Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All Vulnerabilities
APPLICATION
Cargo
cocoapods
Composer
Conan
Go
hex
Maven
npm
NuGet
pip
pub
RubyGems
Swift
Unmanaged (C/C++)
OPERATING SYSTEM
All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi
Report a new vulnerability
VULNERABILITY
AFFECTS
TYPE
PUBLISHED
M
Cross-site Scripting (XSS)
librenms/librenms
<25.5.0
Composer
25 Jun 2025
H
Open Redirect
github.com/zitadel/zitadel/internal/api/http/middleware
<2.70.12
>=2.71.0 <2.71.11
>=3.0.0-rc.1 <3.2.2
Go
25 Jun 2025
C
External Control of File Name or Path
wazuh/wazuh
[,4.8.0)
Unmanaged (C/C++)
25 Jun 2025
C
Integer Overflow or Wraparound
dragonflydb/dragonfly
[0.7.0,1.30.0)
Unmanaged (C/C++)
25 Jun 2025
H
XML External Entity (XXE) Injection
io.qameta.allure.plugins:xunit-xml-plugin
[,2.34.1)
Maven
25 Jun 2025
H
XML External Entity (XXE) Injection
io.qameta.allure.plugins:trx-plugin
[,2.34.1)
Maven
25 Jun 2025
H
XML External Entity (XXE) Injection
io.qameta.allure.plugins:junit-xml-plugin
[,2.34.1)
Maven
25 Jun 2025
H
Incorrect Privilege Assignment
github.com/ubuntu/authd/internal/users/tempentries
<0.5.4
Go
25 Jun 2025
H
Incorrect Privilege Assignment
github.com/ubuntu/authd/internal/users
<0.5.4
Go
25 Jun 2025
C
Malicious Package
router-parse
*
npm
25 Jun 2025
C
Malicious Package
node-orm-mongoose
*
npm
25 Jun 2025
C
Malicious Package
vite-loader-svg
*
npm
25 Jun 2025
C
Malicious Package
vite-plugin-next-refresh
*
npm
25 Jun 2025
C
Malicious Package
sumsub-node-websdk
*
npm
25 Jun 2025
C
Malicious Package
react-plaid-sdk
*
npm
25 Jun 2025
C
UNIX Symbolic Link (Symlink) Following
gogs.io/gogs/internal/db
<0.13.3-rc.1
Go
25 Jun 2025
C
UNIX Symbolic Link (Symlink) Following
github.com/gogs/gogs/internal/db
<0.13.3-rc.1
Go
25 Jun 2025
H
Out-of-bounds Read
clamav
[1.2.0,1.4.3)
Unmanaged (C/C++)
25 Jun 2025
C
Malicious Package
psslib
[0,]
pip
25 Jun 2025
C
Heap-based Buffer Overflow
clamav
[,1.0.9)
[1.1.0-rc,1.4.3)
Unmanaged (C/C++)
25 Jun 2025
M
Cross-site Scripting (XSS)
gogs.io/gogs/public
<0.13.3-rc.1
Go
25 Jun 2025
M
Cross-site Scripting (XSS)
github.com/gogs/gogs/public
<0.13.3-rc.1
Go
25 Jun 2025
C
Malicious Package
vite-loader-svg
*
npm
25 Jun 2025
H
Improper Authorization
@anthropic-ai/claude-code
>=0.2.116 <1.0.24
npm
25 Jun 2025
M
Exposure of Sensitive System Information to an Unauthorized Control Sphere
umbraco.cms.web.backoffice
[10.0.0,10.8.11)
[13.0.0,13.9.2)
NuGet
25 Jun 2025
C
Malicious Package
eslint-disable-line
*
npm
25 Jun 2025
C
Malicious Package
hcbridge
*
npm
25 Jun 2025
C
Malicious Package
monorepo-lens
*
npm
25 Jun 2025
C
Malicious Package
adril712
*
npm
25 Jun 2025
H
Server-side Request Forgery (SSRF)
langchain
[,0.1.12)
pip
24 Jun 2025