Vulnerability Database

  • Total number of vulnerabilities in the DB: 296,137
With exploit

Composer icon drupal / core

Title Severity Exploit Date Affected Version
CVE-2020-13668 Medium Feb 11, 2022 >= 8.0.0 < 8.8.10
>= 8.9.0 < 8.9.6
>= 9.0.0 < 9.0.6
CVE-2020-13670 High Feb 11, 2022 >= 8.0.0 < 8.8.10
>= 8.9.0 < 8.9.6
>= 9.0.0 < 9.0.6
CVE-2020-13676 Medium Feb 11, 2022 >= 8.0.0 < 8.9.19
>= 9.1.0 < 9.1.13
>= 9.2.0 < 9.2.6
CVE-2020-13675 Critical Feb 11, 2022 >= 8.0.0 < 8.9.19
>= 9.1.0 < 9.1.13
>= 9.2.0 < 9.2.6
CVE-2020-13671 High Nov 20, 2020 >= 9.0.0 < 9.0.8
>= 8.9.0 < 8.9.9
>= 8.0.0 < 8.8.11
>= 7.0 < 7.74
CVE-2019-6342 Critical May 28, 2020 == 8.7.4
>= 8.7.4 < 8.7.5
CVE-2017-6923 Medium Jan 22, 2019 >= 8.0 < 8.3.7
CVE-2018-7602 Critical Jul 19, 2018 >= 7.0 < 7.59
>= 8.0 < 8.4.8
>= 8.5 < 8.5.3

Composer icon shopware / core

Title Severity Exploit Date Affected Version
non-admin users can create integration role with administrator role Medium Jun 28, 2021 < 6.4.1.1
Internal hidden fields are visible on to many associations in admin api Medium Jun 28, 2021 < 6.4.1.1
Private files publicly accessible with Cloud Storage providers High Jun 28, 2021 < 6.4.1.1
Creation of order credits was not validated by acl in admin orders Low Jun 28, 2021 < 6.4.1.1
Canceling of orders not related to the logged-in user Medium Jun 28, 2021 < 6.4.1.1
After order payment process manipulation in shopware/platform and shopware/core Critical Apr 13, 2021 < 6.3.5.3
Leak of information via Store-API aggregations in shopware/platform and shopware/core Critical Apr 13, 2021 < 6.3.5.3
Authenticated Server Side Request Forgery Low Dec 21, 2020 < 6.3.4.1
Information exposure via query strings in URL Low Dec 21, 2020 < 6.3.4.1
Authenticated Privilege Escalation Low Dec 21, 2020 < 6.3.4.1

Composer icon mautic / core

Title Severity Exploit Date Affected Version
CVE-2018-8092 Critical Apr 18, 2018 < 2.13.0
CVE-2018-8071 Medium Apr 18, 2018 < 2.13.0
CVE-2018-10189 High Apr 17, 2018 < 2.13.0
CVE-2017-1000489 High Jan 3, 2018 >= 2.0.0 < 2.12.0
CVE-2017-1000490 Medium Jan 3, 2018 >= 1.0.0 < 2.12.0
CVE-2017-1000488 Medium Jan 3, 2018 >= 2.1.0 < 2.12.0