Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • H
Authorization Bypass Through User-Controlled Key
Affects spree_api | Versions >=3.7.0.beta, <4.10.2>=5.0.0.rc1, <5.0.7>=5.1.0.beta, <5.1.9>=5.2.0.rc1, <5.2.5
Has fix
RubyGemsPublished 12 Jan 2026
  • H
Integer Overflow or Wraparound
Affects InternationalColorConsortium/DemoIccMAX | Versions [,2.3.1.1)
Has fix
Unmanaged (C/C++)Published 12 Jan 2026
  • H
Origin Validation Error
Affects mlflow | Versions [,3.5.0rc0)
Has fix
pipPublished 12 Jan 2026
  • M
Cross-site Scripting (XSS)
Affects nicegui | Versions [2.13.0,3.5.0)
Has fix
pipPublished 12 Jan 2026
  • C
Arbitrary Command Injection
Affects super-shell-mcp | Versions <2.0.15
Has fix
npmPublished 12 Jan 2026
  • M
Arbitrary Argument Injection
Affects smb4k | Versions [,4.0.5)
Has fix
Unmanaged (C/C++)Published 12 Jan 2026
  • H
External Control of File Name or Path
Affects smb4k | Versions [,4.0.5)
Has fix
Unmanaged (C/C++)Published 12 Jan 2026
  • M
Heap-based Buffer Overflow
Affects quickjs-ng/quickjs | Versions [0,]
Has fix
Unmanaged (C/C++)Published 12 Jan 2026
  • M
Heap-based Buffer Overflow
Affects quickjs-ng/quickjs | Versions [0,]
Has fix
Unmanaged (C/C++)Published 12 Jan 2026
  • H
Out-of-bounds Read
Affects openldap | Versions [0,]
Has fix
ConanPublished 12 Jan 2026
  • H
Out-of-bounds Read
Affects openldap.org | Versions [0,]
Has fix
Unmanaged (C/C++)Published 12 Jan 2026
  • M
NULL Pointer Dereference
Affects harfbuzz | Versions [0,]
Has fix
ConanPublished 12 Jan 2026
  • M
NULL Pointer Dereference
Affects harfbuzz/harfbuzz | Versions [0,]
Has fix
Unmanaged (C/C++)Published 12 Jan 2026
  • H
Server-side Request Forgery (SSRF)
Affects miniflux.app/v2/internal/urllib | Versions <2.2.16
Has fix
GoPublished 12 Jan 2026
  • H
Server-side Request Forgery (SSRF)
Affects miniflux.app/v2/internal/ui | Versions <2.2.16
Has fix
GoPublished 12 Jan 2026
  • H
Server-side Request Forgery (SSRF)
Affects miniflux.app/v2/internal/config | Versions <2.2.16
Has fix
GoPublished 12 Jan 2026
  • H
NULL Pointer Dereference
Affects sdl_image | Versions [0,]
Has fix
ConanPublished 12 Jan 2026
  • H
NULL Pointer Dereference
Affects sdl_image | Versions [,3.2.6)
Has fix
Unmanaged (C/C++)Published 12 Jan 2026
  • H
NULL Pointer Dereference
Affects saitoha/libsixel | Versions [,1.10.5)
Has fix
Unmanaged (C/C++)Published 12 Jan 2026
  • M
Server-side Request Forgery (SSRF)
Affects ghost | Versions >=5.38.0 <5.130.6>=6.0.0-alpha.1 <6.11.0
Has fix
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects @workleap-ai/shared | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects @t4i-cms-components/contact-card | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects gradle-plugin | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects yargs-js | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects tailwindcss-animate-tool | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects @gwp-gtmt-components/event-listener | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects rxjs-js | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects @maxcointech/simple-string-utils | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects lyonscg | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects react-hook-form-js | Versions *
No fix available
npmPublished 12 Jan 2026