composer Latest Vulnerabilities
Latest vulnerabilities published by composer
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
GitHub OAuth Token Validation Issue in Composer Dependency Manager
CVE-2026-45793ComposerComposer7.5HIGHExposure of Credentials in Dependency Manager Versions by Composer
CVE-2026-59947ComposerComposer4.7MEDIUMRemote File Write Vulnerability in Composer Dependency Manager by Composer
CVE-2026-59948ComposerComposer7HIGHPath Traversal Vulnerability in Composer Dependency Manager
CVE-2026-59946ComposerComposer6.1MEDIUMCommand Injection Flaw in Composer Affects PHP Dependency Management
CVE-2026-40261ComposerComposerπΎπ°8.8HIGHCommand Injection Vulnerability in Composer Dependency Manager by PHP
CVE-2026-40176ComposerComposerπ7.8HIGHCommand Line Injection Vulnerability in Composer Dependency Manager
CVE-2025-67746ComposerComposer1.3LOWCross-Site Scripting Vulnerability in Visual Composer Website Builder by WPBakery
CVE-2025-46254Visual ComposerVisual Composer Websit...6.5MEDIUMDenial of Service Vulnerability in Docker Compose by Compose-Go Library
CVE-2024-10846Compose-specCompose-go5.9MEDIUMSpecially crafted branch names in Git repositories can execute code
CVE-2024-35241ComposerComposerπ°8.8HIGHCommand Injection Vulnerability in Composer Affects PHP Projects
CVE-2024-35242ComposerComposerπΎπ‘π°8.8HIGHArbitrary Code Execution Vulnerability in Composer Affects PHP Developers
CVE-2024-24821ComposerComposer8.8HIGHRemote Code Execution via web-accessible composer.phar
CVE-2023-43655ComposerComposer6.4MEDIUMMissing input validation can lead to command execution in composer
CVE-2022-24828ComposerComposer8.3HIGHCommand injection in composer on Windows
CVE-2021-41116ComposerComposer8.2HIGHMissing argument delimiter can lead to code execution via VCS repository URLs or source download URLs on systems with Mercurial in composer
CVE-2021-29472ComposerComposer8.8HIGHLocal privilege elevation in Composer-Setup for Windows
CVE-2020-15145ComposerWindows-setup6.7MEDIUMRemote Command Execution in Docker Compose Remote API by Snyk
CVE-2020-7606Docker-compose-re...Docker-compose-remote-api9.8CRITICAL