ysaxon/pyrocms-ssti-fix
Security fix for PyroCMS SSTI vulnerability (CVE-2023-29689). Applies Twig sandbox to user-editable templates.
时间:2026-01-09 20:30
enlightn/security-checker
A PHP dependency vulnerabilities scanner based on the Security Advisories Database.
时间:2026-01-04 10:22
bear/security
PHP security vulnerability scanner with SAST and DAST capabilities
时间:2025-12-29 16:07
shieldci/laravel
ShieldCI Laravel Package - Security and code quality analysis for Laravel applications
时间:2025-11-11 15:07
wubinworks/module-session-reaper-patch
Patch for CVE-2025-54236(a.k.a Session Reaper) which allows customer account takeover and RCE under certain conditions. This patch is actually a Magento 2 extension and universal compatible for Magento 2.3 & 2.4. If you cannot upgrade Magento or cannot apply the official hotfix, try this one.
时间:2025-10-19 12:40
obresoft/racoony
A security-first static analysis tool for PHP applications and frameworks. Identifies risky patterns and vulnerabilities based on CWE classifications.
时间:2025-10-09 22:32
artflow-studio/laravel-security
Laravel package that scans applications (including Livewire) for security vulnerabilities, reports issues with severity levels, and provides remediation guidance and optional automated fixes.
时间:2025-10-08 06:54
smnandre/packapi
PHP library for retrieving package metadata, download statistics, security advisories, and quality metrics from Composer, NPM, GitHub, jsDelivr, and OSV databases
时间:2025-09-07 02:13
hfryan/php-cop
PHP Cop checks composer.lock and flags outdated or suspicious packages.
时间:2025-09-05 20:59
mohamedhekal/laravel-vulnerability-audit
A comprehensive security audit package for Laravel applications that scans for vulnerabilities, weak configurations, and security best practices.
时间:2025-07-26 21:21
wangyihang/vulnerable-php-lib
A collection of vulnerable PHP functions for security testing and education purposes
时间:2025-07-25 08:23
yousha/php-security-linter
A PHP tool to lint PHP files for security issues based on CIS and OWASP best practices.
时间:2025-04-08 14:12
wubinworks/module-jwt-auth-patch
Fix the JWT authentication vulnerability on certain Magento 2 versions. Deny tokens issued by old encryption key. If you cannot upgrade Magento or cannot apply the official patch, try this one.
时间:2024-12-10 05:54
typisttech/wordfence-api
Fetch WordPress vulnerability information from Wordfence vulnerability data feed.
时间:2024-12-03 08:37
wubinworks/module-template-filter-patch
Magento 2 patch for CVE-2022-24086, CVE-2022-24087. Fix the RCE vulnerability and related bugs by performing deep template variable escaping. If you cannot upgrade Magento or cannot apply the official patches, try this one.
时间:2024-11-25 10:14