Out-Of-Bounds

chromium is vulnerable to Out-Of-Bounds. The vulnerability is due to improper handling of specific UI gestures via a crafted HTML page, potentially allowing a remote attacker to exploit heap corruption...

Use-After-Free

chromium is vulnerable to a Use-After-Free. The vulnerability is vulnerable to a use-after-free exploit within a sandbox by exploiting a crafted HTML page. The vulnerability allows a remote attacker to execute arbitrary code...

Heap Buffer Overflow

chromium is vulnerable to Heap Buffer Overflow. The vulnerability is due to improper memory handling via a crafted HTML page, which allows a remote attacker to potentially exploit heap corruption...

Denial Of Service (DoS)

typo3/cms-core is vulnerable to Denial of Service DoS. The vulnerability is due to improper session validation, which allows attackers to create an arbitrary amount of individual session-data records in the database, which results in Denial of Service...

Session Hijacking

typo3/cms-core is vulnerable to Session Hijacking. The vulnerability is due to cookies not being configured to be submitted only via HTTP, which, when combined with other vulnerabilities such as cross-site scripting, can lead to hijacking an active and valid session via the Install Tool...

Insufficiently Protected Credentials

SimpleSAMLphp is vulnerable to Insufficiently Protected Credentials. The vulnerability is due to credentials being insecurely saved to the user's session state when the ECP profile is disabled but supported in the Identity Provider's metadata, which could result in an attacker with administrator...

Code Injection

symfony is vulnerable to Code Injection. The vulnerability is due to unsanitized locale values being dumped into a PHP file generated in the cache...

Cross-site Scripting (XSS)

SimpleSAMLphp is vulnerable to Cross-site Scripting XSS. The vulnerability is due to unvalidated metadata endpoints, allowing malicious parties to substitute URLs with JavaScript code, leading to execution of the code in the user's browser if strict Content Security Policies are not enforced...

Remote Code Execution

typo3/cms-core is vulnerable to Remote Code Execution. The vulnerability is due to the ability to obfuscate Phar files as image or text files, which can then be uploaded and invoked via manipulated URLs in TYPO3 backend forms, which allows an attacker to execute arbitrary code...

XML Entity Expansion

Symfony is vulnerable to XML Entity Expansion attacks. The vulnerability is due improper xml parsing configuration, where long entities can be defined and repeatedly referenced, creating a memory sink that can be exploited for Denial of Service attacks...

Cross-Site Scripting (XSS)

typo3/cms-core is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to insecurely encoding information from external sources in language pack handling, which allows attackers to execute malicious scripts in the context of the user’s browser...

Unrestricted Upload Of File With Dangerous Type

typo3/cms-core is vulnerable toUnrestricted Upload of File with Dangerous Type. The vulnerability is due to missing file extensions in $GLOBALS'TYPO3CONFVARS''BE''fileDenyPattern' allowing attackers to upload files like .phar, .shtml, .pl, or .cgi, which can be executed in certain web server setu...

Information Disclosure

typo3/cms-core is vulnerable to Information Disclosure. The vulnerability is due to backend users without read access being able to see specific pages in the page tree...

Sensitive Information Disclosure

Symfony is vulnerable to Sensitive Information Disclosure. The vulnerability is due to the FragmentHandler considering all fragment render requests as coming from a trusted source, regardless of their origin, due to the inability to distinguish between legitimate ESI requests by a trusted proxy...

Insecure Credential Storage

typo3/cms-core is vulnerable to Insecure Credential Storage. The vulnerability is due to the persistence of database records containing insecure or empty credentials when certain changes are made to user account types in the TYPO3 backend, which allows an attacker to cause insecure or empty...

Session Fixation

typo3/cms-core is vulnerable to Session Fixation. The vulnerability is due to the existing sessions not being revoked when a user changes their passwords, which can be exploited by an attacker with a valid backend or frontend user account...

SQL Injection

typo3/cms-core is vulnerable to SQL injection. The vulnerability is due to improper dissociation of system-related configuration from user-generated configuration, allowing instructions to be persisted to a form definition file that were not configured to be modified. This allows attackers to...

Cross Site Scripting (XSS)

typo3/cms-core is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to a failure to properly encode user input in frontend forms handled by the form framework, allowing malicious users to inject and execute arbitrary JavaScript code in the context of other users' browsers...

Improper Check For Unusual Or Exceptional Conditions

libquickjs.so is vulnerable to Improper Check For Unusual Or Exceptional Conditions. The vulnerability is due to an assertion failure via JSFreeRuntimeJSRuntime at quickjs.c, which results in an application crash...

Access Control Bypass

typo3/cms-core is vulnerable to Access Control Bypass. The vulnerability is due to insufficient access control for backend users, allowing them to modify and create pages in the default language despite having limited access to specific languages...

Memory Exhaustion

braces is vulnerable to Memory Exhaustion. The vulnerability is due to improper input size restrictions, which allows an attacker to cause a Denial of Service DoS via crafted large imbalanced input to the braces method, leading to memory exhaustion and eventual application crash...

Cross-site Scripting (XSS)

org.opencms:opencms-core is vulnerable to Cross-site Scripting XSS. The vulnerability is due to insufficient input validation in the "title" field, allowing users with sufficient privileges to insert and execute malicious JavaScript code through the admin panel...

XML Entity Expansion (XEE)

symfony/validator is vulnerable to XML Entity Expansion. The vulnerability is caused by improper XML parsing configuration, which could result in XML Entity Expansion XEE attacks that can lead to excessive memory use and potential Denial of Service DoS...

Path Traversal

twig/twig is vulnerable to Path Traversal. The vulnerability is caused by insufficient validation of user-supplied template names within the TwigLoaderFilesystem, allowing attackers to manipulate paths to access a file one level above the intended directory...

Server Side Request Forgery (SSRF)

ip is vulnerable to Server Side Request Forgery SSRF. The vulnerability is due to some IP addresses being improperly categorized via the isPublic, isPrivate, and isLoopback methods, which allows an attacker to perform Server-Side Request Forgery SSRF if an application utilizes the library to...

Code Injection

symfony is vulnerable to Code Injection. The vulnerability is due to lack of CSRF protection for the import/export feature, allowing attackers to exploit the PHP serialized string import...

Authentication Bypass

Thelia is vulnerable to Authentication Bypass. The vulnerability is due to improper authentication which allows an attacker to bypass customer and admin authentication...

SQL Injection

terminal42/contao-tablelookupwizard is vulnerable to SQL Injection. The vulnerability is caused by insufficient sanitization of widget values before they are passed to the database, which allows an attacker to execute arbitrary SQL commands...

Improper Input Validation

symphony is vulnerable to Improper Input Validation. The vulnerability is due to incorrect parsing of the Authorization header in applications using HTTP basic or digest authentication, which could be exploited in certain server setups...

Cross-Site Scripting

thelia/thelia is vulnerable to Cross-site Scripting. The vulnerability is due to insufficient sanitization within the error.html template of the BackOffice. This allowing attackers to inject malicious scripts that can be executed in the browsers of users visiting the affected page...

Privilege Escalation

symfony/symfony is vulnerable to Privilege Escalation. The vulnerability is due to a flaw in the handling of user updates in the EntityUserProvider provided by the Doctrine bridge, allowing users to switch to another user by changing their username via a form, despite encountering a validation...

Authentication Bypass

typo3/cms-core vulnerable to Authentication Bypass. The vulnerability is due to improper handling of hashing methods related by PHP class inheritance, allowing stored passwords using the blowfish hashing algorithm to be overridden when MD5 is used as the default hashing algorithm...

Cross-site Scripting (XSS)

Thelia is vulnerable to Cross-site Scripting XSS. The vulnerability is due to improper sanitization within the error.html template which allows an attacker to inject and execute malicious scripts...

Improper Input Validation

Symfony is vulnerable to Improper Input Validation. The vulnerability is due to trusting the remote address when at least one trusted proxy is involved, allowing an attacker to manipulate HTTP header values...

XML External Entity (XXE) Injection

symfony/serializer is vulnerable to XML External Entity XXE injection. This vulnerability is due to the failure to disable external entities when parsing XML using the XMLEncoder component, which allows an attacker to include arbitrary files from the file system by exploiting the XXE injection fl...

Remote Code Execution (RCE)

titon/framework is vulnerable to remote code execution. The vulnerability is due to calling the unserialize method on unverified cyphertext, which allows an attacker to execute arbitrary code...

Denial Of Service (DoS)

Symfony is vulnerable to Denial Of Service DoS. The vulnerability is due to improper hostname validation via a regular expression within Request::getHost, which results in DoS...

XML Entity Expansion (XEE)

symfony/routing is vulnerable to XML Entity Expansion XEE. The vulnerability is due to allowing custom entities in PHP, which allows an attacker to submit XML which results in a XEE Quadratic Blowup...

XML External Entity

symfony/symfony is vulnerable to XML External Entity. The vulnerability is due to the absence of proper validation mechanisms for XML input, which allows attackers to process external entities resulting in the inclusion of arbitrary files...

XML Entity Expansion

symfony/symfony is vulnerable to XML Entity Expansion. The vulnerability is due to all extensions that use libxml2 having no defense against Quadratic Blowup Attacks, which involve defining a long entity that is repeatedly referenced within the XML document, thus creating a potential memory sink...

IP Address Spoofing

Symfony is vulnerable to IP Address Spoofing The vulnerability is due to the potential manipulation of client IP addresses returned by the Request::getClientIp method for sensitive decisions. It allows malicious actors to manipulate or spoof their IP addresses...

Regular Expression Denial Of Service (ReDoS)

micromatch is vulnerable to Regular Expression Denial of Service ReDoS. The vulnerability is due a regex expression with inefficient complexity within the micromatch.braces method. An attacker can submit a large payload without a closing bracket, which results in Regular Expression Denial of...

Information Disclosure

simplesamlphp/simplesamlphp is vulnerable to Information Disclosure. The vulnerability is due to insufficient access controls on the admin interface endpoint, allowing unauthenticated users to view sensitive information about the host where SimpleSAMLphp is installed...

Regular Expression Denial Of Service (ReDoS)

tecnickcom/tcpdf is vulnerable to Regular Expression Denial of Service ReDoS. The vulnerability is due to a regular expression with inefficient complexity utilized when parsing a SVG file. This allows an attacker to cause a denial of service by crafting a malicious svg file...

Command Injection

swiftmailer/swiftmailer is vulnerable to Command Injection. The vulnerability is due to improper handling of the "From" header when it comes from a non-trusted source and when no "Return-Path" is configured, which allows an attacker to execute arbitrary shell commands...

Cross-site Scripting (XSS)

Umbraco Commerce is vulnerable to Cross-site Scripting XSS. The vulnerability is due to insufficient validation allowing authenticated users with access to edit forms to inject unsafe code into form components...

Cross-site Scripting (XSS)

ansibleguy-webui is vulnerable to Cross-site Scripting XSS. The vulnerability is due to improper handling of user input in multiple forms, allowing injection of HTML elements which are then executed by the browser after job actions...

Cross-site Scripting (XSS)

Umbraco Commerce is vulnerable to stored Cross-site scripting XSS. The vulnerability is due to insufficient input validation in the Print Functionality, allowing attackers to inject malicious code...

Sensitive Information Disclosure

github.com/minio/minio/ is vulnerable to Sensitive Information Disclosure. The vulnerability is due to the ability to infer the existence of objects on a server by sending anonymous requests with random object names...

SQL Injection

Meshery is vulnerable to SQL Injection. The vulnerability is due to improper handling of the sort query parameter in the GetAllEvents function, allowing for SQL injection through stacked queries and the ATTACH DATABASE command...