Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All Vulnerabilities
APPLICATION
Cargo | Rust
Objective-C, CocoaPods | Swift
Composer | PHP
Conan | C/C++
GitHub | Go
Hex | Elixir / Erlang
Maven | Java
npm | JavaScript
NuGet | C#/F#/VB
Pypi | Python
pub | Dart, Flutter
RubyGems | Ruby
Swift Packages | Swift
C/C++
OPERATING SYSTEM
All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
MinimOS
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi
Report a new vulnerability
Vulnerabilities
Packages
H
External Control of File Name or Path
CVE-2026-26975
Affects
music-assistant
| Versions
[0,]
M
Directory Traversal
CVE-2026-25527
Affects
changedetection.io
| Versions
[,0.53.2)
H
Arbitrary Code Injection
CVE-2025-33240
Affects
megatron-bridge
| Versions
[0,]
H
Arbitrary Code Injection
CVE-2025-33239
Affects
megatron-bridge
| Versions
[0,]
M
External Control of File Name or Path
CVE-2026-24708
Affects
nova
| Versions
[0,]
L
Incomplete List of Disallowed Inputs
Affects
fickling
| Versions
[,0.1.8)
H
Deserialization of Untrusted Data
CVE-2025-33245
Affects
nemo-toolkit
| Versions
[,2.6.1)
H
Deserialization of Untrusted Data
CVE-2025-33253
Affects
nemo-toolkit
| Versions
[,2.6.1)
H
User Impersonation
CVE-2026-27197
Affects
sentry
| Versions
[21.12.0,]
M
Missing Authentication for Critical Function
CVE-2026-27482
Affects
ray
| Versions
[,2.54.0)
H
Directory Traversal
CVE-2026-2033
Affects
mlflow
| Versions
[,3.8.0rc0)
C
Use of Default Credentials
CVE-2026-2635
Affects
mlflow
| Versions
[2.3.2,]
H
Uncontrolled Search Path Element
CVE-2026-2492
Affects
tensorflow
| Versions
[,2.21.0rc0)
H
Information Exposure
CVE-2025-65995
Affects
apache-airflow
| Versions
[,2.11.1rc1)
H
Information Exposure
CVE-2025-65995
Affects
apache-airflow-task-sdk
| Versions
[,1.1.4rc1)
C
Arbitrary Code Injection
CVE-2026-27194
Affects
dtale
| Versions
[,3.20.0)
M
Arbitrary Code Injection
CVE-2026-26030
Affects
semantic-kernel
| Versions
[,1.39.4)
L
Use of Cache Containing Sensitive Information
CVE-2026-27205
Affects
flask
| Versions
[,3.1.3)
M
Improper Handling of Windows Device Names
CVE-2026-27199
Affects
werkzeug
| Versions
[,3.1.6)
H
Arbitrary Code Injection
CVE-2025-14009
Affects
nltk
| Versions
[,3.9.3)
H
Incomplete List of Disallowed Inputs
Affects
picklescan
| Versions
[,1.0.3)
M
Cross-site Scripting (XSS)
CVE-2026-25739
Affects
indico
| Versions
[,3.3.10)
M
Allocation of Resources Without Limits or Throttling
CVE-2026-27026
Affects
pypdf
| Versions
[,6.7.1)
M
Excessive Iteration
CVE-2026-27025
Affects
pypdf
| Versions
[,6.7.1)
M
Infinite loop
CVE-2026-27024
Affects
pypdf
| Versions
[,6.7.1)
M
Server-side Request Forgery (SSRF)
CVE-2026-25738
Affects
indico
| Versions
[,3.3.10)
M
Server-side Request Forgery (SSRF)
CVE-2026-26057
Affects
cisco-ai-skill-scanner
| Versions
[,1.0.2)
M
Server-side Request Forgery (SSRF)
CVE-2026-2654
Affects
smolagents
| Versions
[0,]
M
Arbitrary Argument Injection
CVE-2026-24126
Affects
weblate
| Versions
[,5.16)
C
Malicious Package
Affects
bignum
| Versions
[0,]