Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • C
Malicious Package		email-regexed*npm3 Dec 2025
  • M
Regular Expression Denial of Service (ReDoS)		peewee[,3.18.3)pip3 Dec 2025
  • C
Arbitrary Code Injection		next>=14.3.0-canary.77 <15.0.5>=15.1.0 <15.1.9>=15.2.0-canary.0 <15.2.6>=15.3.0-canary.0 <15.3.6>=15.4.0-canary.0 <15.4.8>=15.5.0 <15.5.7>=16.0.0-beta.0 <16.0.7npm3 Dec 2025
  • C
Arbitrary Code Injection		react-server-dom-turbopack>=19.0.0-rc.0 <19.0.1>=19.1.0 <19.1.2>=19.2.0 <19.2.1npm3 Dec 2025
  • C
Arbitrary Code Injection		react-server-dom-parcel>=19.1.0 <19.1.2>=19.2.0 <19.2.1npm3 Dec 2025
  • C
Arbitrary Code Injection		react-server-dom-webpack>=19.0.0-rc.0 <19.0.1>=19.1.0 <19.1.2>=19.2.0 <19.2.1npm3 Dec 2025
  • H
Arbitrary Command Injection		feehi/cms>=0.0.1Composer3 Dec 2025
  • M
Deserialization of Untrusted Data		org.nutz.cloud:nutzcloud-loach-server[0,]Maven3 Dec 2025
  • M
Deserialization of Untrusted Data		org.nutz.cloud:nutzcloud-literpc[0,]Maven3 Dec 2025
  • M
Cross-site Scripting (XSS)		calibreweb[0,]pip3 Dec 2025
  • H
Arbitrary File Upload		mautic/core-lib>=4.0.0-alpha1, <4.4.18>=5.0.0-alpha, <5.2.9>=6.0.0-alpha, <6.0.7Composer3 Dec 2025
  • H
Arbitrary File Upload		mautic/core>=4.0.0-alpha1, <4.4.18>=5.0.0-alpha, <5.2.9>=6.0.0-alpha, <6.0.7Composer3 Dec 2025
  • C
Access Control Bypass		mautic/core-lib>=4.0.0-alpha1, <4.4.18>=5.0.0-alpha, <5.2.9>=6.0.0-alpha, <6.0.7Composer3 Dec 2025
  • C
Access Control Bypass		mautic/core>=4.0.0-alpha1, <4.4.18>=5.0.0-alpha, <5.2.9>=6.0.0-alpha, <6.0.7Composer3 Dec 2025
  • H
Arbitrary File Upload		@evershop/evershop<2.1.0npm3 Dec 2025
  • H
Unsafe Dependency Resolution		dcat/laravel-admin>=0.1.0Composer3 Dec 2025
  • H
Incomplete Cleanup		org.apache.struts:struts2-core[,6.8.0)[7.0.0,7.1.1)Maven3 Dec 2025
  • C
Malicious Package		buffer-envjs*npm3 Dec 2025
  • M
Allocation of Resources Without Limits or Throttling		cpython[0,]Conan3 Dec 2025
  • M
Allocation of Resources Without Limits or Throttling		python[,3.14.1)Unmanaged (C/C++)3 Dec 2025
  • M
Excessive Iteration		facebook/proxygen[2025.08.25.00,2025.12.02.00)Unmanaged (C/C++)3 Dec 2025
  • H
Uncontrolled Search Path Element		vim/vim[,9.1.1947)Unmanaged (C/C++)3 Dec 2025
  • M
Incomplete Filtering of Special Elements		github.com/haproxytech/kubernetes-ingress/pkg<3.1.13Go3 Dec 2025
  • H
Cross-site Scripting (XSS)		aimeos/ai-cms-grapesjs>=2022.4.1, <2022.10.9>=2023.4.1, <2023.10.15>=2024.4.1, <2024.10.8>=2025.4.1, <2025.10.2Composer3 Dec 2025
  • M
Improper Restriction of Rendered UI Layers or Frames		feehi/cms>=0.0.1Composer3 Dec 2025
  • H
Allocation of Resources Without Limits or Throttling		sqlparse[,0.5.4)pip3 Dec 2025
  • M
Authorization Bypass Through User-Controlled Key		feehi/cms>=0.0.1Composer3 Dec 2025
  • M
Use of Hard-coded Cryptographic Key		arcade-mcp-server[,1.9.1)pip3 Dec 2025
  • M
Use of Hard-coded Cryptographic Key		arcade-mcp[,1.5.6)pip3 Dec 2025
  • M
Cross-site Scripting (XSS)		feehi/cms>=0.0.1Composer3 Dec 2025