Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All Vulnerabilities
APPLICATION
Cargo | Rust
Objective-C, CocoaPods | Swift
Composer | PHP
Conan | C/C++
GitHub | Go
Hex | Elixir / Erlang
Maven | Java
npm | JavaScript
NuGet | C#/F#/VB
Pypi | Python
pub | Dart, Flutter
RubyGems | Ruby
Swift Packages | Swift
C/C++
OPERATING SYSTEM
All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
MinimOS
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi
Report a new vulnerability
VULNERABILITY
AFFECTS
TYPE
PUBLISHED
M
Directory Traversal
mjml-core
*
npm
15 Dec 2025
C
Malicious Package
sd-security
*
npm
15 Dec 2025
C
Malicious Package
wfui-dbd-react-ui
*
npm
15 Dec 2025
C
Malicious Package
wfui-test-e2e
*
npm
15 Dec 2025
C
Malicious Package
wfui-dsm-react-ui
*
npm
15 Dec 2025
C
Malicious Package
polygon-src
*
npm
15 Dec 2025
C
Malicious Package
@revvity-signals/chemdraw-js
*
npm
15 Dec 2025
C
Malicious Package
sd-skbms
*
npm
15 Dec 2025
C
Malicious Package
bignumex
*
npm
15 Dec 2025
C
Malicious Package
@wb-drive/icons
*
npm
15 Dec 2025
C
Malicious Package
xboxlive-auth
*
npm
15 Dec 2025
C
Malicious Package
phx-core
*
npm
15 Dec 2025
C
Malicious Package
paypal-scripts-server-utils
*
npm
15 Dec 2025
C
Malicious Package
elf-stats-evergreen-muffin-867
*
npm
15 Dec 2025
C
Malicious Package
@mohamed1687/iut-encrypt
*
npm
15 Dec 2025
C
Malicious Package
elf-stats-sugarplum-fireplace-278
*
npm
15 Dec 2025
C
Malicious Package
elf-stats-candlelit-nutcracker-184
*
npm
15 Dec 2025
C
Malicious Package
elf-stats-marzipan-muffin-733
*
npm
15 Dec 2025
M
Cross-site Scripting (XSS)
vuetify
>=2.0.0 <3.0.0
npm
14 Dec 2025
H
Prototype Pollution
vuetify
>=2.2.0-beta.2 <3.0.0-alpha.10
npm
14 Dec 2025
H
Deserialization of Untrusted Data
@vitejs/plugin-rsc
<0.5.7
npm
12 Dec 2025
M
Exposure of Sensitive System Information to an Unauthorized Control Sphere
@vitejs/plugin-rsc
<0.5.7
npm
12 Dec 2025
H
Server-side Request Forgery (SSRF)
mcp-markdownify-server
*
npm
12 Dec 2025
M
Exposure of Sensitive System Information to an Unauthorized Control Sphere
next
>=15.0.0-rc.0 <15.0.6
>=15.1.0 <15.1.10
>=15.2.0-canary.0 <15.2.7
>=15.3.0-canary.0 <15.3.7
>=15.4.0-canary.0 <15.4.9
>=15.5.0 <15.5.8
>=16.0.0-beta.0 <16.0.9
>=16.1.0-canary.0 <16.1.0-canary.19
npm
12 Dec 2025
M
Exposure of Sensitive System Information to an Unauthorized Control Sphere
react-server-dom-turbopack
>=19.0.0 <19.0.2
>=19.1.0 <19.1.3
>=19.2.0 <19.2.2
npm
12 Dec 2025
M
Exposure of Sensitive System Information to an Unauthorized Control Sphere
react-server-dom-parcel
>=19.1.0 <19.1.3
>=19.2.0 <19.2.2
npm
12 Dec 2025
M
Exposure of Sensitive System Information to an Unauthorized Control Sphere
react-server-dom-webpack
>=19.0.0 <19.0.2
>=19.1.0 <19.1.3
>=19.2.0 <19.2.2
npm
12 Dec 2025
H
Deserialization of Untrusted Data
next
>=14.2.34 <14.2.35
>=15.0.6 <15.0.7
>=15.1.10 <15.1.11
>=15.2.7 <15.2.8
>=15.3.7 <15.3.8
>=15.4.9 <15.4.10
>=15.5.8 <15.5.9
>=16.0.9 <16.0.10
>=16.1.0-canary.0 <16.1.0-canary.19
npm
12 Dec 2025
H
Deserialization of Untrusted Data
react-server-dom-turbopack
>=19.0.2 <19.0.3
>=19.1.3 <19.1.4
>=19.2.2 <19.2.3
npm
12 Dec 2025
H
Deserialization of Untrusted Data
react-server-dom-parcel
>=19.1.3 <19.1.4
>=19.2.2 <19.2.3
npm
12 Dec 2025
