Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
Cross-site Scripting (XSS)
librenms/librenms<25.5.0Composer25 Jun 2025
  • H
Open Redirect
github.com/zitadel/zitadel/internal/api/http/middleware<2.70.12>=2.71.0 <2.71.11>=3.0.0-rc.1 <3.2.2Go25 Jun 2025
  • C
External Control of File Name or Path
wazuh/wazuh[,4.8.0)Unmanaged (C/C++)25 Jun 2025
  • C
Integer Overflow or Wraparound
dragonflydb/dragonfly[0.7.0,1.30.0)Unmanaged (C/C++)25 Jun 2025
  • H
XML External Entity (XXE) Injection
io.qameta.allure.plugins:xunit-xml-plugin[,2.34.1)Maven25 Jun 2025
  • H
XML External Entity (XXE) Injection
io.qameta.allure.plugins:trx-plugin[,2.34.1)Maven25 Jun 2025
  • H
XML External Entity (XXE) Injection
io.qameta.allure.plugins:junit-xml-plugin[,2.34.1)Maven25 Jun 2025
  • H
Incorrect Privilege Assignment
github.com/ubuntu/authd/internal/users/tempentries<0.5.4Go25 Jun 2025
  • H
Incorrect Privilege Assignment
github.com/ubuntu/authd/internal/users<0.5.4Go25 Jun 2025
  • C
Malicious Package
router-parse*npm25 Jun 2025
  • C
Malicious Package
node-orm-mongoose*npm25 Jun 2025
  • C
Malicious Package
vite-loader-svg*npm25 Jun 2025
  • C
Malicious Package
vite-plugin-next-refresh*npm25 Jun 2025
  • C
Malicious Package
sumsub-node-websdk*npm25 Jun 2025
  • C
Malicious Package
react-plaid-sdk*npm25 Jun 2025
  • C
UNIX Symbolic Link (Symlink) Following
gogs.io/gogs/internal/db<0.13.3-rc.1Go25 Jun 2025
  • C
UNIX Symbolic Link (Symlink) Following
github.com/gogs/gogs/internal/db<0.13.3-rc.1Go25 Jun 2025
  • H
Out-of-bounds Read
clamav[1.2.0,1.4.3)Unmanaged (C/C++)25 Jun 2025
  • C
Malicious Package
psslib[0,]pip25 Jun 2025
  • C
Heap-based Buffer Overflow
clamav[,1.0.9)[1.1.0-rc,1.4.3)Unmanaged (C/C++)25 Jun 2025
  • M
Cross-site Scripting (XSS)
gogs.io/gogs/public<0.13.3-rc.1Go25 Jun 2025
  • M
Cross-site Scripting (XSS)
github.com/gogs/gogs/public<0.13.3-rc.1Go25 Jun 2025
  • C
Malicious Package
vite-loader-svg*npm25 Jun 2025
  • H
Improper Authorization
@anthropic-ai/claude-code>=0.2.116 <1.0.24npm25 Jun 2025
  • M
Exposure of Sensitive System Information to an Unauthorized Control Sphere
umbraco.cms.web.backoffice[10.0.0,10.8.11)[13.0.0,13.9.2)NuGet25 Jun 2025
  • C
Malicious Package
eslint-disable-line*npm25 Jun 2025
  • C
Malicious Package
hcbridge*npm25 Jun 2025
  • C
Malicious Package
monorepo-lens*npm25 Jun 2025
  • C
Malicious Package
adril712*npm25 Jun 2025
  • H
Server-side Request Forgery (SSRF)
langchain[,0.1.12)pip24 Jun 2025