Known vulnerabilities in modules and components for cms

Forum & blogging software (79)

CMS (261)

Modules and components for CMS (89986)

CRM systems (56)

Cryptocurrency software (4)

E-Commerce systems (54)

Remote management & hosting panels (115)

JS libraries (187)

Other software (301)

Webmail solutions (14)

Improper input validation in Oracle Hospitality Reporting and Analytics20 Jan, 2021
High Patched

Remote code execution in Ignition19 Jan, 2021
High Patched

Cleartext storage of sensitive information in Jenkins Bumblebee HP ALM plugin14 Jan, 2021
Low Patched

Cross-site scripting in Jenkins TICS plugin14 Jan, 2021
Low Patched

Cleartext storage of sensitive information in Jenkins TraceTronic ECU-TEST plugin14 Jan, 2021
Low Patched

XML External Entity injection in TIBCO EBX13 Jan, 2021
Medium Patched

Remote code execution in Microsoft Visual Studio12 Jan, 2021
Medium Patched

Information disclosure in termius11 Jan, 2021
Medium Patched

Denial of service in Kozea CairoSVG11 Jan, 2021
Medium Patched

Input validation error in URI.js06 Jan, 2021
Medium Patched

Cleartext storage of passwords in parse-server NPM package30 Dec, 2020
Low Patched

Denial of service in date-and-time NPM package30 Dec, 2020
Medium Patched

Cross-site scripting in Pi-hole29 Dec, 2020
Medium Patched

Deserialization of untrusted data in Apache Tapestry28 Dec, 2020
High Patched

Information disclosure in HashiCorp Vault23 Dec, 2020
Medium Patched

Hardcoded session secret key in Apache Airflow23 Dec, 2020
High Patched

Cross-site scripting in dompurify package for NPM19 Dec, 2020
Low Patched

Remote command injection in systeminformation NPM18 Dec, 2020
High Patched

Denial of service in deepref package for npm16 Dec, 2020
Medium Patched

Multiple vulnerabilities in Ignite Realtime Openfire15 Dec, 2020
Low Patched

1
2
3
4
5
...
115