packagist
468,797 packages · packagist.org
Security Advisories for https://github.com/TYPO3/typo3 in packagist Clear Filters
High
4 months ago
The TYPO3 CMS Backend has Broken Authentication in Backend MFA
packagist
typo3/cms-backend
Moderate
4 months ago
TYPO3 Allows Unrestricted File Upload in File Abstraction Layer
packagist
typo3/cms-core
Low
4 months ago
TYPO3 Unverified Password Change for Backend Users
packagist
typo3/cms-setup, typo3/cms-core
Low
4 months ago
TYPO3 Allows Information Disclosure via DBAL Restriction Handling
packagist
typo3/cms-core
Moderate
9 months ago
TYPO3 DB Check Module vulnerable to Cross-Site Request Forgery
packagist
typo3/cms-lowlevel
High
9 months ago
TYPO3 Scheduler Module vulnerable to Cross-Site Request Forgery
packagist
typo3/cms-scheduler
Moderate
9 months ago
TYPO3 Indexed Search Module vulnerable to Cross-Site Request Forgery
packagist
typo3/cms-indexed-search
Moderate
9 months ago
TYPO3 Form Framework Module vulnerable to Cross-Site Request Forgery
packagist
typo3/cms-form
High
9 months ago
TYPO3 Extension Manager Module vulnerable to Cross-Site Request Forgery
packagist
typo3/cms-extensionmanager
Moderate
9 months ago
TYPO3 Cross-Site Request Forgery in Dashboard Module
packagist
typo3/cms-dashboard
Moderate
9 months ago
TYPO3 Cross-Site Request Forgery in Backend User Module
packagist
typo3/cms-beuser
Moderate
9 months ago
TYPO3 Potential Open Redirect via Parsing Differences
packagist
typo3/cms-core
Low
9 months ago
TYPO3 Information Disclosure via Exception Handling/Logger
packagist
typo3/cms-install
Moderate
over 1 year ago
TYPO3 Cross-Site Scripting in Online Media Asset Rendering
packagist
typo3/cms
Moderate
over 1 year ago
TYPO3 Cross-Site Scripting in Form Framework validation handling
packagist
typo3/cms
High
over 1 year ago
TYPO3 CMS Possible Insecure Deserialization in Extbase Request Handling
packagist
typo3/cms
Moderate
over 1 year ago
TYPO3 Frontend vulnerable to Unauthenticated Path Disclosure
packagist
typo3/cms
Moderate
over 1 year ago
TYPO3 Information Disclosure Vulnerability Exploitable by Editors
packagist
typo3/cms
Moderate
over 1 year ago
TYPO3 Cross-Site Scripting Vulnerability Exploitable by Editors
packagist
typo3/cms
High
over 1 year ago
TYPO3 may allow editors to change, create, or delete metadata of files not within their file mounts
packagist
typo3/cms
Moderate
over 1 year ago
ExtJS JavaScript framework used in TYPO3 vulnerable to Cross-site Scripting
packagist
typo3/cms
Moderate
over 1 year ago
TYPO3 vulnerable to an Uncontrolled Resource Consumption in the ShowImageController
packagist
typo3/cms-core
Moderate
over 1 year ago
TYPO3 vulnerable to Cross-Site Scripting in the ShowImageController
packagist
typo3/cms-core
Moderate
over 1 year ago
TYPO3 vulnerable to Cross-Site Scripting in the Form Manager Module
packagist
typo3/cms-core
Low
over 1 year ago
TYPO3 vulnerable to an HTML Injection in the History Module
packagist
typo3/cms-core
Moderate
over 1 year ago
Path Traversal in TYPO3 File Abstraction Layer Storages
packagist
typo3/cms-core
High
over 1 year ago
TYPO3 vulnerable to Improper Access Control Persisting File Abstraction Layer Entities via Data Handler
packagist
typo3/cms-core
Moderate
over 1 year ago
TYPO3 vulnerable to Improper Access Control of Resources Referenced by t3:// URI Scheme
packagist
typo3/cms-core
Moderate
over 1 year ago
TYPO3 Install Tool vulnerable to Information Disclosure of Encryption Key
packagist
typo3/cms-core
Moderate
over 1 year ago
TYPO3 Backend Forms vulnerable to Information Disclosure of Hashed Passwords
packagist
typo3/cms-core
Moderate
almost 2 years ago
TYPO3 vulnerable to Weak Authentication in Session Handling
packagist
typo3/cms-core
Moderate
about 2 years ago
Cross-Site Scripting in CKEditor4 WordCount Plugin
packagist
typo3/cms-rte-ckeditor
Low
about 2 years ago
Information Disclosure due to Out-of-scope Site Resolution
packagist
typo3/cms-core
High
over 2 years ago
TYPO3 is vulnerable to Cross-Site Scripting via frontend rendering
packagist
typo3/cms, typo3/cms-core
Moderate
almost 3 years ago
TYPO3 CMS vulnerable to Sensitive Information Disclosure via YAML Placeholder Expressions in Site Configuration
packagist
typo3/cms, typo3/cms-core
High
almost 3 years ago
TYPO3 CMS vulnerable to Arbitrary Code Execution via Form Framework
packagist
typo3/cms, typo3/cms-core
Moderate
almost 3 years ago
TYPO3 CMS vulnerable to Insufficient Session Expiration after Password Reset
packagist
typo3/cms, typo3/cms-core
Moderate
almost 3 years ago
TYPO3 CMS vulnerable to Weak Authentication in Frontend Login
packagist
typo3/cms, typo3/cms-core
Moderate
almost 3 years ago
TYPO3 CMS vulnerable to Denial of Service in Page Error Handling
packagist
typo3/cms, typo3/cms-core
Moderate
about 3 years ago
TYPO3 CMS vulnerable to Denial of Service in Page Error Handling
packagist
typo3/cms, typo3/cms-core
Moderate
about 3 years ago
TYPO3 CMS vulnerable to User Enumeration via Response Timing
packagist
typo3/cms, typo3/cms-core
Moderate
about 3 years ago
TYPO3 CMS missing check for expiration time of password reset token for backend users
packagist
typo3/cms, typo3/cms-core
Moderate
about 3 years ago
TYPO3 CMS Stored Cross-Site Scripting via FileDumpController
packagist
typo3/cms, typo3/cms-core
Moderate
about 3 years ago
TYPO3 CMS vulnerable to Cross-Site Scripting in <f:asset.css> view helper
packagist
typo3/cms, typo3/cms-core
Moderate
about 3 years ago
TYPO3 HTML Sanitizer Bypasses Cross-Site Scripting Protection
packagist
typo3/cms-core
Moderate
over 3 years ago
Insufficient Session Expiration in TYPO3's Admin Tool
packagist
typo3/cms, typo3/cms-core
Moderate
over 3 years ago
Cross-Site Scripting in TYPO3's Frontend Login Mailer
packagist
typo3/cms, typo3/cms-core
Moderate
over 3 years ago
Cross-Site Scripting in TYPO3's Form Framework
packagist
typo3/cms, typo3/cms-core
Moderate
over 3 years ago
Insertion of Sensitive Information into Log File in typo3/cms-core
packagist
typo3/cms, typo3/cms-core
Moderate
over 3 years ago
Information Disclosure via Export Module
packagist
typo3/cms, typo3/cms-core
Moderate
over 3 years ago
TYPO3 cross-site scripting (XSS) vulnerability in the RemoveXSS function and the backend
packagist
typo3/cms-backend
High
over 3 years ago
TYPO3 Remote File Disclosure vulnerability in the jumpUrl mechanism
packagist
typo3/cms
Moderate
over 3 years ago
TYPO3 CMS indexed search Cross-site Scripting vulnerability
packagist
typo3/cms
Moderate
over 3 years ago
TYPO3 allows remote attackers to embed Flash videos from external domain
packagist
typo3/cms
Low
over 3 years ago
TYPO3 Cross-Site Scripting vulnerability in the Install Tool
packagist
typo3/cms-install
Low
over 3 years ago
TYPO3 Cross-site scripting (XSS) vulnerability in the FORM content object
packagist
typo3/cms-frontend
Moderate
over 3 years ago
TYPO3 Sensitive Information Disclosure via escapeStrForLike method
packagist
typo3/cms-core
Moderate
over 3 years ago
TYPO3 API function vulnerable to Cross-site Scripting
packagist
typo3/cms-core
Moderate
over 3 years ago
TYPO3 vulnerable to Cross-Site Scripting in the textarea view helper
packagist
typo3/cms-fluid
Moderate
over 3 years ago
TYPO3 is vulnerable to Information Disclosure in the HTML mailing API
packagist
typo3/cms-core
Moderate
over 3 years ago
TYPO3 is vulnerable to Spam Abuse in the native form content element
packagist
typo3/cms-frontend
Moderate
over 3 years ago
TYPO3 is vulnerable to Insecure randomness in uniqid function
packagist
typo3/cms-install
Moderate
over 3 years ago
TYPO3 is vulnerable to insecure randomness during hash generation in forgot password function
packagist
typo3/cms-frontend
Filter by Severity
Filter by Package
moodle/moodle
417
magento/community-edition
297
typo3/cms
184
pimcore/pimcore
120
dolibarr/dolibarr
117
phpmyadmin/phpmyadmin
107
typo3/cms-core
107
microweber/microweber
103
drupal/core
98
silverstripe/framework
91
librenms/librenms
83
drupal/drupal
75
thorsten/phpmyfaq
73
concrete5/concrete5
67
magento/project-community-edition
60
shopware/platform
58
symfony/symfony
56
craftcms/cms
53
mautic/core
48
baserproject/basercms
47
shopware/core
46
nilsteampassnet/teampass
42
showdoc/showdoc
41
mantisbt/mantisbt
41
froxlor/froxlor
40
intelliants/subrion
40
snipe/snipe-it
38
zendframework/zendframework1
32
shopware/shopware
31
getgrav/grav
30
mediawiki/core
28
contao/core-bundle
27
prestashop/prestashop
27
centreon/centreon
27
pocketmine/pocketmine-mp
25
getkirby/cms
24
grumpydictator/firefly-iii
23
magento/core
23
remdex/livehelperchat
23
laravel/framework
23
simplesamlphp/simplesamlphp
23
contao/contao
22
phpoffice/phpspreadsheet
22
zendframework/zendframework
22
tribalsystems/zenario
22
cockpit-hq/cockpit
20
funadmin/funadmin
20
typo3/cms-backend
19
topthink/framework
19
forkcms/forkcms
18
genix/cms
18
cakephp/cakephp
17
yetiforce/yetiforce-crm
17
openmage/magento-lts
17
francoisjacquet/rosariosis
17
ezsystems/ezpublish-kernel
17
opencart/opencart
17
phpbb/phpbb
16
october/system
16
symfony/security
15
bolt/bolt
15
pimcore/admin-ui-classic-bundle
15
smarty/smarty
15
ec-cube/ec-cube
15
dompdf/dompdf
14
modx/revolution
14
phpmailer/phpmailer
14
codeigniter4/framework
14
yeswiki/yeswiki
14
feehi/cms
14
alextselegidis/easyappointments
13
elefant/cms
13
sylius/sylius
13
silverstripe/cms
13
impresscms/impresscms
13
admidio/admidio
13
lavalite/cms
13
phpmyfaq/phpmyfaq
13
studio-42/elfinder
13
symfony/security-http
13
wwbn/avideo
12
wallabag/wallabag
12
feehi/feehicms
11
tinymce/tinymce
11
nukeviet/nukeviet
11
leantime/leantime
11
TinyMCE
11
ezsystems/ezplatform-kernel
11
yiisoft/yii2
11
tinymce
11
pagekit/pagekit
11
sulu/sulu
11
spatie/browsershot
10
october/october
10
symfony/http-foundation
10
ezsystems/ezpublish-legacy
10
ssddanbrown/bookstack
10
in2code/powermail
9
statamic/cms
9
pterodactyl/panel
9
billz/raspap-webgui
9
in2code/femanager
9
twig/twig
9
pimcore/customer-management-framework-bundle
9
contao/core
9
concrete5/core
9
croogo/croogo
9
ezsystems/ezplatform-admin-ui
9
kevinpapst/kimai2
9
silverstripe/graphql
8
starcitizentools/citizen-skin
8
composer/composer
8
codiad/codiad
8
gilacms/gila
8
joomla/joomla-cms
8
facturascripts/facturascripts
8
october/cms
8
flarum/core
8
directmailteam/direct-mail
8
silverstripe/admin
8
simplesamlphp/saml2
7
wpglobus/wpglobus
7
backdrop/backdrop
7
vrana/adminer
7
passbolt/passbolt_api
7
october/backend
7
symfony/http-kernel
7
shopxo/shopxo
7
redaxo/source
7
unopim/unopim
7
tecnickcom/tcpdf
7
icecoder/icecoder
6
nystudio107/craft-seomatic
6
oro/platform
6
gleez/cms
6
phpseclib/phpseclib
6
yiisoft/yii2-dev
6
drupal/core-recommended
6
dweeves/magmi
6
pear/archive_tar
6
adodb/adodb-php
6
typo3/cms-install
6
bagisto/bagisto
6
yourls/yourls
6
zoujingli/thinkadmin
6
api-platform/core
6
phpxmlrpc/phpxmlrpc
5
typo3/flow
5
anchorcms/anchor-cms
5
bottelet/flarepoint
5
getformwork/formwork
5
ibexa/core
5
guzzlehttp/guzzle
5
ibexa/admin-ui
5
gugoan/economizzer
5
thinkcmf/thinkcmf
5
neos/flow
5
silverstripe/assets
5
symfony/security-bundle
5
tcg/voyager
5
elgg/elgg
5
symfony/security-core
5
phpservermon/phpservermon
5
kimai/kimai
5
juzaweb/cms
5
limesurvey/limesurvey
5
neos/neos
5
mautic/core-lib
5
woocommerce/woocommerce
5
cachethq/cachet
5
yiisoft/yii
4
wp-premium/gravityforms
4
automad/automad
4
bytefury/crater
4
livewire/livewire
4
sylius/resource-bundle
4
wintercms/winter
4
oro/commerce
4
flarum/framework
4
dcat/laravel-admin
4
idno/known
4
ezsystems/ezplatform
4
magento/product-community-edition
4
appwrite/server-ce
4
ezyang/htmlpurifier
4
zendframework/zendopenid
4
enshrined/svg-sanitize
4
typo3/html-sanitizer
4
notrinos/notrinos-erp
4
codeigniter/framework
4
froala/wysiwyg-editor
4
illuminate/database
4
drupal/ai
4
league/commonmark
4
processwire/processwire
4
friendsofsymfony/user-bundle
4
evolutioncms/evolution
4
moonshine/moonshine
4
bref/bref
4
shopware/storefront
4
Filter by Repository
https://github.com/moodle/moodle
243
https://github.com/pimcore/pimcore
116
https://github.com/TYPO3/typo3
94
https://github.com/microweber/microweber
90
https://github.com/librenms/librenms
74
https://github.com/thorsten/phpmyfaq
69
https://github.com/silverstripe/silverstripe-framework
68
https://github.com/symfony/symfony
64
https://github.com/Dolibarr/dolibarr
60
https://github.com/mautic/mautic
46
https://github.com/phpmyadmin/phpmyadmin
45
https://github.com/concretecms/concretecms
44
https://github.com/shopware/platform
43
https://github.com/craftcms/cms
41
https://github.com/star7th/showdoc
39
https://github.com/mantisbt/mantisbt
38
https://github.com/magento/magento2
38
https://github.com/octobercms/october
36
https://github.com/shopware/shopware
35
https://github.com/snipe/snipe-it
30
https://github.com/contao/contao
30
https://github.com/baserproject/basercms
26
https://github.com/froxlor/froxlor
26
https://github.com/pmmp/PocketMine-MP
25
https://github.com/getgrav/grav
24
https://github.com/firefly-iii/firefly-iii
23
https://github.com/PrestaShop/PrestaShop
23
https://github.com/livehelperchat/livehelperchat
23
https://github.com/TYPO3/TYPO3.CMS
23
https://github.com/nilsteampassnet/TeamPass
23
https://github.com/PHPOffice/PhpSpreadsheet
22
https://github.com/getkirby/kirby
22
https://github.com/laravel/framework
21
https://github.com/simplesamlphp/simplesamlphp
20
https://github.com/funadmin/funadmin
20
https://github.com/intelliants/subrion
19
https://github.com/TYPO3-CMS/core
19
https://github.com/nilsteampassnet/teampass
19
https://github.com/OpenMage/magento-lts
17
https://github.com/liufee/cms
17
https://github.com/forkcms/forkcms
16
https://github.com/yetiforcecompany/yetiforcecrm
16
https://github.com/drupal/core
15
https://github.com/PHPMailer/PHPMailer
15
https://github.com/centreon/centreon
15
https://github.com/dompdf/dompdf
15
https://github.com/zendframework/zendframework
15
https://github.com/pimcore/admin-ui-classic-bundle
14
https://github.com/thorsten/phpMyFAQ
14
https://github.com/cockpit-hq/cockpit
14
https://github.com/centreon/centreon-archived
12
https://github.com/modxcms/revolution
12
https://github.com/YesWiki/yeswiki
12
https://github.com/yiisoft/yii2
12
https://sourceforge.net/projects/phpmyadmin.sourceforge.net
12
https://github.com/smarty-php/smarty
12
https://github.com/codeigniter4/CodeIgniter4
12
https://github.com/top-think/framework
11
https://github.com/WWBN/AVideo
11
https://github.com/dolibarr/dolibarr
11
https://github.com/Studio-42/elFinder
11
https://github.com/Sylius/Sylius
11
https://github.com/sulu/sulu
11
https://github.com/cakephp/cakephp
11
https://github.com/tinymce/tinymce
11
https://github.com/Leantime/leantime
11
https://github.com/ezsystems/ezpublish-kernel
11
https://github.com/semplon/GeniXCMS
10
https://github.com/bolt/bolt
10
https://github.com/wallabag/wallabag
10
https://github.com/opencart/opencart
10
https://github.com/kevinpapst/kimai2
9
https://github.com/LavaLite/cms
9
https://github.com/neorazorx/facturascripts
9
https://github.com/alextselegidis/easyappointments
9
https://github.com/spatie/browsershot
9
https://github.com/pterodactyl/panel
9
https://github.com/francoisjacquet/rosariosis
8
https://github.com/flarum/framework
8
https://github.com/tecnickcom/TCPDF
8
https://github.com/croogo/croogo
8
https://github.com/admidio/admidio
8
https://github.com/pimcore/customer-data-framework
8
https://github.com/TribalSystems/Zenario
8
https://github.com/StarCitizenTools/mediawiki-skins-Citizen
8
https://github.com/statamic/cms
8
https://github.com/twigphp/Twig
8
https://github.com/RaspAP/raspap-webgui
8
https://github.com/Froxlor/Froxlor
8
https://github.com/GilaCMS/gila
8
https://github.com/wintercms/winter
7
https://github.com/passbolt/passbolt_api
7
https://github.com/unopim/unopim
7
https://github.com/composer/composer
7
https://github.com/pagekit/pagekit
7
https://github.com/ezsystems/ezplatform-admin-ui
7
https://github.com/ezsystems/ezplatform-kernel
7
https://github.com/d4wner/Vulnerabilities-Report
7
https://github.com/Codiad/Codiad
7
https://github.com/phpseclib/phpseclib
6
https://github.com/LimeSurvey/LimeSurvey
6
https://github.com/gleez/cms
6
https://github.com/bookstackapp/bookstack
6
https://github.com/silverstripe/silverstripe-graphql
6
https://github.com/auth0/auth0-PHP
6
https://github.com/nystudio107/craft-seomatic
6
https://github.com/vrana/adminer
6
https://github.com/ezsystems/ezpublish-legacy
6
https://gitlab.com/francoisjacquet/rosariosis
6
https://github.com/ADOdb/ADOdb
6
https://github.com/ImpressCMS/impresscms
6
https://github.com/api-platform/core
6
https://github.com/guzzle/guzzle
6
https://github.com/oroinc/orocommerce
6
https://github.com/shopware5/shopware
5
https://github.com/dub-flow/vulnerability-research
5
https://github.com/gggeek/phpxmlrpc
5
https://github.com/jbroadway/elefant
5
https://github.com/backdrop/backdrop
5
https://github.com/Admidio/admidio
5
https://github.com/oroinc/platform
5
https://github.com/getformwork/formwork
5
https://github.com/nukeviet/nukeviet
5
https://github.com/in2code-de/femanager
5
https://github.com/zendframework/zf1
5
https://github.com/ibexa/core
5
https://github.com/thinkcmf/thinkcmf
5
https://github.com/contao/core
5
https://github.com/pear/Archive_Tar
5
https://github.com/Bottelet/DaybydayCRM
5
https://github.com/bagisto/bagisto
4
https://github.com/fiveai/Cachet
4
https://github.com/appwrite/appwrite
4
https://github.com/ibexa/admin-ui
4
https://github.com/pixelfed/pixelfed
4
https://github.com/phpservermon/phpservermon
4
https://github.com/reportico-web/reportico
4
https://github.com/froxlor/Froxlor
4
https://github.com/hieuminhnv/Zenario-CMS-last-version
4
https://github.com/kimai/kimai
4
https://github.com/yourls/yourls
4
https://github.com/codeigniter4/shield
4
https://github.com/GiacoLenzo2109/MoonShine_Software_PoCs
4
https://github.com/TYPO3/html-sanitizer
4
https://github.com/ezsystems/ezplatform-richtext
4
https://github.com/livewire/livewire
4
https://github.com/Cockpit-HQ/Cockpit
4
https://github.com/ezsystems/ezplatform
4
https://github.com/zoujingli/ThinkAdmin
4
https://github.com/in2code-de/powermail
4
https://github.com/haxtheweb/issues
4
https://github.com/progprnv/CVE-Reports
4
https://github.com/oroinc/crm
4
https://github.com/Sylius/SyliusResourceBundle
4
https://github.com/BookStackApp/BookStack
4
https://github.com/crater-invoice/crater
4
https://github.com/brefphp/bref
4
https://github.com/silverstripe/silverstripe-admin
4
https://github.com/darylldoyle/svg-sanitizer
4
https://github.com/UniSharp/laravel-filemanager
3
https://github.com/qcubed/qcubed
3
https://github.com/jquery/jquery
3
https://github.com/nitsan-technologies/ns_backup
3
https://github.com/quickapps/cms
3
https://github.com/opensource-workshop/connect-cms
3
https://github.com/thephpleague/commonmark
3
https://github.com/github/advisory-database
3
https://github.com/orchidsoftware/platform
3
https://github.com/flarum/core
3
https://github.com/PrivateBin/PrivateBin
3
https://github.com/dd3x3r/enhavo
3
https://github.com/artesaos/seotools
3
https://github.com/phpbb/phpbb
3
https://github.com/belong2yourself/vulnerabilities
3
https://github.com/elgg/elgg
3
https://github.com/xjzzzxx/vulFound
3
https://github.com/TYPO3-Solr/ext-solr
3
https://github.com/phpbb/phpbb-app
3
https://github.com/thedevdojo/voyager
3
https://github.com/FriendsOfSymfony/FOSUserBundle
3
https://github.com/notrinos/notrinoserp
3
https://github.com/joomla/joomla-cms
3
https://github.com/concrete5/concrete5
3
https://github.com/Sylius/PayPalPlugin
3
https://github.com/facade/ignition
3
https://github.com/grokability/snipe-it
3
https://github.com/Rudloff/alltube
3
https://github.com/Cyber-Wo0dy/report
3
https://github.com/Athlon1600/php-proxy-app
3
https://github.com/uasoft-indonesia/badaso
3
https://github.com/verbb/formie
3
https://github.com/idno/known
3
https://github.com/ezsystems/ezplatform-http-cache
3
https://github.com/PrestaShop/productcomments
3
https://github.com/verbb/comments
3
https://github.com/liufee/feehicms
3
https://github.com/simplesamlphp/saml2
3
https://github.com/yiisoft/yii
3
https://github.com/redaxo/redaxo
3