Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

packagist

packagist

468,797 packages · packagist.org

Moderate Security Advisories in packagist Clear Filters

Moderate
12 months ago

Cross-site Scripting via uploaded SVG GSA_kwCzR0hTQS0yNTV3LTg3cmgtcmc0NM4AA_72

packagist sulu/sulu
Moderate
about 1 year ago

LibreNMS has Stored Cross-site Scripting vulnerability in "Alert Transports" feature GSA_kwCzR0hTQS03Zjg0LTI4cWgtOTQ4Ns4AA_52

packagist librenms/librenms
Moderate
about 1 year ago

LibreNMS has Stored Cross-site Scripting vulnerability in "Alert Rules" feature GSA_kwCzR0hTQS1qMmo5LTdwcjYteHF3ds4AA_50

packagist librenms/librenms
Moderate
about 1 year ago

LibreNMS has Stored Cross-site Scripting vulnerability in "Device Dependencies" feature GSA_kwCzR0hTQS1yd3djLTJ2OHEtZ2M5ds4AA_5y

packagist librenms/librenms
Moderate
about 1 year ago

Pagekit Cross-site Scripting vulnerability GSA_kwCzR0hTQS14dzMyLTY0MjItZnJxbc4AA_5f

packagist pagekit/pagekit
Moderate
about 1 year ago

starcitizentools/citizen-skin vulnerable to stored, self-XSS in the "real name" field GSA_kwCzR0hTQS02MnIyLWdjeHItNDI2eM4AA_31

packagist starcitizentools/citizen-skin
Moderate
about 1 year ago

MantisBT vulnerable to information disclosure with user profiles GSA_kwCzR0hTQS1oNXEzLWZqcDQtMng3cs4AA_3z

packagist mantisbt/mantisbt
Moderate
about 1 year ago

IDOR vulnerability in account profile page GSA_kwCzR0hTQS1ydzNqLTU3NGgtbXJjcc4AA_zA

packagist aimeos/ai-controller-frontend
Moderate
about 1 year ago

Cross site scripting in Concrete CMS GSA_kwCzR0hTQS1xN3FyLTIycXctcHFneM4AA_wK

packagist concrete5/concrete5
Moderate
about 1 year ago

Cross site scripting in Concrete CMS GSA_kwCzR0hTQS14OGgyLTI1NXEtamc0eM4AA_v1

packagist concrete5/concrete5
Moderate
about 1 year ago

Mautic allows users enumeration due to weak password login GSA_kwCzR0hTQS04dmZmLTM1cW0tcWp2ds4AA_rk

packagist mautic/core
Moderate
about 1 year ago

Mautic has insufficient authentication in upgrade flow GSA_kwCzR0hTQS1xZjZtLTZtNGctcm1yY84AA_rj

packagist mautic/core-lib, mautic/core
Moderate
about 1 year ago

Mautic has an XSS in contact tracking and page hits report GSA_kwCzR0hTQS14cGM1LXJyMzktdjh2Ms4AA_ri

packagist mautic/core, mautic/core-lib
Moderate
about 1 year ago

Mautic vulnerable to XSS in contact/company tracking (no authentication) GSA_kwCzR0hTQS03M2dyLTMyd2ctcWhoN84AA_rh

packagist mautic/core-lib, mautic/core
Moderate
about 1 year ago

Mautic vulnerable to Cross-site Scripting (XSS) - stored (edit form HTML field) GSA_kwCzR0hTQS14djY4LXJybXctOXh3Zs4AA_rg

packagist mautic/core-lib, mautic/core
Moderate
about 1 year ago

Concrete CMS stored XSS vulnerability in the "Top Navigator Bar" block GSA_kwCzR0hTQS05OThjLXE4aGgtaDhnds4AA_nA

packagist concrete5/concrete5
Moderate
about 1 year ago

Wire UI has a JS XSS Vulnerability on route /wireui/button?label=Content GSA_kwCzR0hTQS1ydzVoLWc4eHEtNjg3N84AA_mq

packagist wireui/wireui
Moderate
about 1 year ago

czim/file-handling vulnerable to SSRF and directory traversal GSA_kwCzR0hTQS02cmdoLXI2ajMtMzIyM84AA_mg

packagist czim/file-handling
Moderate
about 1 year ago

powermail TYPO3 extension has Insecure Direct Object Reference GSA_kwCzR0hTQS1xMjVjLXI0ODItNzdwOc4AA_mj

packagist in2code/powermail
Moderate
about 1 year ago

Contao affected by insert tag injection via canonical URL GSA_kwCzR0hTQS0yeHBxLXhwNmMtNW1nas4AA_md

packagist contao/core-bundle
Moderate
about 1 year ago

Contao affected by directory traversal in the file selector widget GSA_kwCzR0hTQS00cDc1LTVwNTMtNjVtOc4AA_mc

packagist contao/core-bundle
Moderate
about 1 year ago

Concrete CMS Stored XSS in the "Next&Previous Nav" block GSA_kwCzR0hTQS14bXhqLXYycTgtOHF4Ns4AA_kc

packagist concrete5/concrete5
Moderate
about 1 year ago

auditor-bundle vulnerable to Cross-site Scripting because name of entity does not get escaped GSA_kwCzR0hTQS03OHZnLTd2MjctaGo2N84AA_a2

packagist damienharper/auditor-bundle
Moderate
about 1 year ago

Twig has a possible sandbox bypass GSA_kwCzR0hTQS02ajc1LTV3ZmotZ2g2Ns4AA_Ye

packagist twig/twig
Moderate
about 1 year ago

Craft CMS vulnerable to stored XSS in breadcrumb list and title fields GSA_kwCzR0hTQS0yOGg0LTc4OGctcmg0Ms4AA_YV

packagist craftcms/cms
Moderate
about 1 year ago

Httpful is Missing Certificate Validation GSA_kwCzR0hTQS1nY2ZnLWhtd3gtd3E1aM4AA_YU

packagist nategood/httpful
Moderate
about 1 year ago

"powermail" (powermail) Insecure Direct Object Reference (IDOR) GSA_kwCzR0hTQS1wNjUyLXhjZ3gtZjg1bc4AA_B1

packagist in2code/powermail
Moderate
about 1 year ago

PhpSpreadsheet HTML writer is vulnerable to Cross-Site Scripting via style information GSA_kwCzR0hTQS13Z21mLXE5dnItdnd3Ns4AA_Bz

packagist phpoffice/phpspreadsheet
Moderate
about 1 year ago

FeehiCMS User[avatar] unrestricted upload GSA_kwCzR0hTQS14cDY4LTdnMzMtZjQ5bc4AA_BT

packagist feehi/cms
Moderate
about 1 year ago

Drupal Full Path Disclosure GSA_kwCzR0hTQS1tZzhqLXc5M3cteGpnY84AA_BD

packagist drupal/core, drupal/core-recommended, drupal/drupal
Moderate
about 1 year ago

FeehiCMS file upload vulnerability GSA_kwCzR0hTQS14eHF3LTgzYzctcjI0cs4AA_BP

packagist feehi/cms
Moderate
about 1 year ago

FeehiCMS BannerForm[img] unrestricted upload GSA_kwCzR0hTQS0zd3JnLTZtZzUtamcyds4AA_BN

packagist feehi/cms
Moderate
about 1 year ago

Powermail TYPO3 extension Broken Access Control in the OutputController GSA_kwCzR0hTQS05anFyLTV4NDUtcGd3OM4AA_AM

packagist in2code/powermail
Moderate
about 1 year ago

Magento Open Source Cross-Site Request Forgery (CSRF) vulnerability GSA_kwCzR0hTQS00MzIzLWY4MnYtZjZqcs4AA-oo

packagist magento/community-edition
Moderate
about 1 year ago

Magento Open Source Cross-Site Request Forgery vulnerability GSA_kwCzR0hTQS00Y2o2LWYzMnYtNmhneM4AA-on

packagist magento/community-edition
Moderate
about 1 year ago

Magento Open Source Cross-Site Request Forgery (CSRF) vulnerability GSA_kwCzR0hTQS1yZjRxLW0yM2MtN3E4cs4AA-og

packagist magento/community-edition
Moderate
about 1 year ago

Magento Open Source Path Traversal vulnerability GSA_kwCzR0hTQS02cHhoLTI1NTctNWNqNc4AA-oW

packagist magento/community-edition
Moderate
about 1 year ago

Magento Open Source Improper Authorization vulnerability GSA_kwCzR0hTQS03NDcyLXZ3MzktZzJqM84AA-oj

packagist magento/community-edition
Moderate
about 1 year ago

Concrete CMS Stored Cross-site Scripting vulnerability GSA_kwCzR0hTQS1xNXd4LW05NXItNGNnY84AA-iF

packagist concrete5/concrete5
Moderate
about 1 year ago

Concrete CMS Stored XSS in getAttributeSetName GSA_kwCzR0hTQS13Nmo2LXc2angtdmYycs4AA-gS

packagist concrete5/concrete5
Moderate
about 1 year ago

Shopware vulnerable to blind SQL-injection in DAL aggregations GSA_kwCzR0hTQS1wNnc5LXI0NDMtcjc1Ms4AA-gA

packagist shopware/core, shopware/platform
Moderate
about 1 year ago

Shopware vulnerable to Improper Access Control with ManyToMany associations in store-api GSA_kwCzR0hTQS1oaGNxLXBoNnctNDk0Z84AA-f9

packagist shopware/platform, shopware/core
Moderate
about 1 year ago

Microweber Reflected Cross-site scripting (XSS) vulnerability GSA_kwCzR0hTQS1tOTl2LW1tZzItNjZ2Zs4AA-aj

packagist microweber/microweber
Moderate
about 1 year ago

Microweber Cross Site Scripting (XSS) vulnerability GSA_kwCzR0hTQS1oNHhmLXd4OTktam12NM4AA-Yb

packagist microweber/microweber
Moderate
about 1 year ago

Microweber Cross Site Scripting (XSS) vulnerability GSA_kwCzR0hTQS1oZjY2LXhmZ2otNDJnOM4AA-YZ

packagist microweber/microweber
Moderate
about 1 year ago

Concrete CMS vulnerable to Stored Cross-site Scripting GSA_kwCzR0hTQS0zY3BmLWptbWMtOGptM84AA-Us

packagist concrete5/concrete5
Moderate
about 1 year ago

eZ Platform Admin UI vulnerable to DOM-based Cross-site Scripting in file upload widget GSA_kwCzR0hTQS1nYzVoLTZqeDktcTJxaM4AA-S4

packagist ezsystems/ezplatform-admin-ui
Moderate
about 1 year ago

Ibexa Admin UI vulnerable to DOM-based Cross-site Scripting in file upload widget GSA_kwCzR0hTQS1xbTQ0LXdqbTItcHI1Oc4AA-Sp

packagist ibexa/admin-ui
Moderate
about 1 year ago

Bolt CMS Cross-site Scripting vulnerability GSA_kwCzR0hTQS14aHF3LTRoY3EtZmN2cs4AA-SU

packagist bolt/bolt
Moderate
about 1 year ago

Pimcore vulnerable to disclosure of system and database information behind /admin firewall GSA_kwCzR0hTQS1meDZqLTlwcDYtcGgzNs4AA-Q8

packagist pimcore/admin-ui-classic-bundle
Moderate
about 1 year ago

Magento LTS vulnerable to stored Cross-site Scripting (XSS) in admin system configs GSA_kwCzR0hTQS01dnJwLTYzOHctcDhtMs4AA-MY

packagist openmage/magento-lts
Moderate
about 1 year ago

ICEcoder Path Traversal vulnerability GSA_kwCzR0hTQS14MzhjLXY3NzgtdzU2bc4AA-Iq

packagist icecoder/icecoder
Moderate
about 1 year ago

Reflected Cross Site-Scripting (XSS) in Oveleon Cookiebar GSA_kwCzR0hTQS0yOTZxLXJqODMtZzlycc4AA-Ii

packagist oveleon/contao-cookiebar
Moderate
about 1 year ago

Craft CMS Allows TOTP Token To Stay Valid After Use GSA_kwCzR0hTQS13bXg3LXB3NDktODhqeM4AA-H0

packagist craftcms/cms
Moderate
about 1 year ago

Backdrop CMS does not sufficiently sanitize field labels before they are displayed in certain places GSA_kwCzR0hTQS0zd214LTQ4ZzMteDY2Z84AA-Ds

packagist backdrop/backdrop
Moderate
about 1 year ago

openCart Server-Side Template Injection (SSTI) vulnerability GSA_kwCzR0hTQS14cmg3LTJnZnEtNHJjcc4AA9_L

packagist opencart/opencart
Moderate
about 1 year ago

Silverstripe uses TinyMCE which allows svg files linked in object tags GSA_kwCzR0hTQS01MmN3LXB2cTktOW01ds4AA9-1

packagist silverstripe/framework
Moderate
about 1 year ago

Silverstripe Framework has a Cross-site Scripting vulnerability with encoded payload GSA_kwCzR0hTQS1jaHg3LTl4OGgtcjVtZ84AA9-f

packagist silverstripe/framework
Moderate
about 1 year ago

Silverstripe Reports are still accessible even when `canView()` returns false GSA_kwCzR0hTQS04OXE2LTk4eHgtNGZmd84AA9-e

packagist silverstripe/reports
Moderate
about 1 year ago

The FIDO2/Webauthn Support for PHP library allows enumeration of valid usernames GSA_kwCzR0hTQS04NzV4LWc4cDctNXcyN84AA95Y

packagist web-auth/webauthn-framework, web-auth/webauthn-lib
Moderate
about 1 year ago

Login by Auth0 plugin for WordPress vulnerable to Reflected Cross-Site Scripting GSA_kwCzR0hTQS14NnA3LTQ0cmgtbTNycs4AA90O

packagist auth0/wordpress
Moderate
about 1 year ago

Bootstrap Cross-Site Scripting (XSS) vulnerability GSA_kwCzR0hTQS12Yzh3LWpyOXYtdmo3Zs4AA90M

maven, packagist, nuget, rubygems, npm org.webjars.npm:bootstrap, org.webjars:bootstrap, twbs/bootstrap, bootstrap.sass, bootstrap
Moderate
about 1 year ago

PrivateBin allows shortening of URLs for other domains GSA_kwCzR0hTQS1tcXFqLWZ4OGgtNDM3as4AA9ws

packagist privatebin/privatebin
Moderate
about 1 year ago

ai-controller-frontend payment status in basket isn't reset GSA_kwCzR0hTQS1tOWd2LTZwMjItcWdtas4AA9m7

packagist aimeos/ai-controller-frontend
Moderate
about 1 year ago

ShopXO Server-Side Request Forgery Vulnerability GSA_kwCzR0hTQS1jOTZyLTM4Z3YtZ3JwNM4AA9mX

packagist shopxo/shopxo
Moderate
over 1 year ago

aimeos/ai-admin-jsonadm improper access control vulnerability allows editors to remove required records GSA_kwCzR0hTQS04ZmoyLTU4N3ctNXdocs4AA9d3

packagist aimeos/ai-admin-jsonadm
Moderate
over 1 year ago

Cross site scripting in opencart GSA_kwCzR0hTQS1wcWhxLTc3cHctNzYzY84AA9Sv

packagist opencart/opencart
Moderate
over 1 year ago

Cross site scripting in opencart GSA_kwCzR0hTQS1xYzNxLThycjgtOHA1ds4AA9S4

packagist opencart/opencart
Moderate
over 1 year ago

Cross site scripting in opencart GSA_kwCzR0hTQS1xeDQ0LTg4NWgtN3A1Ns4AA9S0

packagist opencart/opencart
Moderate
over 1 year ago

FriendlyCaptcha Plugin for TYPO3 Captcha Check Bypass GSA_kwCzR0hTQS1qZzYyLWg3cHYtaHhnds4AA9RB

packagist studiomitte/friendlycaptcha
Moderate
over 1 year ago

events2 TYPO3 extension insecure direct object reference (IDOR) vulnerability GSA_kwCzR0hTQS1jY2hwLTNycTYtNjl3as4AA9RD

packagist jweiland/events2
Moderate
over 1 year ago

TinyMCE Cross-Site Scripting (XSS) vulnerability using noneditable_regexp option GSA_kwCzR0hTQS05aGN2LWo5cHYtcW1waM4AA9LE

packagist, nuget, npm tinymce/tinymce, TinyMCE, tinymce
Moderate
over 1 year ago

TinyMCE Cross-Site Scripting (XSS) vulnerability using noscript elements GSA_kwCzR0hTQS13OWp4LTRnNmctcnA3eM4AA9LD

packagist, nuget, npm tinymce/tinymce, TinyMCE, tinymce
Moderate
over 1 year ago

Moodle HTTP authorization header is preserved between "emulated redirects" GSA_kwCzR0hTQS1wMmNqLTg2djQtNzc4Ms4AA9KA

packagist moodle/moodle
Moderate
over 1 year ago

Moodle BigBlueButton web service leaks meeting joining information GSA_kwCzR0hTQS14Mjl4LXF3dngtZnhyMs4AA9KB

packagist moodle/moodle
Moderate
over 1 year ago

Moodle stored XSS via calendar's event title when deleting the event GSA_kwCzR0hTQS1wNWNnLTZyZnItNm14OM4AA9KE

packagist moodle/moodle
Moderate
over 1 year ago

Moodle uses the same key for QR login and auto-login GSA_kwCzR0hTQS1yODJ3LTNwaGctcXZyNM4AA9KF

packagist moodle/moodle
Moderate
over 1 year ago

Moodle CSRF risks due to misuse of confirm_sesskey GSA_kwCzR0hTQS0zNTZnLTd4MzYtN20zNM4AA9J-

packagist moodle/moodle
Moderate
over 1 year ago

Firefly III has a MFA bypass in oauth flow GSA_kwCzR0hTQS00Z200LWM0bWgtNHA3d84AA9I2

packagist grumpydictator/firefly-iii
Moderate
over 1 year ago

Magento Open Source Server-Side Request Forgery (SSRF) vulnerability GSA_kwCzR0hTQS1qbXFwLXIzZ2ctNmpoM84AA9CS

packagist magento/community-edition
Moderate
over 1 year ago

Magento Open Source Cross-Site Scripting (XSS) vulnerability GSA_kwCzR0hTQS01NjMyLXdxN20tZ2ZxOc4AA9CL

packagist magento/community-edition
Moderate
over 1 year ago

Magento Open Source Incorrect Authorization vulnerability GSA_kwCzR0hTQS1wNmg5LWd4NWctd2c2NM4AA9Bf

packagist magento/community-edition
Moderate
over 1 year ago

Magento Open Source Improper Access Control vulnerability GSA_kwCzR0hTQS1yN2NtLWc0Njktd200Z84AA9Bo

packagist magento/community-edition
Moderate
over 1 year ago

WooCommerce has a Cross-Site Scripting (XSS) Vulnerability in checkout & registration forms GSA_kwCzR0hTQS1jdjIzLXE2Z2gteGZyZs4AA8_F

packagist woocommerce/woocommerce
Moderate
over 1 year ago

ua-parser/uap-php ReDoS vulnerability GSA_kwCzR0hTQS03OGhtLTVoanctNThtaM4AA80N

packagist ua-parser/uap-php
Moderate
over 1 year ago

Zend-developer-tools information disclosure vulnerability GSA_kwCzR0hTQS1xZzdtLW13eG0tajNoN84AA80M

packagist zendframework/zend-developer-tools
Moderate
over 1 year ago

Zend_Filter_StripTags vulnerable to Cross-site Scripting when comments allowed GSA_kwCzR0hTQS00dmY2LW1xN3ctM2hwNs4AA80L

packagist zendframework/zendframework1
Moderate
over 1 year ago

Zend-Diactoros URL Rewrite vulnerability GSA_kwCzR0hTQS1mcTRwLTg2aGgtNDJ2Oc4AA80K

packagist zendframework/zend-diactoros
Moderate
over 1 year ago

Zendframework potential Cross-site Scripting vector in `Zend_Service_ReCaptcha_MailHide` GSA_kwCzR0hTQS00djU3LXB3dmYteDM1as4AA80H

packagist zendframework/zendframework1
Moderate
over 1 year ago

Zend-Form vulnerable to Cross-site Scripting GSA_kwCzR0hTQS1ndnBwLTZqcmotNXBxY84AA80G

packagist zendframework/zend-form
Moderate
over 1 year ago

Zendframework Potential XSS or HTML Injection vector in Zend_Json GSA_kwCzR0hTQS12dm0zLXJ2NDgtajNnNc4AA80F

packagist zendframework/zendframework1
Moderate
over 1 year ago

ZendFramework1 Potential Security Issues in Bundled Dojo Library GSA_kwCzR0hTQS13NW1qLWo0NXEtbTYzOM4AA80D

packagist zendframework/zendframework1
Moderate
over 1 year ago

ZendFramework Cross-site Scripting vector in `Zend_Filter_StripTags` GSA_kwCzR0hTQS1nd3BtLXBtNngtaDdyas4AA8z_

packagist zendframework/zendframework1
Moderate
over 1 year ago

Zend-Session session validation vulnerability GSA_kwCzR0hTQS05NmM2LW05OHgtaHhqeM4AA8zy

packagist zendframework/zend-session
Moderate
over 1 year ago

ZendFramework Potential Cross-site Scripting in Development Environment Error View Script GSA_kwCzR0hTQS1nNTJwLTg2ajUteHI4cc4AA8zx

packagist zendframework/zendframework1
Moderate
over 1 year ago

ZendFramework potential Cross-site Scripting vectors due to inconsistent encodings GSA_kwCzR0hTQS1oZzM1LXZxcDMtZnYzOc4AA8zt

packagist zendframework/zendframework1
Moderate
over 1 year ago

ZendFramework potential Cross-site Scripting vector in `Zend_Dojo_View_Helper_Editor` GSA_kwCzR0hTQS1qNTQzLXZnMzMtZzZ2as4AA8zr

packagist zendframework/zendframework1
Moderate
over 1 year ago

ZendFramework has potential Cross-site Scripting vector in multiple view helpers GSA_kwCzR0hTQS1tN2hyLWo4NjctM2YzNM4AA8zo

packagist zendframework/zend-view
Moderate
over 1 year ago

Zendframework URL Rewrite vulnerability GSA_kwCzR0hTQS1maDdyLTU4cTQtNjM4N84AA8zn

packagist zendframework/zendframework
Moderate
over 1 year ago

ZendFramework vulnerable to Cross-site Scripting GSA_kwCzR0hTQS01Z21mLTNjNDMtcTczds4AA8zm

packagist zendframework/zendframework

Filter by Severity

Moderate 2,739 High 1,276 Critical 511 Low 286

Filter by Package

moodle/moodle 307 magento/community-edition 167 typo3/cms 120 pimcore/pimcore 87 microweber/microweber 72 typo3/cms-core 69 silverstripe/framework 67 phpmyadmin/phpmyadmin 56 dolibarr/dolibarr 55 drupal/core 52 thorsten/phpmyfaq 47 concrete5/concrete5 46 librenms/librenms 43 drupal/drupal 37 showdoc/showdoc 34 magento/project-community-edition 33 mantisbt/mantisbt 33 craftcms/cms 31 symfony/symfony 30 intelliants/subrion 27 mautic/core 27 snipe/snipe-it 27 baserproject/basercms 26 shopware/platform 23 nilsteampassnet/teampass 21 froxlor/froxlor 20 grumpydictator/firefly-iii 20 mediawiki/core 20 shopware/shopware 19 remdex/livehelperchat 18 contao/core-bundle 17 shopware/core 17 getkirby/cms 17 zendframework/zendframework1 16 prestashop/prestashop 16 yetiforce/yetiforce-crm 15 tribalsystems/zenario 13 forkcms/forkcms 13 typo3/cms-backend 13 simplesamlphp/simplesamlphp 12 wallabag/wallabag 12 feehi/feehicms 11 ec-cube/ec-cube 11 getgrav/grav 11 genix/cms 11 tinymce/tinymce 11 tinymce 11 TinyMCE 11 lavalite/cms 11 zendframework/zendframework 10 opencart/opencart 10 francoisjacquet/rosariosis 10 bolt/bolt 10 phpoffice/phpspreadsheet 10 laravel/framework 10 silverstripe/cms 10 pimcore/admin-ui-classic-bundle 9 cakephp/cakephp 9 contao/contao 9 centreon/centreon 8 alextselegidis/easyappointments 8 phpmyfaq/phpmyfaq 8 phpbb/phpbb 8 sulu/sulu 8 sylius/sylius 8 impresscms/impresscms 8 leantime/leantime 7 feehi/cms 7 kevinpapst/kimai2 7 silverstripe/admin 7 admidio/admidio 7 croogo/croogo 7 in2code/femanager 7 modx/revolution 7 pimcore/customer-management-framework-bundle 7 cockpit-hq/cockpit 7 backdrop/backdrop 6 dompdf/dompdf 6 spatie/browsershot 6 elefant/cms 6 starcitizentools/citizen-skin 6 pocketmine/pocketmine-mp 6 magento/core 6 wpglobus/wpglobus 6 facturascripts/facturascripts 6 pagekit/pagekit 6 redaxo/source 5 tecnickcom/tcpdf 5 nukeviet/nukeviet 5 oro/platform 5 limesurvey/limesurvey 5 phpservermon/phpservermon 5 symfony/security-http 5 symfony/security 5 ssddanbrown/bookstack 5 ezsystems/ezplatform-admin-ui 5 directmailteam/direct-mail 5 symfony/http-foundation 5 yiisoft/yii2 5 pterodactyl/panel 5 in2code/powermail 5 typo3/html-sanitizer 4 shopxo/shopxo 4 drupal/ai 4 oro/commerce 4 october/october 4 passbolt/passbolt_api 4 unopim/unopim 4 elgg/elgg 4 silverstripe/graphql 4 evolutioncms/evolution 4 neos/flow 4 gilacms/gila 4 codeigniter4/shield 4 gleez/cms 4 dcat/laravel-admin 4 typo3/flow 4 woocommerce/woocommerce 4 thinkcmf/thinkcmf 4 openmage/magento-lts 4 yourls/yourls 4 dweeves/magmi 4 moonshine/moonshine 4 getformwork/formwork 4 october/cms 4 mautic/core-lib 4 bagisto/bagisto 4 ezyang/htmlpurifier 4 phpxmlrpc/phpxmlrpc 4 concrete5/core 4 froala/wysiwyg-editor 4 smarty/smarty 4 joomla/joomla-cms 4 contao/core 4 flarum/core 4 ezsystems/ezpublish-legacy 4 org.webjars:bootstrap 3 enshrined/svg-sanitize 3 zendframework/zendservice-amazon 3 neos/neos 3 bref/bref 3 codeigniter4/framework 3 verbb/comments 3 phpmailer/phpmailer 3 twig/twig 3 zendframework/zendservice-api 3 typo3/cms-install 3 silverstripe/assets 3 anchorcms/anchor-cms 3 drupal/core-recommended 3 idno/known 3 yui 3 zendframework/zendservice-nirvanix 3 shopware/storefront 3 api-platform/core 3 bootstrap 3 ezsystems/ezplatform-kernel 3 illuminate/auth 3 wp-premium/gravityforms 3 icecoder/icecoder 3 bootstrap 3 league/commonmark 3 bottelet/flarepoint 3 twbs/bootstrap 3 ibexa/admin-ui 3 flarum/framework 3 zendframework/zendrest 3 reportico-web/reportico 3 verbb/formie 3 yeswiki/yeswiki 3 zendframework/zendservice-technorati 3 yiisoft/yii2-dev 3 bootstrap 3 ezsystems/ezplatform-admin-ui-assets 3 enhavo/enhavo-app 3 friendsofsymfony/user-bundle 3 wwbn/avideo 3 october/system 3 pixelfed/pixelfed 3 zendframework/zendopenid 3 ezsystems/ezpublish-kernel 3 symfony/http-kernel 3 zendframework/zendservice-audioscrobbler 3 zendframework/zendservice-windowsazure 3 zendframework/zendservice-slideshare 3 artesaos/seotools 3 joomla/joomla-platform 2 yoast-seo-for-typo3/yoast_seo 2 october/rain 2 getkirby/panel 2 oro/customer-portal 2 jsdecena/laracom 2 james-heinrich/phpthumb 2 derhansen/sf_event_mgt 2 bbpress/bbpress 2 s-cart/s-cart 2 zendframework/zend-diactoros 2 phpsysinfo/phpsysinfo 2 uvdesk/community-skeleton 2 opensource-workshop/connect-cms 2

Filter by Repository

https://github.com/moodle/moodle 186 https://github.com/pimcore/pimcore 85 https://github.com/TYPO3/typo3 64 https://github.com/microweber/microweber 63 https://github.com/silverstripe/silverstripe-framework 50 https://github.com/thorsten/phpmyfaq 45 https://github.com/librenms/librenms 40 https://github.com/mantisbt/mantisbt 32 https://github.com/star7th/showdoc 32 https://github.com/concretecms/concretecms 28 https://github.com/mautic/mautic 27 https://github.com/symfony/symfony 27 https://github.com/phpmyadmin/phpmyadmin 26 https://github.com/craftcms/cms 26 https://github.com/Dolibarr/dolibarr 22 https://github.com/shopware/shopware 21 https://github.com/firefly-iii/firefly-iii 20 https://github.com/snipe/snipe-it 20 https://github.com/magento/magento2 20 https://github.com/contao/contao 18 https://github.com/livehelperchat/livehelperchat 18 https://github.com/shopware/platform 17 https://github.com/getkirby/kirby 15 https://github.com/froxlor/froxlor 14 https://github.com/baserproject/basercms 14 https://github.com/yetiforcecompany/yetiforcecrm 14 https://github.com/TYPO3/TYPO3.CMS 14 https://github.com/nilsteampassnet/TeamPass 13 https://github.com/PrestaShop/PrestaShop 13 https://github.com/octobercms/october 13 https://github.com/TYPO3-CMS/core 12 https://github.com/laravel/framework 11 https://github.com/tinymce/tinymce 11 https://github.com/forkcms/forkcms 11 https://github.com/intelliants/subrion 11 https://github.com/simplesamlphp/simplesamlphp 10 https://github.com/wallabag/wallabag 10 https://github.com/PHPOffice/PhpSpreadsheet 10 https://github.com/liufee/cms 10 https://github.com/pimcore/admin-ui-classic-bundle 9 https://github.com/thorsten/phpMyFAQ 9 https://github.com/zendframework/zendframework 8 https://github.com/dolibarr/dolibarr 8 https://github.com/LavaLite/cms 8 https://github.com/nilsteampassnet/teampass 8 https://github.com/sulu/sulu 8 https://github.com/getgrav/grav 8 https://github.com/modxcms/revolution 7 https://github.com/kevinpapst/kimai2 7 https://github.com/Sylius/Sylius 7 https://github.com/Leantime/leantime 7 https://github.com/croogo/croogo 7 https://github.com/pimcore/customer-data-framework 6 https://github.com/d4wner/Vulnerabilities-Report 6 https://github.com/neorazorx/facturascripts 6 https://github.com/spatie/browsershot 6 https://github.com/StarCitizenTools/mediawiki-skins-Citizen 6 https://github.com/drupal/core 6 https://github.com/yiisoft/yii2 6 https://github.com/pmmp/PocketMine-MP 6 https://github.com/oroinc/orocommerce 6 https://github.com/dompdf/dompdf 6 https://github.com/tecnickcom/TCPDF 6 https://github.com/backdrop/backdrop 5 https://github.com/ezsystems/ezplatform-admin-ui 5 https://github.com/in2code-de/femanager 5 https://github.com/admidio/admidio 5 https://github.com/opencart/opencart 5 https://github.com/LimeSurvey/LimeSurvey 5 https://github.com/pterodactyl/panel 5 https://github.com/semplon/GeniXCMS 5 https://github.com/alextselegidis/easyappointments 5 https://github.com/cakephp/cakephp 5 https://github.com/bolt/bolt 5 https://github.com/centreon/centreon-archived 5 https://github.com/flarum/framework 4 https://github.com/GiacoLenzo2109/MoonShine_Software_PoCs 4 https://github.com/TYPO3/html-sanitizer 4 https://github.com/PHPMailer/PHPMailer 4 https://github.com/gleez/cms 4 https://github.com/phpservermon/phpservermon 4 https://github.com/cockpit-hq/cockpit 4 https://sourceforge.net/projects/phpmyadmin.sourceforge.net 4 https://github.com/passbolt/passbolt_api 4 https://github.com/oroinc/platform 4 https://github.com/gggeek/phpxmlrpc 4 https://github.com/GilaCMS/gila 4 https://github.com/codeigniter4/shield 4 https://github.com/bookstackapp/bookstack 4 https://github.com/hieuminhnv/Zenario-CMS-last-version 4 https://gitlab.com/francoisjacquet/rosariosis 4 https://github.com/oroinc/crm 4 https://github.com/francoisjacquet/rosariosis 4 https://github.com/thinkcmf/thinkcmf 4 https://github.com/zendframework/zf1 4 https://github.com/getformwork/formwork 4 https://github.com/OpenMage/magento-lts 4 https://github.com/unopim/unopim 4 https://github.com/in2code-de/powermail 4 https://github.com/pagekit/pagekit 4 https://github.com/TribalSystems/Zenario 4 https://github.com/silverstripe/silverstripe-admin 4 https://github.com/bagisto/bagisto 3 https://github.com/liufee/feehicms 3 https://github.com/progprnv/CVE-Reports 3 https://github.com/brefphp/bref 3 https://github.com/thephpleague/commonmark 3 https://github.com/ezsystems/ezpublish-kernel 3 https://github.com/darylldoyle/svg-sanitizer 3 https://github.com/verbb/formie 3 https://github.com/centreon/centreon 3 https://github.com/ezsystems/ezplatform-http-cache 3 https://github.com/ezsystems/ezplatform 3 https://github.com/guzzle/psr7 3 https://github.com/redaxo/redaxo 3 https://github.com/verbb/comments 3 https://github.com/yourls/yourls 3 https://github.com/WWBN/AVideo 3 https://github.com/pixelfed/pixelfed 3 https://github.com/Bottelet/DaybydayCRM 3 https://github.com/dd3x3r/enhavo 3 https://github.com/codeigniter4/CodeIgniter4 3 https://github.com/api-platform/core 3 https://github.com/idno/known 3 https://github.com/grokability/snipe-it 3 https://github.com/artesaos/seotools 3 https://github.com/TYPO3-CMS/backend 3 https://github.com/reportico-web/reportico 3 https://github.com/haxtheweb/issues 2 https://github.com/Admidio/admidio 2 https://github.com/PHPSocialNetwork/phpfastcache 2 https://github.com/JamesHeinrich/phpThumb 2 https://github.com/Sylius/SyliusResourceBundle 2 https://github.com/silverstripe/silverstripe-graphql 2 https://github.com/ptrofimov/beanstalk_console 2 https://github.com/shuchkin/simplexlsx 2 https://github.com/derhansen/sf_event_mgt 2 https://github.com/dub-flow/vulnerability-research 2 https://github.com/phpbb/phpbb 2 https://github.com/twbs/bootstrap 2 https://github.com/ezsystems/ezpublish-legacy 2 https://github.com/PrestaShop/blockreassurance 2 https://github.com/belong2yourself/vulnerabilities 2 https://github.com/mustgundogdu/Research 2 https://github.com/FriendsOfSymfony/FOSUserBundle 2 https://github.com/TYPO3-Solr/ext-solr 2 https://github.com/contao/core 2 https://github.com/tpwd/ke_search 2 https://github.com/clickstorm/cs_seo 2 https://github.com/brotkrueml/codehighlight 2 https://github.com/uvdesk/community-skeleton 2 https://github.com/CCCCCrash/POCs 2 https://github.com/taynes-llllzt/taynes 2 https://github.com/YesWiki/yeswiki 2 https://github.com/froxlor/Froxlor 2 https://github.com/PrestaShop/productcomments 2 https://github.com/crater-invoice/crater 2 https://github.com/aimeos/ai-controller-frontend 2 https://github.com/wp-graphql/wp-graphql 2 https://github.com/statamic/cms 2 https://github.com/wikimedia/mediawiki 2 https://github.com/ImpressCMS/impresscms 2 https://github.com/github/advisory-database 2 https://github.com/Froxlor/Froxlor 2 https://github.com/jqhph/dcat-admin 2 https://github.com/nukeviet/nukeviet 2 https://github.com/Elgg/Elgg 2 https://github.com/livewire/livewire 2 https://github.com/ibexa/admin-ui 2 https://github.com/PrivateBin/PrivateBin 2 https://github.com/twigphp/Twig 2 https://github.com/woocommerce/woocommerce 2 https://github.com/barryvdh/laravel-translation-manager 2 https://github.com/vrana/adminer 2 https://github.com/laravel/socialite 2 https://github.com/Sylius/PayPalPlugin 2 https://github.com/datahihi1/tiny-env 2 https://github.com/UniSharp/laravel-filemanager 2 https://github.com/dompdf/php-svg-lib 2 https://github.com/opensource-workshop/connect-cms 2 https://github.com/filegator/filegator 2 https://github.com/smarty-php/smarty 2 https://github.com/elgg/elgg 2 https://github.com/FriendsOfSymfony1/symfony1 2 https://github.com/top-think/framework 1 https://github.com/pimcore/demo 1 https://github.com/zendframework/zend-form 1 https://github.com/vova07/yii2-fileapi-widget 1 https://github.com/web.archive.org/web 1 https://github.com/verbb/knock-knock 1 https://github.com/anh91/uasoft-indonesia--badaso 1 https://github.com/lara-zeus/dynamic-dashboard 1 https://github.com/sromanhu/ZenarioCMS--Reflected-XSS---Organizer-Alias 1 https://github.com/symfony/ux 1 https://github.com/zendframework/zend-diactoros 1 https://github.com/paypal/merchant-sdk-php 1 https://github.com/Rudloff/alltube 1 https://github.com/gaorenyusi/gaorenyusi 1 https://github.com/andreas83/SocialNetwork 1