Vulnerability Database

Total number of vulnerabilities in the DB: 296,138

horde / framework

You can search for specific versions with https://synscan.net/product/framework/1.2.3

Title	Severity	Exploit	Date	Affected Version
CVE-2007-6018	Medium		Jan 11, 2008	== 3.1.5

zend / framework

You can search for specific versions with https://synscan.net/product/framework/1.2.3

Title	Severity	Exploit	Date	Affected Version
CVE-2015-0270	Critical		Oct 25, 2019	>= 2.3.0 < 2.3.5 < 2.2.10
CVE-2011-3825	Medium		Sep 24, 2011	== 1.11.3
CVE-2009-4417	Medium		Dec 24, 2009	== 0.9.0-beta == 1.7.3 == 1.9.0-beta_1 == 1.9.2 == 1.7.5 == 1.0.0 == 0.1.3-preview == 1.5.2 == 0.9.1-beta == 0.8.0-preview == 1.9.0-alpha_1 == 1.0.0-rc1 == 1.5.1 == 1.7.7 == 1.0.1 == 1.5.3 == 1.9 == 1.7.2 == 1.7.8 == 0.1.5-preview <= 1.9.6 == 1.0.0-rc3 == 1.9.0-rc1 == 1.5.0 == 1.7.1 == 1.5.0-rc1 == 1.8.0-alpha_1 == 1.0.0-rc2 == 1.7.0 == 1.6.0-rc3 == 1.6.2 == 1.8.3 == 1.6.0-rc2 == 1.5.0-rc2 == 1.9.5 == 1.5.0-rc3 == 1.8.2 == 1.8.0-beta_1 == 1.8.0 == 1.6.1 == 1.0.2 == 1.7.0-preview == 1.7.6 == 1.9.1 == 1.0.4 == 0.9.2-beta == 1.9.0 == 0.9.3-beta == 1.6.0 == 1.8.1 == 1.7.4 == 0.6.0-preview == 1.9.3 == 0.1.4-preview == 0.2.0-preview == 1.9.4 == 1.6.0-rc1 == 1.8.4 == 0.7.0-preview == 1.0.3 == 1.5.0-preview

themify / framework

You can search for specific versions with https://synscan.net/product/framework/1.2.3

Title	Severity	Exploit	Date	Affected Version
CVE-2013-20002	Critical		Jun 17, 2021	< 1.2.2

schben / framework

You can search for specific versions with https://synscan.net/product/framework/1.2.3

Title	Severity	Exploit	Date	Affected Version
CVE-2019-14987	Low		Aug 13, 2019	<= 2.0.7

adive / framework

You can search for specific versions with https://synscan.net/product/framework/1.2.3

Title	Severity	Exploit	Date	Affected Version
CVE-2020-7989	Medium		Jan 26, 2020	== 2.0.8
CVE-2020-7990	Medium		Jan 26, 2020	== 2.0.8
CVE-2020-7991	High		Jan 26, 2020	== 2.0.8

laravel / framework

You can search for specific versions with https://synscan.net/product/framework/1.2.3

Title	Severity	Exploit	Date	Affected Version
CVE-2024-13918	Medium		Mar 10, 2025	>= 11.9.0 < 11.36.0
CVE-2024-13919	Medium		Mar 10, 2025	>= 11.9.0 < 11.36.0
CVE-2025-27515	Medium		Mar 5, 2025	>= 12.0.0 < 12.1.1 >= 11.0.0 < 11.44.1 < 10.48.29
laravel framework SQL Injection via limit and offset functions	High		May 15, 2024	>= 6.0.0 < 6.20.26 >= 7.0.0 < 7.30.5 >= 8.0.0 < 8.40.0
laravel framework Unexpected database bindings via requests	High		May 15, 2024	>= 6.0.0 < 6.20.14 >= 7.0.0 < 7.30.4 >= 8.0.0 < 8.24.0
Laravel Guard bypass in Eloquent models	Medium		May 15, 2024	>= 5.5.0 <= 5.5.49 >= 6.0.0 < 6.18.34 >= 7.0.0 < 7.23.2
Laravel RCE vulnerability in "cookie" session driver	Critical		May 15, 2024	>= 4.1.0 < 6.18.31 >= 7.0.0 < 7.22.4
Laravel Cross-site Scripting (XSS) vulnerability in blade templating	Medium		May 15, 2024	>= 7.0.0 < 7.1.2
Laravel Cookie serialization vulnerability	High		May 15, 2024	>= 5.5.0 < 5.6.30
Laravel Encrypter Component Potential Decryption Failure Leading to Unintended Behavior	Medium		May 15, 2024	< 5.5.40 >= 5.6.0 < 5.6.15

‹
›

1
2
3
›

codeigniter4 / framework

You can search for specific versions with https://synscan.net/product/framework/1.2.3

Title	Severity	Exploit	Date	Affected Version
CVE-2025-54418	Critical		Jul 28, 2025	< 4.6.2
CVE-2025-45406	Medium		Jul 25, 2025	<= 4.6.2
CVE-2025-24013	Medium		Jan 21, 2025	< 4.5.8
CVE-2024-29904	High		Mar 29, 2024	< 4.4.7
CVE-2023-46240	High		Oct 31, 2023	< 4.4.3
CVE-2023-32692	Critical		May 30, 2023	< 4.3.5
CVE-2022-46170	Critical		Dec 22, 2022	< 4.2.11
CVE-2022-23556	High		Dec 22, 2022	< 4.2.11
CVE-2022-39284	Low		Oct 6, 2022	< 4.2.7
CVE-2022-24712	High		Feb 28, 2022	< 4.1.9

‹
›

1
2
›

silverstripe / framework

You can search for specific versions with https://synscan.net/product/framework/1.2.3

Title	Severity	Exploit	Date	Affected Version
Silverstripe Framework user enumeration via timing attack on login and password reset forms	Medium		Apr 10, 2025	>= 4.0.0 < 5.3.23
CVE-2025-30148	Medium		Apr 10, 2025	< 5.3.23
Reflected Cross Site Scripting (XSS) in error message	Low		Jan 23, 2025	< 5.3.8
Silverstripe Framework has a Reflected Cross Site Scripting (XSS) in error message	Low		Jan 14, 2025	< 5.3.8
CVE-2024-53277	Medium		Jan 14, 2025	< 5.3.8
CVE-2024-47605	Medium		Jan 14, 2025	< 5.3.8
CVE-2024-32981	Medium		Jul 17, 2024	< 5.2.16
Silverstripe uses TinyMCE which allows svg files linked in object tags	Medium		Jul 17, 2024	< 5.2.16
silverstripe/framework has potential SQL Injection vulnerability in PostgreSQL database connector	High		May 28, 2024	>= 4.0.0-rc1 < 4.0.6 >= 4.1.0-rc1 < 4.1.4 >= 4.2.0-rc1 < 4.2.3
silverstripe/framework has possible denial of service attack vector when flushing	High		May 28, 2024	>= 4.0.0-rc1 < 4.0.5 >= 4.1.0-rc1 < 4.1.3 >= 4.2.0-rc1 < 4.2.2

‹
›

1
2
3
4
5
6
7
8
›

topthink / framework

You can search for specific versions with https://synscan.net/product/framework/1.2.3

Title	Severity	Exploit	Date	Affected Version
CVE-2025-50706	Critical		Aug 5, 2025	<= 5.1.41
CVE-2024-34467	Medium		May 4, 2024	>= 8.0.0 < 8.0.4 >= 6.1.0 < 6.1.5 < 6.0.17
CVE-2022-47945	Critical		Dec 23, 2022	< 6.0.14
CVE-2022-44289	High		Dec 6, 2022	<= 5.0.24 >= 5.1 <= 5.1.41
CVE-2022-38352	Critical		Sep 15, 2022	<= 6.0.13
CVE-2022-33107	Critical		Jun 29, 2022	<= 6.0.12
CVE-2021-23592	Critical		May 6, 2022	< 6.0.12
CVE-2022-25481	High		Mar 21, 2022	<= 5.0.24
CVE-2021-36564	Critical		Dec 6, 2021	< 6.0.9
CVE-2021-36567	Critical		Dec 6, 2021	<= 6.0.8

nuxt / framework

You can search for specific versions with https://synscan.net/product/framework/1.2.3

Title	Severity	Exploit	Date	Affected Version
CVE-2022-4413	Medium		Dec 12, 2022	== 3.0.0-rc2 == 3.0.0-rc3 == 3.0.0-rc4 == 3.0.0-rc5 == 3.0.0-rc6 == 3.0.0-rc7 == 3.0.0-rc8 == 3.0.0-rc9 == 3.0.0-rc10 == 3.0.0-rc11 == 3.0.0-rc12 == 3.0.0-rc1
CVE-2022-4414	Medium		Dec 12, 2022	== 3.0.0-rc2 == 3.0.0-rc3 == 3.0.0-rc4 == 3.0.0-rc5 == 3.0.0-rc6 == 3.0.0-rc7 == 3.0.0-rc8 == 3.0.0-rc9 == 3.0.0-rc10 == 3.0.0-rc11 == 3.0.0-rc12 == 3.0.0-rc1

matyhtf / framework

You can search for specific versions with https://synscan.net/product/framework/1.2.3

Title	Severity	Exploit	Date	Affected Version
CVE-2021-43676	Critical		Dec 3, 2021	< 3.0.6

codeigniter / framework

You can search for specific versions with https://synscan.net/product/framework/1.2.3

Title	Severity	Exploit	Date	Affected Version
codeigniter/framework SQL injection in ODBC database driver	Critical		May 15, 2024	< 3.1.0
Inadequate XSS Prevention in CodeIgniter/Framework Security Library	Medium		May 15, 2024	< 3.0.3
CVE-2020-24950	High		Aug 11, 2023	< 1.4.10

flarum / framework

You can search for specific versions with https://synscan.net/product/framework/1.2.3

Title	Severity	Exploit	Date	Affected Version
CVE-2025-27794	Medium		Mar 12, 2025	< 1.8.10
CVE-2024-21641	Low		Jan 5, 2024	< 1.8.5
CVE-2023-40033	High		Aug 16, 2023	< 1.8.0

titon / framework

You can search for specific versions with https://synscan.net/product/framework/1.2.3

Title	Severity	Exploit	Date	Affected Version
titon/framework vulnerable to Remote Code Execution via Chosen-Ciphertext Attack	Critical		May 30, 2024	<= 0.1.0-alpha

basticom / framework

You can search for specific versions with https://synscan.net/product/framework/1.2.3

Title	Severity	Exploit	Date	Affected Version
CVE-2024-9443	Medium		Nov 5, 2024	< 1.5.1