composer Latest Vulnerabilities
Latest vulnerabilities published by composer
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Command Injection Flaw in Composer Affects PHP Dependency Management
CVE-2026-40261ComposerComposer8.8HIGHCommand Injection Vulnerability in Composer Dependency Manager by PHP
CVE-2026-40176ComposerComposer7.8HIGHCommand Line Injection Vulnerability in Composer Dependency Manager
CVE-2025-67746ComposerComposer1.3LOWCross-Site Scripting Vulnerability in Visual Composer Website Builder by WPBakery
CVE-2025-46254Visual ComposerVisual Composer Websit...5.4MEDIUMDenial of Service Vulnerability in Docker Compose by Compose-Go Library
CVE-2024-10846Compose-specCompose-go5.9MEDIUMSpecially crafted branch names in Git repositories can execute code
CVE-2024-35241ComposerComposerπ°8.8HIGHCommand Injection Vulnerability in Composer Affects PHP Projects
CVE-2024-35242ComposerComposerπΎπ‘EPSS 23%π°8.8HIGHMissing Authorization vulnerability Affects Live Composer Page Builder
CVE-2024-32957Live ComposerArbitrary Code Execution Vulnerability in Composer Affects PHP Developers
CVE-2024-24821ComposerComposer8.8HIGHRemote Code Execution via web-accessible composer.phar
CVE-2023-43655ComposerComposer6.4MEDIUMMissing input validation can lead to command execution in composer
CVE-2022-24828ComposerComposer8.3HIGHCommand injection in composer on Windows
CVE-2021-41116ComposerComposer8.2HIGHMissing argument delimiter can lead to code execution via VCS repository URLs or source download URLs on systems with Mercurial in composer
CVE-2021-29472ComposerComposer8.8HIGHLocal privilege elevation in Composer-Setup for Windows
CVE-2020-15145ComposerWindows-setup6.7MEDIUMRemote Command Execution in Docker Compose Remote API by Snyk
CVE-2020-7606Docker-compose-re...Docker-compose-remote-api9.8CRITICAL