All disclosed vulnerabilities by Snyk

• • C
  Authentication Bypass in hawk (npm)

  Discovered by Christopher Langton
  22 May 2024
• • C
  Improper Certificate Validation in componentspace.saml2 (nuget)

  Discovered by Patrick van Ek
  26 Apr 2024
• • C
  Arbitrary Code Injection in mysql2 (npm)

  Discovered by zhaoyudi (Nebulalab)
  22 Apr 2024
• • H
  Prototype Pollution in lodash (npm)

  Discovered by Timothee Desurmont
  15 Apr 2024
• • H
  Prototype Pollution in lodash.zipobjectdeep (npm)

  Discovered by Timothee Desurmont
  15 Apr 2024
• • C
  Remote Code Execution (RCE) in mysql2 (npm)

  Discovered by Vsevolod Kokorin
  10 Apr 2024
• • M
  Prototype Poisoning in mysql2 (npm)

  Discovered by Vsevolod Kokorin
  9 Apr 2024
• • M
  Use of Web Browser Cache Containing Sensitive Information in mysql2 (npm)

  Discovered by Vsevolod Kokorin (Slonser)
  9 Apr 2024
• • M
  Out-of-bounds Read in pymongo (pip)

  Discovered by Vladimir Cherepanov
  5 Apr 2024
• • M
  Prototype Pollution in requirejs (npm)

  Discovered by Yuhan Gao
  1 Apr 2024