Vulnerability Database

  • Total number of vulnerabilities in the DB: 296,137
With exploit

ractf / core

Title Severity Exploit Date Affected Version
CVE-2020-15235 High Oct 5, 2020 <= 41edf92

mobileiron / core

Title Severity Exploit Date Affected Version
CVE-2020-15505 Critical Jul 7, 2020 >= 10.6.0.0 < 10.6.0.1
>= 10.5.2.0 < 10.5.2.1
>= 10.4.0.0 < 10.4.0.4
< 10.3.0.4
>= 10.5.1.0 < 10.5.1.1
CVE-2020-15506 Critical Jul 7, 2020 <= 10.6
CVE-2020-15507 High Jul 7, 2020 <= 10.6

formtools / core

Title Severity Exploit Date Affected Version
CVE-2021-38143 Medium Aug 31, 2021 <= 3.0.20
CVE-2021-38144 Medium Aug 31, 2021 <= 3.0.20
CVE-2021-38145 Critical Aug 31, 2021 <= 3.0.20

onlyoffice / core

Title Severity Exploit Date Affected Version
CVE-2022-29776 Critical Jun 2, 2022 <= 6.1.0.26
CVE-2022-29777 Critical Jun 2, 2022 <= 6.1.0.26

Node.js icon @nestjs / core

Title Severity Exploit Date Affected Version
CVE-2023-26108 Medium Mar 6, 2023 < 9.0.5

Composer icon shopware / core

Title Severity Exploit Date Affected Version
CVE-2025-32378 Low Apr 9, 2025 >= 6.6.0.0-rc1 < 6.6.10.3
>= 6.7.0.0-rc1 < 6.7.0.0-rc2
< 6.5.8.17
Shopware Broken ACL on Document retrieval to access other customers documents Medium Apr 8, 2025 >= 6.6.0.0 < 6.6.10.3
>= 6.7.0.0-rc1 < 6.7.0.0-rc2
< 6.5.8.17
CVE-2025-27892 High Apr 8, 2025 >= 6.6.0.0 < 6.6.10.3
>= 6.7.0.0-rc1 < 6.7.0.0-rc2
== 6.7.0.0-rc1
< 6.5.8.18
CVE-2025-30151 High Apr 8, 2025 >= 6.6.0.0 < 6.6.10.3
>= 6.7.0.0-rc1 < 6.7.0.0-rc2
< 6.5.8.17
CVE-2025-30150 Medium Apr 8, 2025 >= 6.6.0.0 < 6.6.10.3
>= 6.7.0.0-rc1 < 6.7.0.0-rc2
== 6.7.0.0-rc1
< 6.5.8.18
CVE-2024-42357 Critical Aug 8, 2024 < 6.5.8.13
>= 6.6.0.0 < 6.6.5.1
CVE-2024-42356 High Aug 8, 2024 < 6.5.8.13
>= 6.6.0.0 < 6.6.5.1
CVE-2024-42355 Critical Aug 8, 2024 < 6.5.8.13
>= 6.6.0.0 < 6.6.5.1
CVE-2024-42354 Medium Aug 8, 2024 < 6.5.8.13
>= 6.6.0.0 < 6.6.5.1
CVE-2024-22407 Medium Jan 17, 2024 < 6.5.7.4

Composer icon mautic / core

Title Severity Exploit Date Affected Version
CVE-2025-5256 Medium May 28, 2025 >= 1.0.0 < 4.4.16
>= 5.0.0-alpha < 5.2.6
>= 6.0.0-alpha < 6.0.2
CVE-2024-47057 Medium May 28, 2025 >= 1.0.0 < 4.4.16
>= 5.0.0-alpha < 5.2.6
>= 6.0.0-alpha < 6.0.2
CVE-2022-25773 Medium Feb 26, 2025 < 5.2.3
CVE-2024-47053 High Feb 26, 2025 >= 1.0.1 < 5.2.3
CVE-2024-47051 Critical Feb 26, 2025 < 5.2.3
CVE-2022-25777 Medium Sep 18, 2024 >= 1.0.0-beta4 < 4.4.12
>= 5.0.0-alpha < 5.0.4
CVE-2022-25769 Critical Sep 18, 2024 < 3.3.5
>= 4.0.0 < 4.2.0
CVE-2022-25774 Medium Sep 18, 2024 < 4.4.12
CVE-2022-25776 Medium Sep 18, 2024 >= 1.0.2 < 4.4.12
>= 5.0.0-alpha < 5.0.4
CVE-2021-27915 Critical Sep 17, 2024 >= 1.0.0-beta2 < 4.4.12

Composer icon bolt / core

Title Severity Exploit Date Affected Version
CVE-2021-40219 High Apr 11, 2022 <= 4.2
CVE-2021-27367 High Feb 17, 2021 < 4.1.13

Composer icon s-cart / core

Title Severity Exploit Date Affected Version
CVE-2022-21149 Low May 1, 2022 < 6.9

Node.js icon @angular / core

Title Severity Exploit Date Affected Version
CVE-2021-4231 Medium May 26, 2022 < 11.0.5
>= 11.1.0-next.0 < 11.1.0-next.3

Composer icon concrete5 / core

Title Severity Exploit Date Affected Version
CVE-2022-30117 Critical Jun 24, 2022 >= 9.0.0 < 9.1.0
< 8.5.8
CVE-2022-21829 Critical Jun 24, 2022 >= 9.0.0 < 9.1.0
< 8.5.8
CVE-2022-30120 Medium Jun 24, 2022 >= 9.0.0 < 9.1.0
< 8.5.8
CVE-2021-22968 High Nov 19, 2021 < 8.5.7
CVE-2021-22970 High Nov 19, 2021 < 8.5.7
CVE-2021-22966 High Nov 19, 2021 < 8.5.7
CVE-2021-22967 High Nov 19, 2021 < 8.5.7
CVE-2021-22969 Medium Nov 19, 2021 < 8.5.7
CVE-2021-22951 High Nov 19, 2021 < 8.5.7

Node.js icon @actions / core

Title Severity Exploit Date Affected Version
CVE-2022-35954 Medium Aug 15, 2022 < 1.9.1
CVE-2020-15228 Medium Oct 1, 2020 < 1.2.6

Node.js icon @keystone-6 / core

Title Severity Exploit Date Affected Version
CVE-2025-46720 Low May 5, 2025 < 6.5.0
CVE-2023-40027 Medium Aug 15, 2023 < 5.5.1
@keystone-6/core's bundled cuid package known to be insecure Low Jun 12, 2023 <= 5.3.1

Composer icon badaso / core

Title Severity Exploit Date Affected Version
CVE-2025-52353 High Aug 26, 2025 <= 2.9.11
CVE-2022-41705 Critical Nov 25, 2022 < 2.7.0
CVE-2022-41711 Critical Oct 25, 2022 < 2.6.1

Composer icon flarum / core

Title Severity Exploit Date Affected Version
CVE-2025-27794 Medium Mar 12, 2025 < 1.8.10
CVE-2024-21641 Low Jan 5, 2024 < 1.8.5
CVE-2023-40033 High Aug 16, 2023 < 1.8.0
CVE-2023-27577 Low Mar 10, 2023 < 1.7.0
CVE-2023-22488 Medium Jan 12, 2023 < 1.6.3

Node.js icon @sequelize / core

Title Severity Exploit Date Affected Version
CVE-2023-22580 High Feb 16, 2023 < 7.0.0-alpha.20
CVE-2023-22579 High Feb 16, 2023 < 7.0.0-alpha.20
CVE-2023-22578 Critical Feb 16, 2023 < 7.0.0-alpha.20

Composer icon api-platform / core

Title Severity Exploit Date Affected Version
CVE-2025-31485 High Apr 4, 2025 >= 4.0.0-alpha.1 < 4.0.22
< 3.4.17
>= 4.1.0-alpha.1 < 4.1.5
CVE-2025-31481 High Apr 4, 2025 >= 4.0.0-alpha.1 < 4.0.22
< 3.4.17
>= 4.1.0-alpha.1 < 4.1.5

Node.js icon @sap-cloud-sdk / core

Title Severity Exploit Date Affected Version
CVE-2021-41251 Low Nov 6, 2021 < 1.52.0

Node.js icon @ionic / core

Title Severity Exploit Date Affected Version
Cross-Site Scripting in @ionic/core High Sep 3, 2020 < 4.0.3
>= 4.1.0 < 4.1.3
>= 4.2.0 < 4.2.1
>= 4.3.0 < 4.3.1

Node.js icon @tsed / core

Title Severity Exploit Date Affected Version
CVE-2020-7748 High Oct 20, 2020 < 5.65.7

Node.js icon @vendure / core

Title Severity Exploit Date Affected Version
@vendure/core's insecure currencyCode handling allows wrong payment amounts Medium Nov 17, 2023 < 2.1.3
Vendure Cross Site Request Forgery vulnerability impacting all API requests Low Jul 11, 2023 < 2.0.3

pimcore / core

Title Severity Exploit Date Affected Version
CVE-2023-5192 Medium Sep 27, 2023 < 10.3.0

Composer icon fuel / core

Title Severity Exploit Date Affected Version
fuel/core Crypt encryption compromised. Medium May 15, 2024 < 1.8.1
fuel/core ImageMagick driver does not escape all shell arguments. High May 15, 2024 < 1.8.0.4

Maven icon org.verapdf / core

Title Severity Exploit Date Affected Version
CVE-2024-28109 High Mar 28, 2024 < 1.24.2

Node.js icon @zenuml / core

Title Severity Exploit Date Affected Version
CVE-2024-38527 Medium Jun 26, 2024 < 3.23.25

Maven icon com.ritense.valtimo / core

Title Severity Exploit Date Affected Version
CVE-2025-58059 Critical Aug 28, 2025 < 12.16.0.RELEASE
>= 13.0.0.RELEASE < 13.1.2.RELEASE