Vulnerability Database

  • Total number of vulnerabilities in the DB: 296,147
With exploit

zend / framework

Title Severity Exploit Date Affected Version
CVE-2015-0270 Critical Oct 25, 2019 >= 2.3.0 < 2.3.5
< 2.2.10
CVE-2009-4417 Medium Dec 24, 2009 == 0.9.0-beta
== 1.7.3
== 1.9.0-beta_1
== 1.9.2
== 1.7.5
== 1.0.0
== 0.1.3-preview
== 1.5.2
== 0.9.1-beta
== 0.8.0-preview
== 1.9.0-alpha_1
== 1.0.0-rc1
== 1.5.1
== 1.7.7
== 1.0.1
== 1.5.3
== 1.9
== 1.7.2
== 1.7.8
== 0.1.5-preview
<= 1.9.6
== 1.0.0-rc3
== 1.9.0-rc1
== 1.5.0
== 1.7.1
== 1.5.0-rc1
== 1.8.0-alpha_1
== 1.0.0-rc2
== 1.7.0
== 1.6.0-rc3
== 1.6.2
== 1.8.3
== 1.6.0-rc2
== 1.5.0-rc2
== 1.9.5
== 1.5.0-rc3
== 1.8.2
== 1.8.0-beta_1
== 1.8.0
== 1.6.1
== 1.0.2
== 1.7.0-preview
== 1.7.6
== 1.9.1
== 1.0.4
== 0.9.2-beta
== 1.9.0
== 0.9.3-beta
== 1.6.0
== 1.8.1
== 1.7.4
== 0.6.0-preview
== 1.9.3
== 0.1.4-preview
== 0.2.0-preview
== 1.9.4
== 1.6.0-rc1
== 1.8.4
== 0.7.0-preview
== 1.0.3
== 1.5.0-preview

schben / framework

Title Severity Exploit Date Affected Version
CVE-2019-14987 Low Aug 13, 2019 <= 2.0.7

Composer icon laravel / framework

Title Severity Exploit Date Affected Version
CVE-2025-27515 Medium Mar 5, 2025 >= 12.0.0 < 12.1.1
>= 11.0.0 < 11.44.1
< 10.48.29
Laravel Encrypter Component Potential Decryption Failure Leading to Unintended Behavior Medium May 15, 2024 < 5.5.40
>= 5.6.0 < 5.6.15
CVE-2020-19316 High Dec 20, 2021 < 5.8.17
CVE-2021-43808 Medium Dec 8, 2021 < 6.20.42
>= 7.0.0 < 7.30.6
>= 8.0.0 < 8.75.0
CVE-2021-43617 Critical Nov 14, 2021 <= 8.70.2
SQL Server LIMIT / OFFSET SQL Injection in laravel/framework and illuminate/database High Apr 29, 2021 >= 8.0.0 < 8.40.0
< 6.20.26
Unexpected database bindings High Feb 2, 2021 < 6.20.14
>= 7.0.0 < 7.30.4
>= 8.0.0 < 8.24.0
CVE-2021-21263 Medium Jan 19, 2021 < 6.20.12
>= 7.0.0 < 7.30.3
>= 8.0.0 < 8.22.1
CVE-2020-24941 High Sep 4, 2020 < 6.18.35
>= 7.0.0 < 7.24.0

Composer icon codeigniter4 / framework

Title Severity Exploit Date Affected Version
CVE-2025-54418 Critical Jul 28, 2025 < 4.6.2
CVE-2025-45406 Medium Jul 25, 2025 <= 4.6.2
CVE-2025-24013 Medium Jan 21, 2025 < 4.5.8
CVE-2024-29904 High Mar 29, 2024 < 4.4.7
CVE-2023-46240 High Oct 31, 2023 < 4.4.3
CVE-2023-32692 Critical May 30, 2023 < 4.3.5
CVE-2022-46170 Critical Dec 22, 2022 < 4.2.11
CVE-2022-23556 High Dec 22, 2022 < 4.2.11
CVE-2022-39284 Low Oct 6, 2022 < 4.2.7
CVE-2022-24712 High Feb 28, 2022 < 4.1.9

Composer icon silverstripe / framework

Title Severity Exploit Date Affected Version
CVE-2025-30148 Medium Apr 10, 2025 < 5.3.23
Reflected Cross Site Scripting (XSS) in error message Low Jan 23, 2025 < 5.3.8
Silverstripe Framework has a Reflected Cross Site Scripting (XSS) in error message Low Jan 14, 2025 < 5.3.8
CVE-2024-53277 Medium Jan 14, 2025 < 5.3.8
CVE-2024-47605 Medium Jan 14, 2025 < 5.3.8
CVE-2024-32981 Medium Jul 17, 2024 < 5.2.16
Silverstripe uses TinyMCE which allows svg files linked in object tags Medium Jul 17, 2024 < 5.2.16
silverstripe/framework ReadOnly transformation for formfields exploitable Medium May 23, 2024 < 3.1.21
>= 3.2.0 < 3.2.6
>= 3.3.0 < 3.3.4
>= 3.4.0 < 3.4.2
Silverstripe Hostname, IP and Protocol Spoofing through HTTP Headers Medium May 23, 2024 < 3.1.17
>= 3.2.0 < 3.2.2
>= 3.3.0-beta1 < 3.3.0
Silverstripe CSRF vulnerability in GridFieldAddExistingAutocompleter Medium May 23, 2024 < 3.1.17
>= 3.2.0 < 3.2.2
>= 3.3.0-beta1 < 3.3.0

Composer icon topthink / framework

Title Severity Exploit Date Affected Version
CVE-2025-50706 Critical Aug 5, 2025 <= 5.1.41
CVE-2024-34467 Medium May 4, 2024 >= 8.0.0 < 8.0.4
>= 6.1.0 < 6.1.5
< 6.0.17
CVE-2022-47945 Critical Dec 23, 2022 < 6.0.14
CVE-2022-44289 High Dec 6, 2022 <= 5.0.24
>= 5.1 <= 5.1.41
CVE-2022-38352 Critical Sep 15, 2022 <= 6.0.13
CVE-2022-33107 Critical Jun 29, 2022 <= 6.0.12
CVE-2021-23592 Critical May 6, 2022 < 6.0.12
CVE-2022-25481 High Mar 21, 2022 <= 5.0.24
CVE-2021-36564 Critical Dec 6, 2021 < 6.0.9
CVE-2021-36567 Critical Dec 6, 2021 <= 6.0.8

Composer icon matyhtf / framework

Title Severity Exploit Date Affected Version
CVE-2021-43676 Critical Dec 3, 2021 < 3.0.6

Composer icon codeigniter / framework

Title Severity Exploit Date Affected Version
codeigniter/framework SQL injection in ODBC database driver Critical May 15, 2024 < 3.1.0
Inadequate XSS Prevention in CodeIgniter/Framework Security Library Medium May 15, 2024 < 3.0.3
CVE-2020-24950 High Aug 11, 2023 < 1.4.10

Composer icon flarum / framework

Title Severity Exploit Date Affected Version
CVE-2025-27794 Medium Mar 12, 2025 < 1.8.10
CVE-2024-21641 Low Jan 5, 2024 < 1.8.5
CVE-2023-40033 High Aug 16, 2023 < 1.8.0

basticom / framework

Title Severity Exploit Date Affected Version
CVE-2024-9443 Medium Nov 5, 2024 < 1.5.1