Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • C
Improper Ownership Management
github.com/rancher/rancher/pkg/systemaccount>=2.8.0-alpha1 <2.9.9-alpha1>=2.10.0-alpha1 <2.10.5-alpha3>=2.11.0-alpha1 <2.11.1-alpha2Go27 Apr 2025
  • C
Improper Ownership Management
github.com/rancher/rancher/pkg/controllers/managementuser/secret>=2.8.0-alpha1 <2.9.9-alpha1>=2.10.0-alpha1 <2.10.5-alpha3>=2.11.0-alpha1 <2.11.1-alpha2Go27 Apr 2025
  • C
Improper Ownership Management
github.com/rancher/rancher/pkg/controllers/managementuser/rbac>=2.8.0-alpha1 <2.9.9-alpha1>=2.10.0-alpha1 <2.10.5-alpha3>=2.11.0-alpha1 <2.11.1-alpha2Go27 Apr 2025
  • C
Improper Ownership Management
github.com/rancher/rancher/pkg/controllers/management/auth>=2.8.0-alpha1 <2.9.9-alpha1>=2.10.0-alpha1 <2.10.5-alpha3>=2.11.0-alpha1 <2.11.1-alpha2Go27 Apr 2025
  • C
Improper Ownership Management
github.com/rancher/rancher/pkg/apis/management.cattle.io/v3>=2.8.0-alpha1 <2.9.9-alpha1>=2.10.0-alpha1 <2.10.5-alpha3>=2.11.0-alpha1 <2.11.1-alpha2Go27 Apr 2025
  • C
Improper Ownership Management
github.com/rancher/rancher/pkg/api/norman/store/scoped>=2.8.0-alpha1 <2.9.9-alpha1>=2.10.0-alpha1 <2.10.5-alpha3>=2.11.0-alpha1 <2.11.1-alpha2Go27 Apr 2025
  • C
Improper Ownership Management
github.com/rancher/rancher/pkg/api/norman/server/managementstored>=2.8.0-alpha1 <2.9.9-alpha1>=2.10.0-alpha1 <2.10.5-alpha3>=2.11.0-alpha1 <2.11.1-alpha2Go27 Apr 2025
  • C
Improper Ownership Management
github.com/rancher/rancher/pkg/api/norman/customization>=2.8.0-alpha1 <2.9.9-alpha1>=2.10.0-alpha1 <2.10.5-alpha3>=2.11.0-alpha1 <2.11.1-alpha2Go27 Apr 2025
  • L
Insecure Randomness
formidable>=2.1.0 <2.1.3>=3.1.1-canary.20211030 <3.5.3npm27 Apr 2025
  • C
Malicious Package
dowload_ebok_englens_spil_by_carlos_ruiz_zafon_iben_hasselbalch_lqvq8*npm25 Apr 2025
  • C
Malicious Package
dowload_ebok_he_is_a_beast_t04_by_saki_aikawa_9bj30*npm25 Apr 2025
  • C
Malicious Package
dowload_ebok_tragic_design_by_jonathan_shariat_cynthia_savard_saucier_0jkyy*npm25 Apr 2025
  • C
Malicious Package
dowload_ebok_si_la_verdad_te_incomoda_no_leas_este_libro_by_armando_r_manjarres_0qwta*npm25 Apr 2025
  • C
Malicious Package
dowload_ebok_warrior_cats_vision_von_schatten_die_mission_de_by_erin_hunter_djec8*npm25 Apr 2025
  • C
Malicious Package
dowload_ebok_verrassend_aanzoek_by_andie_brock_4mly7*npm25 Apr 2025
  • C
Malicious Package
dowload_ebok_historia_do_movimento_pentecostal_no_brasil_by_isael_de_araujo_k3o0z*npm25 Apr 2025
  • C
Malicious Package
dowload_ebok_a_bela_e_a_fera_by_elizabeth_rudnick_evan_spiliotopoulos_stephen_ch_9ooey*npm25 Apr 2025
  • C
Malicious Package
keypair-encryptor*npm25 Apr 2025
  • H
Server-side Request Forgery (SSRF)
github.com/kyverno/kyverno/pkg/webhooks/resource/validation<1.14.0Go25 Apr 2025
  • H
Server-side Request Forgery (SSRF)
github.com/kyverno/kyverno/pkg/webhooks/resource/mutation<1.14.0Go25 Apr 2025
  • H
Server-side Request Forgery (SSRF)
github.com/kyverno/kyverno/pkg/webhooks/resource/imageverification<1.14.0Go25 Apr 2025
  • H
Server-side Request Forgery (SSRF)
github.com/kyverno/kyverno/pkg/webhooks/resource<1.14.0Go25 Apr 2025
  • H
Server-side Request Forgery (SSRF)
github.com/kyverno/kyverno/pkg/webhooks/resource/generation<1.14.0Go25 Apr 2025
  • H
Server-side Request Forgery (SSRF)
github.com/kyverno/kyverno/pkg/utils/engine<1.14.0Go25 Apr 2025
  • H
Server-side Request Forgery (SSRF)
github.com/kyverno/kyverno/pkg/policy<1.14.0Go25 Apr 2025
  • H
Server-side Request Forgery (SSRF)
github.com/kyverno/kyverno/pkg/background/mutate<1.14.0Go25 Apr 2025
  • H
Server-side Request Forgery (SSRF)
github.com/kyverno/kyverno/pkg/background/generate<1.14.0Go25 Apr 2025
  • M
Improper Input Validation
org.springframework.boot:spring-boot-actuator-autoconfigure[2.7.0,3.3.11)[3.4.0,3.4.5)Maven25 Apr 2025
  • H
Allocation of Resources Without Limits or Throttling
antirez/redis[2.6.0-rc1,6.2.18)[7.0-rc1,7.2.8)[7.4-rc1,7.4.3)Unmanaged (C/C++)25 Apr 2025
  • M
Host Header Injection
croogo/croogo>=0.0.0Composer25 Apr 2025