intercom/intercom-php
High
6 days ago
Grav Form Plugin has an Anonymous Page Content Overwrite via Form File Upload filename Override
packagist
getgrav/grav-plugin-form
High
6 days ago
Flight vulnerable to sensitive information disclosure via default error handler
packagist
flightphp/core
High
6 days ago
Flight: HTTP method override enabled by default, facilitating CSRF escalation and middleware bypass
packagist
flightphp/core
High
6 days ago
Flight vulnerable to SQL Injection via unvalidated identifiers in SimplePdo::insert / update / delete
packagist
flightphp/core
Moderate
6 days ago
Flight has path traversal in `make:controller` CLI that creates arbitrary directories outside project root
packagist
flightphp/core
High
6 days ago
Flight has reflected XSS through an unvalidated JSONP callback in Flight::jsonp()
packagist
flightphp/core
High
6 days ago
Low-privileged Grav API users can create super-admin accounts via blueprint-upload
packagist
getgrav/grav
Moderate
6 days ago
Magento LTS: Reflected XSS - Import -> Data Flow (profiles)
packagist
openmage/magento-lts
Moderate
6 days ago
Statamic CMS vulnerable to email enumeration via forgot password endpoint
packagist
statamic/cms
Critical
6 days ago
phpMyFAQ has unauthenticated SQL injection via User-Agent header in BuiltinCaptcha
packagist
phpmyfaq/phpmyfaq, thorsten/phpmyfaq
Moderate
6 days ago
phpMyFAQ: Path Traversal in Client::deleteClientFolder enables arbitrary directory deletion by non-super-admin admins
packagist
phpmyfaq/phpmyfaq, thorsten/phpmyfaq
High
6 days ago
phpMyFAQ has unauthenticated FAQ permission bypass via getFaqBySolutionId fallback query
packagist
phpmyfaq/phpmyfaq, thorsten/phpmyfaq
High
6 days ago
phpMyFAQ has SQL Injection in CurrentUser::setTokenData through unescaped OAuth token fields
packagist
phpmyfaq/phpmyfaq, thorsten/phpmyfaq
Critical
6 days ago
phpMyFAQ enables unauthenticated 2FA brute-force attack via /admin/check acceptance of arbitrary user-id
packagist
phpmyfaq/phpmyfaq, thorsten/phpmyfaq
Moderate
6 days ago
phpMyFAQ: Ordinary Authenticated User Can Access Admin-Only API Endpoints Due to Insufficient Authorization Check in phpMyFAQ
packagist
phpmyfaq/phpmyfaq, thorsten/phpmyfaq
Moderate
6 days ago
phpMyFAQ has stored XSS via | raw Filter in search.twig — html_entity_decode(strip_tags()) Bypass in Search Result Rendering
packagist
thorsten/phpmyfaq, phpmyfaq/phpmyfaq
Moderate
6 days ago
phpMyFAQ's Missing CONFIGURATION_EDIT Permission Check on 12 Admin API Configuration Tab Endpoints Allows Information Disclosure by Any Authenticated User
packagist
phpmyfaq/phpmyfaq, thorsten/phpmyfaq
Moderate
6 days ago
phpMyFAQ has a SVG Sanitizer Entity Decoding Depth Limit Bypass Leading to Stored XSS
packagist
thorsten/phpmyfaq, phpmyfaq/phpmyfaq
Moderate
6 days ago
phpMyFAQ has Stored XSS in FAQ Question/Answer via Encode-Decode Bypass of removeAttributes() Sanitization
packagist
thorsten/phpmyfaq, phpmyfaq/phpmyfaq
Moderate
6 days ago
phpMyFAQ's Missing Authorization on Tag Deletion Allows Any Authenticated User to Delete Tags
packagist
thorsten/phpmyfaq, phpmyfaq/phpmyfaq
Moderate
6 days ago
phpMyFAQ has an Authorization Bypass in All Admin Pages Due to Non-Terminating Permission Check
packagist
thorsten/phpmyfaq, phpmyfaq/phpmyfaq
High
6 days ago
phpMyFAQ has stored XSS via Utils::parseUrl() in comment rendering
packagist
phpmyfaq/phpmyfaq, thorsten/phpmyfaq
Critical
6 days ago
Scramble vulnerable to remote code execution via evaluation of user-controlled input in validation rules
packagist
dedoc/scramble
Moderate
6 days ago
Kimai's Twig function config() leaks server-wide secrets (LDAP bind password, SAML SP private key) via invoice/export templates
packagist
kimai/kimai
Moderate
6 days ago
Kimai has Missing Voter Check that Allows Cross-Team Timesheet Manipulation
packagist
kimai/kimai
High
6 days ago
phpseclib: guardrails needed on isPrime and randomPrime
packagist
phpseclib/phpseclib
High
6 days ago
Craft CMS's Missing Volume Permission Check in AssetsController::actionShowInFolder Allows Information Disclosure
packagist
craftcms/cms
High
6 days ago
Craft CMS has Potential Authenticated Remote Code Execution via Malicious Attached Behavior
packagist
craftcms/cms
High
6 days ago
Craft CMS's Missing Authorization in GraphQL Address Resolver Allows Cross-Scope PII Disclosure
packagist
craftcms/cms
High
7 days ago
AVideo Vulnerable to Exposure of Sensitive Information to an Unauthorized Actor and Missing Authorization
packagist
wwbn/avideo
High
7 days ago
AVideo has SSRF Protection Bypass via HTTP Redirect and DNS Rebinding in isSSRFSafeURL()
packagist
wwbn/avideo
Moderate
7 days ago
AVideo: IDOR in PayPalYPT Plugin Allows Any Authenticated User to Cancel Arbitrary PayPal Subscription Agreements
packagist
wwbn/avideo
Moderate
7 days ago
AVideo: Unauthenticated CRLF/ICS Injection in Scheduler downloadICS.php Allows Calendar Event Spoofing
packagist
wwbn/avideo
Moderate
7 days ago
AVideo: Unauthenticated User Enumeration in objects/users.json.php via isCompany Parameter Allows Bypass of the Admin-Only Listing Restriction
packagist
wwbn/avideo
Moderate
7 days ago
AVideo: Unauthenticated Arbitrary Email Sending via sendEmail.json.php Enables Phishing from the Site’s Legitimate From Address
packagist
wwbn/avideo
Moderate
7 days ago
AVideo has Blind SSRF in YPTWallet Donation Webhook via Missing isSSRFSafeURL() Check and CURLOPT_FOLLOWLOCATION Redirect Bypass
packagist
wwbn/avideo
High
7 days ago
Grav has Unauthenticated Path Traversal & Arbitrary File Write in its FormFlash component
packagist
getgrav/grav
High
7 days ago
Grav Vulnerable to Administrative Account Disruption and Privilege De-escalation via User Overwrite Logic
packagist
getgrav/grav
Critical
7 days ago
Grav has multiple RCE vectors: unsafe unserialize (x3), command injection in git clone, SSTI blocklist bypass
packagist
getgrav/grav
High
7 days ago
Grav Vulnerable to Publisher-Level Stored XSS via Unquoted Event Attributes
packagist
getgrav/grav
Moderate
7 days ago
Grav Vulnerable to Sensitive Information Disclosure via Accounts Service Bypass
packagist
getgrav/grav
Critical
7 days ago
Grav Vulnerable to Privilege Escalation via Missing Server-Side Validation of groups/access
packagist
getgrav/grav
Moderate
7 days ago
Grav Vulnerable to XSS via Taxonomy Field Values in Admin Panel
packagist
getgrav/grav
Moderate
7 days ago
Grav CMS vulnerable to stored XSS via Markdown media attribute() action
packagist
getgrav/grav
Critical
7 days ago
Grav Vulnerable to Remote Code Execution (RCE) via Malicious Plugin ZIP Upload in Direct Install Feature
packagist
getgrav/grav
High
7 days ago
phpseclib has a CVE-2024-27355 mitigation bypass — OID amplification DoS in ASN1::decodeOID()
packagist
phpseclib/phpseclib
Moderate
7 days ago
Kimai vulnerable to formula Injection via tag names in XLSX export
packagist
kimai/kimai
Moderate
7 days ago
Magento LTS Vulnerable to Open Redirect via Unvalidated `uenc` Parameter in `stockAction()`
packagist
openmage/magento-lts
Moderate
7 days ago
Admidio has an incomplete fix for CVE-2026-32812 (SSRF)
packagist
admidio/admidio
Critical
7 days ago
Magento LTS has Weak API Session ID — Predictable MD5 of Time-Derived Inputs
packagist
openmage/magento-lts
Moderate
7 days ago
Video: Reflected XSS in plugin/Meet/iframe.php via Unescaped user and pass Parameters in JavaScript String Literal
packagist
wwbn/avideo
Moderate
7 days ago
AVideo: CSRF in userSavePhoto.php Allows Cross-Origin Overwrite of Authenticated Users' Profile Photos with Arbitrary Content
packagist
wwbn/avideo
Moderate
7 days ago
AVideo: HTML Injection in notifySubscribers.json.php Allows Platform-Branded Phishing Emails to Channel Subscribers
packagist
wwbn/avideo
Moderate
7 days ago
AVideo: Password Hash Leak in MobileManager OAuth Redirect URL Enables Account Takeover
packagist
wwbn/avideo
High
7 days ago
AVideo has an Incomplete Fix for YPTSocket autoEvalCodeOnHTML Strip: Unauthenticated Cross-User JavaScript Execution via `$msg['json']` Relay Bypass
packagist
wwbn/avideo
High
7 days ago
webonyx/graphql-php has unbounded recursion in parser that causes stack overflow on crafted nested input
packagist
webonyx/graphql-php
High
8 days ago
webonyx/graphql-php has quadratic validation cost in OverlappingFieldsCanBeMerged via inline fragments
packagist
webonyx/graphql-php
Filter by Severity
Filter by Package
moodle/moodle
437
magento/community-edition
360
typo3/cms
165
wwbn/avideo
138
pimcore/pimcore
126
dolibarr/dolibarr
124
magento/project-community-edition
119
typo3/cms-core
108
phpmyadmin/phpmyadmin
107
microweber/microweber
105
drupal/core
103
craftcms/cms
102
librenms/librenms
99
thorsten/phpmyfaq
98
silverstripe/framework
90
concrete5/concrete5
75
drupal/drupal
72
getgrav/grav
66
mantisbt/mantisbt
65
shopware/platform
65
symfony/symfony
62
baserproject/basercms
56
shopware/core
55
mautic/core
49
froxlor/froxlor
48
snipe/snipe-it
46
nilsteampassnet/teampass
42
showdoc/showdoc
42
intelliants/subrion
41
admidio/admidio
40
getkirby/cms
34
phpmyfaq/phpmyfaq
34
ci4-cms-erp/ci4ms
33
shopware/shopware
33
zendframework/zendframework1
32
prestashop/prestashop
31
contao/core-bundle
31
statamic/cms
31
pocketmine/pocketmine-mp
30
mediawiki/core
28
phpoffice/phpspreadsheet
27
centreon/centreon
27
openmage/magento-lts
26
funadmin/funadmin
26
cockpit-hq/cockpit
25
magento/core
24
grumpydictator/firefly-iii
24
remdex/livehelperchat
23
laravel/framework
23
tribalsystems/zenario
22
zendframework/zendframework
22
october/system
22
typo3/cms-backend
22
simplesamlphp/simplesamlphp
22
feehi/cms
21
bagisto/bagisto
20
facturascripts/facturascripts
20
craftcms/commerce
19
kimai/kimai
19
contao/contao
19
sylius/sylius
19
topthink/framework
19
genix/cms
18
forkcms/forkcms
18
cakephp/cakephp
18
opencart/opencart
17
yetiforce/yetiforce-crm
17
francoisjacquet/rosariosis
17
devcode-it/openstamanager
17
yeswiki/yeswiki
17
phpbb/phpbb
16
pimcore/admin-ui-classic-bundle
16
ec-cube/ec-cube
16
silverstripe/cms
15
smarty/smarty
15
bolt/bolt
15
ezsystems/ezpublish-kernel
15
studio-42/elfinder
15
pterodactyl/panel
15
modx/revolution
14
codeigniter4/framework
14
phpmailer/phpmailer
14
lavalite/cms
14
feehi/feehicms
14
alextselegidis/easyappointments
14
dompdf/dompdf
14
impresscms/impresscms
13
redaxo/source
13
pagekit/pagekit
13
elefant/cms
13
yiisoft/yii2
12
leantime/leantime
12
october/october
12
sulu/sulu
12
symfony/security
12
wallabag/wallabag
12
tinymce
11
TinyMCE
11
symfony/security-http
11
symfony/http-foundation
11
composer/composer
11
tinymce/tinymce
11
nukeviet/nukeviet
11
croogo/croogo
10
ssddanbrown/bookstack
10
spatie/browsershot
10
ezsystems/ezpublish-legacy
10
ezsystems/ezplatform-kernel
10
billz/raspap-webgui
10
ezsystems/ezplatform-admin-ui
10
roundcube/roundcubemail
10
starcitizentools/citizen-skin
9
kevinpapst/kimai2
9
contao/core
9
pimcore/customer-management-framework-bundle
9
concrete5/core
9
opensource-workshop/connect-cms
9
flarum/core
9
in2code/powermail
9
phpseclib/phpseclib
9
krayin/laravel-crm
9
in2code/femanager
9
twig/twig
9
azuracast/azuracast
9
backdrop/backdrop
8
codiad/codiad
8
vrana/adminer
8
silverstripe/graphql
8
joomla/joomla-cms
8
silverstripe/admin
8
directmailteam/direct-mail
8
tecnickcom/tcpdf
8
gilacms/gila
8
october/cms
8
unopim/unopim
7
idno/known
7
passbolt/passbolt_api
7
wpglobus/wpglobus
7
october/backend
7
shopxo/shopxo
7
yiisoft/yii2-dev
7
simplesamlphp/saml2
7
getformwork/formwork
7
yourls/yourls
7
symfony/http-kernel
7
guzzlehttp/guzzle
6
gleez/cms
6
nystudio107/craft-seomatic
6
zoujingli/thinkadmin
6
api-platform/core
6
october/rain
6
processwire/processwire
6
pear/archive_tar
6
oro/platform
6
icecoder/icecoder
6
typo3/cms-install
6
limesurvey/limesurvey
6
league/commonmark
6
auth0/wordpress
6
dweeves/magmi
6
ibexa/admin-ui
6
privatebin/privatebin
6
adodb/adodb-php
6
symfony/security-core
5
shopware/storefront
5
anchorcms/anchor-cms
5
drupal/core-recommended
5
silverstripe/assets
5
auth0/symfony
5
auth0/auth0-php
5
ibexa/core
5
illuminate/database
5
auth0/login
5
elgg/elgg
5
phppgadmin/phppgadmin
5
thinkcmf/thinkcmf
5
bottelet/flarepoint
5
flightphp/core
5
gugoan/economizzer
5
phpxmlrpc/phpxmlrpc
5
mineadmin/mineadmin
5
woocommerce/woocommerce
5
solspace/craft-freeform
5
juzaweb/cms
5
cachethq/cachet
5
phpservermon/phpservermon
5
neos/flow
5
mautic/core-lib
5
typo3/flow
5
neos/neos
5
tcg/voyager
5
typo3/cms-frontend
4
prestashop/ps_checkout
4
tastyigniter/tastyigniter
4
phpunit/phpunit
4
code16/sharp
4
codeigniter/framework
4
web-auth/webauthn-framework
4
torrentpier/torrentpier
4
evolutioncms/evolution
4
Filter by Repository
https://github.com/moodle/moodle
250
https://github.com/pimcore/pimcore
116
https://github.com/TYPO3/typo3
93
https://github.com/microweber/microweber
90
https://github.com/librenms/librenms
77
https://github.com/thorsten/phpmyfaq
69
https://github.com/silverstripe/silverstripe-framework
68
https://github.com/symfony/symfony
64
https://github.com/Dolibarr/dolibarr
60
https://github.com/mautic/mautic
46
https://github.com/phpmyadmin/phpmyadmin
45
https://github.com/concretecms/concretecms
44
https://github.com/shopware/platform
42
https://github.com/mantisbt/mantisbt
42
https://github.com/craftcms/cms
41
https://github.com/shopware/shopware
40
https://github.com/star7th/showdoc
39
https://github.com/magento/magento2
38
https://github.com/octobercms/october
36
https://github.com/snipe/snipe-it
30
https://github.com/contao/contao
30
https://github.com/baserproject/basercms
26
https://github.com/froxlor/froxlor
26
https://github.com/pmmp/PocketMine-MP
25
https://github.com/getgrav/grav
24
https://github.com/TYPO3/TYPO3.CMS
23
https://github.com/livehelperchat/livehelperchat
23
https://github.com/nilsteampassnet/TeamPass
23
https://github.com/firefly-iii/firefly-iii
23
https://github.com/PrestaShop/PrestaShop
23
https://github.com/getkirby/kirby
22
https://github.com/PHPOffice/PhpSpreadsheet
22
https://github.com/laravel/framework
21
https://github.com/funadmin/funadmin
20
https://github.com/simplesamlphp/simplesamlphp
19
https://github.com/TYPO3-CMS/core
19
https://github.com/nilsteampassnet/teampass
19
https://github.com/intelliants/subrion
19
https://github.com/OpenMage/magento-lts
18
https://github.com/liufee/cms
17
https://github.com/yetiforcecompany/yetiforcecrm
16
https://github.com/forkcms/forkcms
16
https://github.com/PHPMailer/PHPMailer
15
https://github.com/drupal/core
15
https://github.com/dompdf/dompdf
15
https://github.com/thorsten/phpMyFAQ
15
https://github.com/centreon/centreon
15
https://github.com/zendframework/zendframework
15
https://github.com/pimcore/admin-ui-classic-bundle
14
https://github.com/cockpit-hq/cockpit
14
https://github.com/smarty-php/smarty
12
https://github.com/codeigniter4/CodeIgniter4
12
https://github.com/YesWiki/yeswiki
12
https://sourceforge.net/projects/phpmyadmin.sourceforge.net
12
https://github.com/yiisoft/yii2
12
https://github.com/modxcms/revolution
12
https://github.com/centreon/centreon-archived
12
https://github.com/Sylius/Sylius
11
https://github.com/tinymce/tinymce
11
https://github.com/top-think/framework
11
https://github.com/Leantime/leantime
11
https://github.com/WWBN/AVideo
11
https://github.com/cakephp/cakephp
11
https://github.com/sulu/sulu
11
https://github.com/dolibarr/dolibarr
11
https://github.com/Studio-42/elFinder
11
https://github.com/opencart/opencart
10
https://github.com/bolt/bolt
10
https://github.com/semplon/GeniXCMS
10
https://github.com/wallabag/wallabag
10
https://github.com/kevinpapst/kimai2
9
https://github.com/StarCitizenTools/mediawiki-skins-Citizen
9
https://github.com/LavaLite/cms
9
https://github.com/alextselegidis/easyappointments
9
https://github.com/neorazorx/facturascripts
9
https://github.com/ezsystems/ezpublish-kernel
9
https://github.com/bagisto/bagisto
9
https://github.com/spatie/browsershot
9
https://github.com/pterodactyl/panel
9
https://github.com/statamic/cms
9
https://github.com/twigphp/Twig
8
https://github.com/TribalSystems/Zenario
8
https://github.com/Froxlor/Froxlor
8
https://github.com/pimcore/customer-data-framework
8
https://github.com/RaspAP/raspap-webgui
8
https://github.com/croogo/croogo
8
https://github.com/GilaCMS/gila
8
https://github.com/ezsystems/ezplatform-admin-ui
8
https://github.com/admidio/admidio
8
https://github.com/tecnickcom/TCPDF
8
https://github.com/francoisjacquet/rosariosis
8
https://github.com/flarum/framework
8
https://github.com/unopim/unopim
7
https://github.com/pagekit/pagekit
7
https://github.com/d4wner/Vulnerabilities-Report
7
https://github.com/ezsystems/ezplatform-kernel
7
https://github.com/wintercms/winter
7
https://github.com/passbolt/passbolt_api
7
https://github.com/Codiad/Codiad
7
https://github.com/composer/composer
7
https://github.com/guzzle/guzzle
6
https://gitlab.com/francoisjacquet/rosariosis
6
https://github.com/api-platform/core
6
https://github.com/silverstripe/silverstripe-graphql
6
https://github.com/LimeSurvey/LimeSurvey
6
https://github.com/ImpressCMS/impresscms
6
https://github.com/ADOdb/ADOdb
6
https://github.com/Admidio/admidio
6
https://github.com/gleez/cms
6
https://github.com/nystudio107/craft-seomatic
6
https://github.com/ezsystems/ezpublish-legacy
6
https://github.com/vrana/adminer
6
https://github.com/auth0/auth0-PHP
6
https://github.com/oroinc/orocommerce
6
https://github.com/bookstackapp/bookstack
6
https://github.com/jbroadway/elefant
5
https://github.com/zendframework/zf1
5
https://github.com/gggeek/phpxmlrpc
5
https://github.com/ibexa/admin-ui
5
https://github.com/ibexa/core
5
https://github.com/getformwork/formwork
5
https://github.com/dub-flow/vulnerability-research
5
https://github.com/nukeviet/nukeviet
5
https://github.com/oroinc/platform
5
https://github.com/backdrop/backdrop
5
https://github.com/thinkcmf/thinkcmf
5
https://github.com/in2code-de/femanager
5
https://github.com/shopware5/shopware
5
https://github.com/Bottelet/DaybydayCRM
5
https://github.com/pear/Archive_Tar
5
https://github.com/contao/core
5
https://github.com/yourls/yourls
4
https://github.com/codeigniter4/shield
4
https://github.com/zoujingli/ThinkAdmin
4
https://github.com/darylldoyle/svg-sanitizer
4
https://github.com/hieuminhnv/Zenario-CMS-last-version
4
https://github.com/TYPO3/html-sanitizer
4
https://github.com/fiveai/Cachet
4
https://github.com/appwrite/appwrite
4
https://github.com/reportico-web/reportico
4
https://github.com/phpservermon/phpservermon
4
https://github.com/pixelfed/pixelfed
4
https://github.com/haxtheweb/issues
4
https://github.com/Cockpit-HQ/Cockpit
4
https://github.com/BookStackApp/BookStack
4
https://github.com/oroinc/crm
4
https://github.com/in2code-de/powermail
4
https://github.com/GiacoLenzo2109/MoonShine_Software_PoCs
4
https://github.com/Sylius/SyliusResourceBundle
4
https://github.com/ezsystems/ezplatform-richtext
4
https://github.com/PrivateBin/PrivateBin
4
https://github.com/silverstripe/silverstripe-admin
4
https://github.com/crater-invoice/crater
4
https://github.com/ezsystems/ezplatform
4
https://github.com/livewire/livewire
4
https://github.com/progprnv/CVE-Reports
4
https://github.com/brefphp/bref
4
https://github.com/froxlor/Froxlor
4
https://github.com/kimai/kimai
4
https://github.com/redaxo/redaxo
3
https://github.com/opensource-workshop/connect-cms
3
https://github.com/phpseclib/phpseclib
3
https://github.com/uvdesk/community-skeleton
3
https://github.com/github/advisory-database
3
https://github.com/orchidsoftware/platform
3
https://github.com/aimeos/ai-admin-graphql
3
https://github.com/flarum/core
3
https://github.com/dd3x3r/enhavo
3
https://github.com/phpbb/phpbb
3
https://github.com/thedevdojo/voyager
3
https://github.com/yiisoft/yii
3
https://github.com/TYPO3-Solr/ext-solr
3
https://github.com/wikimedia/mediawiki
3
https://github.com/auth0/wordpress
3
https://github.com/concrete5/concrete5
3
https://github.com/joomla/joomla-cms
3
https://github.com/Rudloff/alltube
3
https://github.com/FriendsOfSymfony/FOSUserBundle
3
https://github.com/facade/ignition
3
https://github.com/phpbb/phpbb-app
3
https://github.com/PrestaShopCorp/ps_checkout
3
https://github.com/Cyber-Wo0dy/report
3
https://github.com/simplesamlphp/saml2
3
https://github.com/quickapps/cms
3
https://github.com/xjzzzxx/vulFound
3
https://github.com/verbb/comments
3
https://github.com/ezsystems/ezplatform-http-cache
3
https://github.com/UniSharp/laravel-filemanager
3
https://github.com/belong2yourself/vulnerabilities
3
https://github.com/qcubed/qcubed
3
https://github.com/artesaos/seotools
3
https://github.com/nitsan-technologies/ns_backup
3
https://github.com/verbb/formie
3
https://github.com/elgg/elgg
3
https://github.com/alexbsec/CVEs
3
https://github.com/thephpleague/commonmark
3
https://github.com/TYPO3-CMS/backend
3
https://github.com/notrinos/notrinoserp
3
https://github.com/torrentpier/torrentpier
3