Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Incorrect Resource Transfer Between SpheresCVE-2026-49853
Affects tornado | Versions [,6.5.6)
Has fix
pipPublished 17 Jun 2026
  • M
Cross-site Scripting (XSS)
Affects html5lib | Versions [0,]
Has fix
pipPublished 17 Jun 2026
  • M
Cross-site Scripting (XSS)
Affects bleach | Versions [,6.4.0)
Has fix
pipPublished 17 Jun 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-5497
Affects vllm | Versions [, 0.19.1)
Has fix
pipPublished 17 Jun 2026
  • M
HTTP Request SmugglingCVE-2026-48746
Affects vllm | Versions [0.3.0, 0.22.0)
Has fix
pipPublished 17 Jun 2026
  • H
Reachable AssertionCVE-2026-41523
Affects vllm | Versions [,0.22.0)
Has fix
pipPublished 17 Jun 2026
  • H
Relative Path TraversalCVE-2026-50203
Affects apache-airflow-providers-sftp | Versions [,5.8.1)
Has fix
pipPublished 17 Jun 2026
  • H
Command Injection
Affects yt-dlp | Versions [2021.4.11, 2026.6.9)
Has fix
pipPublished 17 Jun 2026
  • H
Uncontrolled RecursionCVE-2026-48712
Affects org.webjars.npm:protobufjs | Versions [0,]
Has fix
MavenPublished 17 Jun 2026
  • H
Regular Expression Denial of Service (ReDoS)CVE-2026-48125
Affects org.webjars.npm:ua-parser-js | Versions [2.0.1,]
Has fix
MavenPublished 17 Jun 2026
  • M
Unintended Proxy or Intermediary ('Confused Deputy')CVE-2026-9595
Affects org.webjars.npm:webpack-dev-server | Versions [0,]
Has fix
MavenPublished 17 Jun 2026
  • C
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')CVE-2026-50574
Affects yt-dlp | Versions [,2026.6.9)
Has fix
pipPublished 17 Jun 2026
  • H
Directory TraversalCVE-2026-53571
Affects org.webjars.npm:vite | Versions [0,]
Has fix
MavenPublished 17 Jun 2026
  • M
Inefficient Algorithmic ComplexityCVE-2026-48988
Affects org.webjars.npm:markdown-it | Versions [0,]
Has fix
MavenPublished 17 Jun 2026
  • M
Cross-site Scripting (XSS)CVE-2026-56317
Affects org.webjars.npm:nuxt | Versions [0,]
Has fix
MavenPublished 17 Jun 2026
  • C
Open RedirectCVE-2026-56326
Affects org.webjars.npm:nuxt | Versions [0,]
Has fix
MavenPublished 17 Jun 2026
  • C
Embedded Malicious Code
Affects @mastra/node-speaker | Versions =0.1.1
Has fix
npmPublished 17 Jun 2026
  • H
Improper Restriction of Names for Files and Other ResourcesCVE-2026-50023
Affects yt-dlp | Versions [,2026.6.9)
Has fix
pipPublished 17 Jun 2026
  • M
Inefficient Algorithmic ComplexityCVE-2026-48988
Affects markdown-it | Versions <14.2.0
Has fix
npmPublished 17 Jun 2026
  • M
Reliance on Cookies without Validation and Integrity CheckingCVE-2026-50019
Affects yt-dlp | Versions [2023.9.24, 2026.6.9)
Has fix
pipPublished 17 Jun 2026
  • M
Exposure of Sensitive System Information to an Unauthorized Control Sphere
Affects nuxt | Versions >=4.0.0-alpha.1 <4.4.7
Has fix
npmPublished 17 Jun 2026
  • H
Directory TraversalCVE-2026-53571
Affects vite | Versions <6.4.3>=7.0.0-beta.0 <7.3.5>=8.0.0-beta.0 <8.0.16
Has fix
npmPublished 17 Jun 2026
  • H
Directory TraversalCVE-2026-53571
Affects vite-plus | Versions <0.1.24
Has fix
npmPublished 17 Jun 2026
  • M
Cross-site Scripting (XSS)CVE-2026-56317
Affects nuxt | Versions <3.21.7>=4.0.0-alpha.1 <4.4.7
Has fix
npmPublished 17 Jun 2026
  • M
Incorrect Default Permissions
Affects nuxt | Versions >=3.18.0 <3.21.7>=4.0.0-alpha.1 <4.4.7
Has fix
npmPublished 17 Jun 2026
  • C
Open RedirectCVE-2026-56326
Affects nuxt | Versions <3.21.7>=4.0.0-alpha.1 <4.4.7
Has fix
npmPublished 17 Jun 2026
  • M
Cross-site Scripting (XSS)CVE-2026-52725
Affects @angular/core | Versions <19.2.23>=20.0.0-next.0 <20.3.22>=21.0.0-next.0 <21.2.15>=22.0.0-next.0 <22.0.0-rc.2
Has fix
npmPublished 17 Jun 2026
  • M
Unintended Proxy or Intermediary ('Confused Deputy')CVE-2026-9595
Affects webpack-dev-server | Versions <5.2.5
Has fix
npmPublished 17 Jun 2026
  • H
Regular Expression Denial of Service (ReDoS)CVE-2026-48125
Affects ua-parser-js | Versions >=2.0.1 <2.0.10
Has fix
npmPublished 17 Jun 2026
  • H
Uncontrolled RecursionCVE-2026-48712
Affects protobufjs | Versions <7.6.1>=8.0.0 <8.4.1
Has fix
npmPublished 17 Jun 2026