Vulnerability Database

  • Total number of vulnerabilities in the DB: 296,172
With exploit

Composer icon craftcms / cms

Title Severity Exploit Date Affected Version
CVE-2023-41892 Critical Sep 13, 2023 >= 4.0.0-RC1 < 4.4.15
CVE-2023-40035 High Aug 23, 2023 >= 4.0.0-RC1 < 4.4.15
>= 3.0.0 < 3.8.15
CVE-2023-33495 Medium Jun 20, 2023 <= 4.4.9
CVE-2023-30179 High Jun 13, 2023 < 4.4.2
CVE-2023-33195 Medium May 27, 2023 >= 4.3.0 < 4.4.6
CVE-2023-33194 Low May 26, 2023 >= 4.0.0-RC1 < 4.4.6
>= 3.0.0 < 3.8.6
CVE-2023-33196 Medium May 26, 2023 >= 4.0.0-RC1 < 4.4.7
CVE-2023-33197 Medium May 26, 2023 >= 4.0.0-RC1 < 4.4.6
CVE-2023-2817 Medium May 26, 2023 >= 4.0.0-RC1 < 4.4.12
CVE-2023-32679 High May 19, 2023 >= 4.0.0 < 4.4.6

Composer icon typo3 / cms

Title Severity Exploit Date Affected Version
TYPO3 Cross-Site Scripting in Form Framework Medium Jun 7, 2024 >= 8.0.0 < 8.7.23
>= 9.0.0 < 9.5.4
TYPO3 Security Misconfiguration for Backend User Accounts High Jun 7, 2024 >= 8.0.0 < 8.7.23
>= 9.0.0 < 9.5.4
TYPO3 Cross-Site Scripting in Link Handling Medium Jun 7, 2024 >= 10.0.0 < 10.2.1
>= 8.0.0 < 8.7.30
>= 9.0.0 < 9.5.12
TYPO3 Broken Access Control in Localization Handling Medium Jun 7, 2024 >= 8.0.0 < 8.7.23
TYPO3 Cross-Site Scripting in Filelist Module Medium Jun 7, 2024 >= 10.0.0 < 10.2.1
>= 8.0.0 < 8.7.30
>= 9.0.0 < 9.5.12
TYPO3 Cross-Site Scripting in Fluid ViewHelpers Medium Jun 7, 2024 >= 8.0.0 < 8.7.23
>= 9.0.0 < 9.5.4
TYPO3 CMS Possible Insecure Deserialization in Extbase Request Handling High Jun 7, 2024 >= 8.0.0 < 8.7.30
>= 9.0.0 < 9.5.12
Typo3 Cross-Site Scripting in Language Pack Handling Medium Jun 5, 2024 >= 9.0.0 < 9.5.4
Typo3 Broken Access Control in Import Module Medium Jun 5, 2024 >= 9.0.0 < 9.5.8
Typo3 Information Disclosure in Page Tree Low Jun 5, 2024 >= 9.0.0 < 9.5.6

Composer icon getkirby / cms

Title Severity Exploit Date Affected Version
CVE-2023-38488 High Jul 27, 2023 < 3.5.8.3
>= 3.6.0 < 3.6.6.3
>= 3.7.0 < 3.7.5.2
>= 3.8.0 < 3.8.4.1
>= 3.9.0 < 3.9.6
CVE-2022-39315 Medium Oct 25, 2022 < 3.5.8.2
>= 3.6.0 < 3.6.6.2
>= 3.7.0 < 3.7.5.1
== 3.8.0
>= 3.8.0 < 3.8.1
CVE-2022-39314 Low Oct 24, 2022 >= 3.5.0 < 3.5.8.2
>= 3.6.0 < 3.6.6.2
>= 3.7.0 < 3.7.5.1
== 3.8.0
>= 3.8.0 < 3.8.1
Cross-site scripting from content entered in the tags and multiselect fields High Aug 30, 2022 >= 3.5.7 < 3.5.8.1
>= 3.6.0 < 3.6.6.1
>= 3.7.0 < 3.7.4
CVE-2022-36037 Medium Aug 29, 2022 < 3.5.8.1
CVE-2018-14519 Low Aug 24, 2022 <= 2.5.12
CVE-2018-14520 Medium Aug 24, 2022 <= 2.5.12
CVE-2021-41258 Medium Nov 16, 2021 >= 3.5.0 < 3.5.8
CVE-2021-41252 Medium Nov 16, 2021 >= 3.5.0 < 3.5.8
CVE-2021-32735 Medium Jul 2, 2021 < 3.5.7

Composer icon juzaweb / cms

Title Severity Exploit Date Affected Version
CVE-2025-5421 Medium Jun 2, 2025 >= 3.4 <= 3.4.2
CVE-2025-5420 Medium Jun 2, 2025 >= 3.4 <= 3.4.2
CVE-2024-7551 Low Aug 6, 2024 <= 3.4.2
CVE-2023-46906 Low Jan 9, 2024 <= 3.4
CVE-2023-46468 High Oct 28, 2023 <= 3.4
CVE-2023-46467 Medium Oct 28, 2023 <= 3.4