Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • H
Server-side Request Forgery (SSRF)CVE-2026-41270
Affects flowise-components | Versions <3.1.0
Has fix
npmPublished 20 Apr 2026
  • H
Missing AuthorizationCVE-2026-40474
Affects wger | Versions [0,]
Has fix
pipPublished 20 Apr 2026
  • M
Open Redirect
Affects @saltcorn/server | Versions <1.4.6>=1.5.0-beta.0 <1.5.6>=1.6.0-alpha.0 <1.6.0-beta.5
Has fix
npmPublished 20 Apr 2026
  • H
Improper Neutralization of Special Elements in Data Query LogicCVE-2026-41274
Affects flowise-components | Versions >=2.2.3 <3.1.0
Has fix
npmPublished 20 Apr 2026
  • H
SQL InjectionCVE-2026-41478
Affects @saltcorn/data | Versions <1.4.6>=1.5.0-beta.0 <1.5.6>=1.6.0-alpha.0 <1.6.0-beta.5
Has fix
npmPublished 20 Apr 2026
  • H
SQL InjectionCVE-2026-41478
Affects @saltcorn/mobile-app | Versions <1.4.6>=1.5.0-beta.0 <1.5.6>=1.6.0-alpha.0 <1.6.0-beta.5
Has fix
npmPublished 20 Apr 2026
  • H
SQL InjectionCVE-2026-41478
Affects @saltcorn/server | Versions <1.4.6>=1.5.0-beta.0 <1.5.6>=1.6.0-alpha.0 <1.6.0-beta.5
Has fix
npmPublished 20 Apr 2026
  • H
Arbitrary Code InjectionCVE-2026-41138
Affects flowise-components | Versions >=1.3.0 <3.1.0
Has fix
npmPublished 20 Apr 2026
  • H
Directory TraversalCVE-2026-40256
Affects weblate | Versions [,5.17)
Has fix
pipPublished 20 Apr 2026
  • C
Partial String ComparisonCVE-2026-41268
Affects flowise | Versions <3.1.0
Has fix
npmPublished 20 Apr 2026
  • C
Partial String ComparisonCVE-2026-41268
Affects flowise-components | Versions <3.1.0
Has fix
npmPublished 20 Apr 2026
  • L
Authorization Bypass Through User-Controlled KeyCVE-2026-33212
Affects weblate | Versions [,5.17)
Has fix
pipPublished 20 Apr 2026
  • M
Missing AuthorizationCVE-2026-33214
Affects weblate | Versions [,5.17)
Has fix
pipPublished 20 Apr 2026
  • M
Symlink AttackCVE-2026-34242
Affects weblate | Versions [,5.17)
Has fix
pipPublished 20 Apr 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-33440
Affects weblate | Versions [,5.17)
Has fix
pipPublished 20 Apr 2026
  • H
Arbitrary File UploadCVE-2026-33435
Affects weblate | Versions [,5.17)
Has fix
pipPublished 20 Apr 2026
  • M
Directory TraversalCVE-2026-33220
Affects weblate | Versions [,5.17)
Has fix
pipPublished 20 Apr 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-39845
Affects weblate | Versions [,5.17)
Has fix
pipPublished 20 Apr 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-34244
Affects weblate | Versions [,5.17)
Has fix
pipPublished 20 Apr 2026
  • H
Incorrect AuthorizationCVE-2026-34393
Affects weblate | Versions [,5.17)
Has fix
pipPublished 20 Apr 2026
  • M
Cleartext Storage in a File or on DiskCVE-2026-6598
Affects langflow-base | Versions [,0.8.0)
Has fix
pipPublished 20 Apr 2026
  • H
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')CVE-2026-6599
Affects langflow-base | Versions [0,]
Has fix
pipPublished 20 Apr 2026
  • H
Arbitrary File UploadCVE-2026-6596
Affects langflow-base | Versions [,0.8.0)
Has fix
pipPublished 20 Apr 2026
  • M
Credential ExposureCVE-2026-6597
Affects langflow-base | Versions [,0.7.1)
Has fix
pipPublished 20 Apr 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-5052
Affects github.com/hashicorp/vault | Versions >=1.14.0 <2.0.0-rc1
Has fix
GoPublished 20 Apr 2026
  • M
Improper Certificate Validation
Affects rustls-webpki | Versions >=0.101.0 <0.103.12>=0.104.0-alpha.1 <0.104.0-alpha.6
Has fix
CargoPublished 20 Apr 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-5807
Affects github.com/hashicorp/vault/http | Versions <2.0.0
Has fix
GoPublished 20 Apr 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-5807
Affects github.com/hashicorp/vault/vault | Versions <2.0.0
Has fix
GoPublished 20 Apr 2026
  • H
Insertion of Sensitive Information Into Sent DataCVE-2026-4525
Affects github.com/hashicorp/vault/vault | Versions >=0.11.2 <2.0.0-rc1
Has fix
GoPublished 20 Apr 2026
  • H
Use After FreeCVE-2026-33018
Affects saitoha/libsixel | Versions [,1.8.7-r1)
Has fix
Unmanaged (C/C++)Published 20 Apr 2026