Drupal core - Critical - Arbitrary PHP code execution - SA-CORE-2020-013

More info at https://www.drupal.org/sa-core-2020-013...

CVE-2026-45072: Stored XSS in WebProfiler CodeExtension::fileExcerpt(): Unescaped Non-PHP File Rendering

More info at https://symfony.com/cve-2026-45072...

Sandbox property and method bypass via object-destructuring assignment

More info at https://symfony.com/cve-2026-46639...

Remote code execution via evaluation of user-controlled input in validation rules

Impact A remote code execution RCE vulnerability affects versions 0.13.2 through 0.13.21. When documentation endpoints are publicly accessible and validation rules reference user-controlled input, request supplied data may be evaluated during documentation generation, leading to execution of...

Possible SQL injection in widget field value

Impact The currently selected widget values were not correctly sanitized before passing it to the database, leading to an SQL injection possibility. Patches The issue has been patched in tablelookupwizard version 3.3.5 and version 4.0.0. For more information If you have any questions or comments...

EZSA-2020-004 Object Injection in SiteAccessMatchListener

More info at https://ezplatform.com/security-advisories/ezsa-2020-004-object-injection-in-siteaccessmatchlistener...

Insecure default secret key and IV allowing anyone to decrypt values

This issue has been deleted...

SSTI Vulnerability

More info at https://twitter.com/nystudio107/status/1268736336200171520?lang=en...

XSS vulnerability in blade templating

More info at https://github.com/laravel/framework/pull/31945...

Unexpected bindings in QueryBuilder

This is a follow-up to the previous security advisory GHSA-3p32-j457-pg5x which addresses a few additional edge cases. If a request is crafted where a field that is normally a non-array value is an array, and that input is not validated or cast to its expected type before being passed to the quer...

Cross-Site Scripting in Link Handling

More info at https://typo3.org/security/advisory/typo3-core-sa-2019-022...

Information Disclosure of Installed Extensions

More info at https://typo3.org/security/advisory/typo3-core-sa-2019-001...

Denial of Service in Frontend Record Registration

More info at https://typo3.org/security/advisory/typo3-core-sa-2018-012...

Denial of Service in Frontend Record Registration

More info at https://typo3.org/security/advisory/typo3-core-sa-2018-012...

SS-2018-007: CSRF vulnerability in graphql

More info at https://www.silverstripe.org/download/security-releases/ss-2018-007/...

Magento 2.2.7 and 2.1.16 Security update. Closes RCE,XSS and other vulnerabilities

More info at https://magento.com/security/patches/magento-2.2.7-and-2.1.16-security-update...

SS-2018-018: Database credentials disclosure during connection failure

More info at https://www.silverstripe.org/download/security-releases/ss-2018-018/...

Authentication Bypass in TYPO3 CMS

More info at https://typo3.org/security/advisory/typo3-core-sa-2018-001...

CSRF vulnerability in the admin panel

More info at https://sylius.com/blog/csrf-vulnerability-in-admin-panel/...

SUPEE-10752 - Multiple security enhancements vulnerabilities

More info at https://magento.com/security/patches/supee-10752...

URL Rewrite vulnerability

More info at https://framework.zend.com/security/advisory/ZF2018-01...

SS-2018-001: Privilege Escalation Risk in Member Edit form

More info at https://www.silverstripe.org/download/security-releases/ss-2018-001/...

Potential SQL injection vector

The SelectLimit function has a potential SQLi exploit through the use of the nrows and offset parameters which are not forced to integers. Fixes 400...

EZSA-2018-001 Several vulnerabilities in Forgot password, Information collector, XML text, and Matrix field type features

More info at http://share.ez.no/community-project/security-advisories/ezsa-2018-001-several-vulnerabilities-in-forgot-password-information-collector-xml-text-and-matrix-field-type-features...

Arbitrary Code Execution in TYPO3 CMS

More info at https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2017-007/...

Missing state parameter in OAuth requests leading to CSRF vulnerability

No description provided...

Cookie leakage to wrong origins and non-restricted cookie acceptance

Security and maintenance release. - Security: Previously cookies of foo.bar.example.com were leaked to foo.bar. Additionally, any site could set cookies for any other site. Artax follows newer browser implementations now. Cookies can only be set on domains higher or equal to the current domain, b...

An error during signature verification can be treated as a successful verification.

Security update for signature validation on LogoutRequest/LogoutResponse. In order to verify Signatures on Logoutrequests and LogoutResponses we use the verifySignature of the class XMLSecurityKey from the xmlseclibs library. That method end up calling opensslverify depending on the signature...

Remote Code Execution in third party library swiftmailer

More info at https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2017-001/...

Critical vulnerabilities in JSON Web Token libraries

More info at https://auth0.com/blog/critical-vulnerabilities-in-json-web-token-libraries/...

SS-2016-005: Brute force bypass on default admin

More info at https://www.silverstripe.org/download/security-releases/ss-2016-005/...

Cross-Site Scripting in TYPO3 Backend

More info at https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-009/...

Cross-Site Scripting in TYPO3 component Backend

More info at https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2016-006/...

SS-2016-002: CSRF vulnerability in GridFieldAddExistingAutocompleter

More info at https://www.silverstripe.org/download/security-releases/ss-2016-002/...

SQL Injection in dbal

More info at https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-016/...

Multiple Cross-Site Scripting vulnerabilities in TYPO3 backend

More info at https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-011/...

TYPO3 is susceptible to Cross-Site Flashing

More info at https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2015-014/...

Potential Information Disclosure and Insufficient Entropy vulnerability in Zend\Captcha\Word

More info at https://framework.zend.com/security/advisory/ZF2015-09...

SS-2015-027: HtmlEditor embed url sanitisation

More info at https://www.silverstripe.org/download/security-releases/ss-2015-027/...

Filesystem Permissions Issues in Multiple Components

More info at https://framework.zend.com/security/advisory/ZF2015-07...

SS-2015-016: XSS in install.php

More info at https://www.silverstripe.org/software/download/security-releases/ss-2015-016/...

SS-2015-018: File upload exposure on UserForms module

More info at https://www.silverstripe.org/software/download/security-releases/ss-2015-018/...

Forced Redirect to External Website

More info at https://www.orocrm.com/blog/news/orocrm-security-announcement...

Privilege Escalation in TYPO3 Neos

More info at https://www.neos.io/blog/neos-sa-2015-001.html...

XSS injection in backoffice

More info at https://thelia.net/version-2-1-2-with-security-fix...

XSS injection in backoffice

More info at https://thelia.net/version-2-1-2-with-security-fix...

Session validation vulnerability

More info at https://framework.zend.com/security/advisory/ZF2015-01...

Header injection in NativeMailerHandler

Hopefully attacker controlled data is never used to set the encoding or content type, but just in case, prevent: $nmh = new NativeMailerHandler$to, $subject, $from; $nmh-setEncoding "utf-8\r\nFrom: [email protected]"; Since the injection happened in send, there doesn't seem to be a good way to a...

Authentication adapter did not verify validity of tokens

Previous to @2ca5bb1c2f11537be8f94ca6867d8d69789e744a release 0.1.2, tokens weren't checked for validity/expiration. This potentially caused a security issue if expired tokens were not deleted after the expiration time was past, allowing anyone to still use invalidated authentication credentials...

Insufficient input validation allows for code injection and remote execution

More info at https://contao.org/en/news/new-security-hole-found-in-contao.html...