Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All Vulnerabilities
APPLICATION
Cargo | Rust
Objective-C, CocoaPods | Swift
Composer | PHP
Conan | C/C++
GitHub | Go
Hex | Elixir / Erlang
Maven | Java
npm | JavaScript
NuGet | C#/F#/VB
Pypi | Python
pub | Dart, Flutter
RubyGems | Ruby
Swift Packages | Swift
C/C++
OPERATING SYSTEM
All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
MinimOS
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi
Report a new vulnerability
Vulnerabilities
Packages
C
Insufficiently Protected Credentials
CVE-2026-48039
Affects
meta-ads-mcp
| Versions
[,1.0.109)
M
Cross-site Scripting (XSS)
CVE-2025-70960
Affects
tendenci
| Versions
[0,]
H
Command Injection
CVE-2023-25617
Affects
sap-ai-sdk-base
| Versions
[0,]
H
Directory Traversal
CVE-2026-47731
Affects
ait-core
| Versions
[,2.6.1)
[3.1.0,3.1.1)
C
Arbitrary Command Injection
CVE-2026-47708
Affects
stata-mcp
| Versions
[,1.17.3)
L
Improper Verification of Cryptographic Signature
CVE-2026-47192
Affects
kas
| Versions
[4.8,5.3)
L
Improper Verification of Cryptographic Signature
CVE-2026-47191
Affects
kas
| Versions
[,5.3)
H
Command Injection
CVE-2017-14176
Affects
bzr
| Versions
[0,]
H
Untrusted Search Path
CVE-2026-47211
Affects
ouroboros-ai
| Versions
[,0.39.0)
M
Server-side Request Forgery (SSRF)
CVE-2026-46526
Affects
local-deep-research
| Versions
[,1.6.10)
H
Access Control Bypass
CVE-2026-44730
Affects
pycti
| Versions
[,6.9.7)
H
Arbitrary Code Injection
CVE-2026-31225
Affects
superduper-framework
| Versions
[0,]
H
Directory Traversal
CVE-2026-45727
Affects
cloakbrowser
| Versions
[,0.3.28)
H
Insufficient Session Expiration
Affects
edumfa
| Versions
[,2.9.1)
H
Improper Input Validation
Affects
edumfa
| Versions
[,2.9.1)
H
Improper Authorization
Affects
edumfa
| Versions
[,2.9.1)
H
Deserialization of Untrusted Data
Affects
graphitedb
| Versions
[,0.2)
M
Use of Incorrect Operator
CVE-2026-44722
Affects
pyzipper
| Versions
[,0.4.0)
H
Origin Validation Error
CVE-2026-55837
Affects
dbt-mcp
| Versions
[,1.20.0)
M
Arbitrary Code Injection
CVE-2026-31253
Affects
flash-attn
| Versions
[0,]
M
Cross-site Scripting (XSS)
CVE-2026-13225
Affects
pretix
| Versions
[,2026.3.4)
[2026.4.0,2026.4.4)
[2026.5.0,2026.5.2)
H
Cross-site Scripting (XSS)
CVE-2026-57532
Affects
pretix
| Versions
[,2026.3.4)
[2026.4.0,2026.4.4)
[2026.5.0,2026.5.2)
L
Cross-site Scripting (XSS)
CVE-2026-57533
Affects
pretix
| Versions
[,2026.3.4)
[2026.4.0,2026.4.4)
[2026.5.0,2026.5.2)
L
Cross-site Scripting (XSS)
CVE-2026-57535
Affects
pretix
| Versions
[,2026.3.4)
[2026.4.0,2026.4.4)
[2026.5.0,2026.5.2)
L
Access Control Bypass
CVE-2026-48617
Affects
nodejs
| Versions
[22.20.0,]
H
Authorization Bypass Through User-Controlled Key
CVE-2026-9712
Affects
pretix
| Versions
[,2026.2.2)
[2026.3.0,2026.3.2)
[2026.4.0,2026.4.2)
M
Improper Handling of Insufficient Permissions or Privileges
CVE-2026-11764
Affects
pretix
| Versions
[,2026.3.3)
[2026.4.0,2026.4.3)
[2026.5.0,2026.5.1)
L
Symlink Attack
CVE-2026-12567
Affects
bbot
| Versions
[2.0.0,2.8.5)
M
UNIX Symbolic Link (Symlink) Following
CVE-2026-12565
Affects
bbot
| Versions
[2.3.1,2.8.5)
H
Out-of-bounds Read
CVE-2026-12568
Affects
bbot
| Versions
[2.1.0,2.8.6)