Vulnerability Database

  • Total number of vulnerabilities in the DB: 300,830
With exploit

horde / framework

Title Severity Exploit Date Affected Version
CVE-2007-6018 Medium Jan 11, 2008 == 3.1.5

zend / framework

Title Severity Exploit Date Affected Version
CVE-2015-0270 Critical Oct 25, 2019 >= 2.3.0 < 2.3.5
< 2.2.10
CVE-2011-3825 Medium Sep 24, 2011 == 1.11.3
CVE-2009-4417 Medium Dec 24, 2009 == 0.9.0-beta
== 1.7.3
== 1.9.0-beta_1
== 1.9.2
== 1.7.5
== 1.0.0
== 0.1.3-preview
== 1.5.2
== 0.9.1-beta
== 0.8.0-preview
== 1.9.0-alpha_1
== 1.0.0-rc1
== 1.5.1
== 1.7.7
== 1.0.1
== 1.5.3
== 1.9
== 1.7.2
== 1.7.8
== 0.1.5-preview
<= 1.9.6
== 1.0.0-rc3
== 1.9.0-rc1
== 1.5.0
== 1.7.1
== 1.5.0-rc1
== 1.8.0-alpha_1
== 1.0.0-rc2
== 1.7.0
== 1.6.0-rc3
== 1.6.2
== 1.8.3
== 1.6.0-rc2
== 1.5.0-rc2
== 1.9.5
== 1.5.0-rc3
== 1.8.2
== 1.8.0-beta_1
== 1.8.0
== 1.6.1
== 1.0.2
== 1.7.0-preview
== 1.7.6
== 1.9.1
== 1.0.4
== 0.9.2-beta
== 1.9.0
== 0.9.3-beta
== 1.6.0
== 1.8.1
== 1.7.4
== 0.6.0-preview
== 1.9.3
== 0.1.4-preview
== 0.2.0-preview
== 1.9.4
== 1.6.0-rc1
== 1.8.4
== 0.7.0-preview
== 1.0.3
== 1.5.0-preview

themify / framework

Title Severity Exploit Date Affected Version
CVE-2013-20002 Critical Jun 17, 2021 < 1.2.2

schben / framework

Title Severity Exploit Date Affected Version
CVE-2019-14987 Low Aug 13, 2019 <= 2.0.7

adive / framework

Title Severity Exploit Date Affected Version
CVE-2020-7989 Medium Jan 26, 2020 == 2.0.8
CVE-2020-7990 Medium Jan 26, 2020 == 2.0.8
CVE-2020-7991 High Jan 26, 2020 == 2.0.8

Composer icon laravel / framework

Title Severity Exploit Date Affected Version
CVE-2024-13918 Medium Mar 10, 2025 >= 11.9.0 < 11.36.0
CVE-2024-13919 Medium Mar 10, 2025 >= 11.9.0 < 11.36.0
CVE-2025-27515 Medium Mar 5, 2025 >= 12.0.0 < 12.1.1
>= 11.0.0 < 11.44.1
< 10.48.29
laravel framework SQL Injection via limit and offset functions High May 15, 2024 >= 6.0.0 < 6.20.26
>= 7.0.0 < 7.30.5
>= 8.0.0 < 8.40.0
laravel framework Unexpected database bindings via requests High May 15, 2024 >= 6.0.0 < 6.20.14
>= 7.0.0 < 7.30.4
>= 8.0.0 < 8.24.0
Laravel Guard bypass in Eloquent models Medium May 15, 2024 >= 5.5.0 <= 5.5.49
>= 6.0.0 < 6.18.34
>= 7.0.0 < 7.23.2
Laravel RCE vulnerability in "cookie" session driver Critical May 15, 2024 >= 4.1.0 < 6.18.31
>= 7.0.0 < 7.22.4
Laravel Cross-site Scripting (XSS) vulnerability in blade templating Medium May 15, 2024 >= 7.0.0 < 7.1.2
Laravel Cookie serialization vulnerability High May 15, 2024 >= 5.5.0 < 5.6.30
Laravel Encrypter Component Potential Decryption Failure Leading to Unintended Behavior Medium May 15, 2024 < 5.5.40
>= 5.6.0 < 5.6.15

Composer icon codeigniter4 / framework

Title Severity Exploit Date Affected Version
CVE-2025-54418 Critical Jul 28, 2025 < 4.6.2
CVE-2025-45406 Medium Jul 25, 2025 <= 4.6.2
CVE-2025-24013 Medium Jan 21, 2025 < 4.5.8
CVE-2024-29904 High Mar 29, 2024 < 4.4.7
CVE-2023-46240 High Oct 31, 2023 < 4.4.3
CVE-2023-32692 Critical May 30, 2023 < 4.3.5
CVE-2022-46170 Critical Dec 22, 2022 < 4.2.11
CVE-2022-23556 High Dec 22, 2022 < 4.2.11
CVE-2022-39284 Low Oct 6, 2022 < 4.2.7
CVE-2022-24712 High Feb 28, 2022 < 4.1.9

Composer icon silverstripe / framework

Title Severity Exploit Date Affected Version
Silverstripe Framework user enumeration via timing attack on login and password reset forms Medium Apr 10, 2025 >= 4.0.0 < 5.3.23
CVE-2025-30148 Medium Apr 10, 2025 < 5.3.23
Reflected Cross Site Scripting (XSS) in error message Low Jan 23, 2025 < 5.3.8
Silverstripe Framework has a Reflected Cross Site Scripting (XSS) in error message Low Jan 14, 2025 < 5.3.8
CVE-2024-53277 Medium Jan 14, 2025 < 5.3.8
CVE-2024-47605 Medium Jan 14, 2025 < 5.3.8
CVE-2024-32981 Medium Jul 17, 2024 < 5.2.16
Silverstripe uses TinyMCE which allows svg files linked in object tags Medium Jul 17, 2024 < 5.2.16
silverstripe/framework has potential SQL Injection vulnerability in PostgreSQL database connector High May 28, 2024 >= 4.0.0-rc1 < 4.0.6
>= 4.1.0-rc1 < 4.1.4
>= 4.2.0-rc1 < 4.2.3
silverstripe/framework has possible denial of service attack vector when flushing High May 28, 2024 >= 4.0.0-rc1 < 4.0.5
>= 4.1.0-rc1 < 4.1.3
>= 4.2.0-rc1 < 4.2.2

Composer icon topthink / framework

Title Severity Exploit Date Affected Version
CVE-2025-50706 Critical Aug 5, 2025 <= 5.1.41
CVE-2024-34467 Medium May 4, 2024 >= 8.0.0 < 8.0.4
>= 6.1.0 < 6.1.5
< 6.0.17
CVE-2022-47945 Critical Dec 23, 2022 < 6.0.14
CVE-2022-44289 High Dec 6, 2022 <= 5.0.24
>= 5.1 <= 5.1.41
CVE-2022-38352 Critical Sep 15, 2022 <= 6.0.13
CVE-2022-33107 Critical Jun 29, 2022 <= 6.0.12
CVE-2021-23592 Critical May 6, 2022 < 6.0.12
CVE-2022-25481 High Mar 21, 2022 <= 5.0.24
CVE-2021-36564 Critical Dec 6, 2021 < 6.0.9
CVE-2021-36567 Critical Dec 6, 2021 <= 6.0.8

nuxt / framework

Title Severity Exploit Date Affected Version
CVE-2022-4413 Medium Dec 12, 2022 == 3.0.0-rc2
== 3.0.0-rc3
== 3.0.0-rc4
== 3.0.0-rc5
== 3.0.0-rc6
== 3.0.0-rc7
== 3.0.0-rc8
== 3.0.0-rc9
== 3.0.0-rc10
== 3.0.0-rc11
== 3.0.0-rc12
== 3.0.0-rc1
CVE-2022-4414 Medium Dec 12, 2022 == 3.0.0-rc2
== 3.0.0-rc3
== 3.0.0-rc4
== 3.0.0-rc5
== 3.0.0-rc6
== 3.0.0-rc7
== 3.0.0-rc8
== 3.0.0-rc9
== 3.0.0-rc10
== 3.0.0-rc11
== 3.0.0-rc12
== 3.0.0-rc1

Composer icon matyhtf / framework

Title Severity Exploit Date Affected Version
CVE-2021-43676 Critical Dec 3, 2021 < 3.0.6

Composer icon codeigniter / framework

Title Severity Exploit Date Affected Version
codeigniter/framework SQL injection in ODBC database driver Critical May 15, 2024 < 3.1.0
Inadequate XSS Prevention in CodeIgniter/Framework Security Library Medium May 15, 2024 < 3.0.3
CVE-2020-24950 High Aug 11, 2023 < 1.4.10

Composer icon flarum / framework

Title Severity Exploit Date Affected Version
CVE-2025-27794 Medium Mar 12, 2025 < 1.8.10
CVE-2024-21641 Low Jan 5, 2024 < 1.8.5
CVE-2023-40033 High Aug 16, 2023 < 1.8.0

Composer icon titon / framework

Title Severity Exploit Date Affected Version
titon/framework vulnerable to Remote Code Execution via Chosen-Ciphertext Attack Critical May 30, 2024 <= 0.1.0-alpha

basticom / framework

Title Severity Exploit Date Affected Version
CVE-2024-9443 Medium Nov 5, 2024 < 1.5.1