Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • C
Improper Handling of Case Sensitivity		org.apache.camel:camel-undertow[4.8.0,4.8.6)[4.10.0,4.10.3)Maven2 Apr 2025
  • H
Deserialization of Untrusted Data		io.jooby:jooby-pac4j[,2.17.0)[3.0.0.M1,3.7.0)Maven1 Apr 2025
  • H
Missing Release of Memory after Effective Lifetime		org.infinispan:infinispan-server-rest[0,]Maven31 Mar 2025
  • M
Improper Isolation or Compartmentalization		org.webjars.npm:electron[0,]Maven30 Mar 2025
  • M
Cross-site Scripting (XSS)		org.webjars.bower:contenttools[0,]Maven28 Mar 2025
  • M
Cross-site Scripting (XSS)		org.webjars.npm:contenttools[0,]Maven28 Mar 2025
  • H
Cross-site Scripting (XSS)		org.jboss.hal:hal-core[,3.6.21)[3.7.0,3.7.7)Maven28 Mar 2025
  • L
Insufficient Verification of Data Authenticity		org.wildfly.security:wildfly-elytron-http-oidc[1.17.0.Final,2.2.9.Final)[2.3.0.Final,2.6.2.Final)Maven28 Mar 2025
  • L
Arbitrary Code Injection		org.apache.kylin:kylin-datasource-sdk[4.0.0-alpha,]Maven28 Mar 2025
  • L
Arbitrary Code Injection		org.apache.kylin:kylin-core-common[4.0.0,]Maven28 Mar 2025
  • L
Arbitrary Code Injection		org.apache.kylin:kylin-common-service[0,]Maven28 Mar 2025
  • L
Server-side Request Forgery (SSRF)		org.apache.kylin:kylin-common-server[0,]Maven28 Mar 2025
  • M
Cross-site Scripting (XSS)		org.webjars.npm:vega-functions[,5.18.0)Maven27 Mar 2025
  • M
Cross-site Scripting (XSS)		org.webjars.npm:vega-functions[,5.18.0)Maven27 Mar 2025
  • M
Improper Handling of Highly Compressed Data (Data Amplification)		io.seata:seata-compressor-zstd[0,]Maven27 Mar 2025
  • M
Improper Handling of Highly Compressed Data (Data Amplification)		org.apache.seata:seata-compressor-zstd[,2.3.0)Maven27 Mar 2025
  • M
Deserialization of Untrusted Data		org.apache.seata:seata-config-core[2.0.0,2.2.0)Maven26 Mar 2025
  • M
Allocation of Resources Without Limits or Throttling		org.keycloak:keycloak-services[0,]Maven25 Mar 2025
  • M
Cross-site Scripting (XSS)		org.apache.oozie:oozie-core[0,]Maven25 Mar 2025
  • M
Incorrect Authorization		org.webjars.npm:vite[0,]Maven25 Mar 2025
  • H
Relative Path Traversal		org.apache.commons:commons-vfs2[,2.10.0)Maven25 Mar 2025
  • M
Insertion of Sensitive Information into Log File		org.apache.commons:commons-vfs2[,2.10.0)Maven25 Mar 2025
  • M
Server-side Request Forgery (SSRF)		org.webjars.bower:axios[0,]Maven23 Mar 2025
  • M
Server-side Request Forgery (SSRF)		org.webjars.npm:axios[,1.8.3)Maven23 Mar 2025
  • M
Server-side Request Forgery (SSRF)		org.webjars.bowergithub.axios:axios[0,]Maven23 Mar 2025
  • M
Server-side Request Forgery (SSRF)		org.apache.druid:druid-server[,31.0.2)[32.0.0,32.0.1)Maven23 Mar 2025
  • M
Uninitialized Memory Exposure		com.liferay:com.liferay.dynamic.data.mapping.form.web[,4.0.174)Maven23 Mar 2025
  • H
Denial of Service (DoS)		ai.h2o:h2o-ext-xgboost[3.34.0.1,]Maven21 Mar 2025
  • H
Improper Handling of Highly Compressed Data (Data Amplification)		ai.h2o:h2o-core[3.32.1.2,]Maven21 Mar 2025
  • H
Regular Expression Denial of Service (ReDoS)		ai.h2o:h2o-core[3.30.0.7,]Maven21 Mar 2025