Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • H
Insufficient Granularity of Access Control
Affects @paperclipai/server | Versions <2026.416.0
Has fix
npmPublished 5 May 2026
  • H
Arbitrary Command Injection
Affects @paperclipai/shared | Versions <2026.416.0
Has fix
npmPublished 5 May 2026
  • H
Arbitrary Command Injection
Affects @paperclipai/db | Versions <2026.416.0
Has fix
npmPublished 5 May 2026
  • H
Arbitrary Command Injection
Affects @paperclipai/server | Versions <2026.416.0
Has fix
npmPublished 5 May 2026
  • H
SQL InjectionCVE-2026-41640
Affects @nocobase/database | Versions <2.0.39
Has fix
npmPublished 5 May 2026
  • H
Directory Traversal
Affects @samanhappy/mcphub | Versions <0.12.13
Has fix
npmPublished 5 May 2026
  • M
Insufficient Verification of Data Authenticity
Affects @paperclipai/ui | Versions <2026.416.0
Has fix
npmPublished 5 May 2026
  • M
Insufficient Verification of Data Authenticity
Affects @paperclipai/shared | Versions <2026.416.0
Has fix
npmPublished 5 May 2026
  • M
Insufficient Verification of Data Authenticity
Affects @paperclipai/server | Versions <2026.416.0
Has fix
npmPublished 5 May 2026
  • M
Origin Validation ErrorCVE-2026-41886
Affects locize | Versions <4.0.21
Has fix
npmPublished 5 May 2026
  • M
Cross-site Scripting (XSS)CVE-2026-41591
Affects marko | Versions <5.38.36
Has fix
npmPublished 5 May 2026
  • M
Cross-site Scripting (XSS)CVE-2026-41591
Affects @marko/runtime-tags | Versions <6.0.164
Has fix
npmPublished 5 May 2026
  • M
External Control of File Name or Path
Affects @paperclipai/ui | Versions <2026.416.0
Has fix
npmPublished 5 May 2026
  • M
External Control of File Name or Path
Affects @paperclipai/server | Versions <2026.416.0
Has fix
npmPublished 5 May 2026
  • M
External Control of File Name or Path
Affects @paperclipai/db | Versions <2026.416.0
Has fix
npmPublished 5 May 2026
  • M
External Control of File Name or Path
Affects @paperclipai/adapter-codex-local | Versions <2026.416.0
Has fix
npmPublished 5 May 2026
  • H
Access Control BypassCVE-2026-35570
Affects @gitlawb/openclaude | Versions <0.5.1
Has fix
npmPublished 5 May 2026
  • M
External Control of File Name or Path
Affects @paperclipai/adapter-claude-local | Versions <2026.416.0
Has fix
npmPublished 5 May 2026
  • M
External Control of File Name or Path
Affects @paperclipai/adapter-utils | Versions <2026.416.0
Has fix
npmPublished 5 May 2026
  • M
External Control of File Name or Path
Affects @paperclipai/shared | Versions <2026.416.0
Has fix
npmPublished 5 May 2026
  • H
Insecure Default Initialization of Resource
Affects engramx | Versions <2.0.2
Has fix
npmPublished 5 May 2026
  • C
Arbitrary Code InjectionCVE-2026-41507
Affects math-codegen | Versions <0.4.3
Has fix
npmPublished 5 May 2026
  • H
Server-side Request Forgery (SSRF)CVE-2026-43526
Affects openclaw | Versions <2026.4.12
Has fix
npmPublished 5 May 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-43527
Affects openclaw | Versions <2026.4.14
Has fix
npmPublished 5 May 2026
  • M
Missing AuthorizationCVE-2026-42436
Affects openclaw | Versions <2026.4.14-beta.1
Has fix
npmPublished 5 May 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-42437
Affects openclaw | Versions <2026.4.10
Has fix
npmPublished 5 May 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-42437
Affects @openclaw/voice-call | Versions <2026.5.1-beta.1
Has fix
npmPublished 5 May 2026
  • M
Missing AuthorizationCVE-2026-42439
Affects openclaw | Versions <2026.4.10
Has fix
npmPublished 5 May 2026
  • M
UNIX Symbolic Link (Symlink) FollowingCVE-2026-43570
Affects openclaw | Versions >=2026.3.22 <2026.4.5
Has fix
npmPublished 5 May 2026
  • M
Missing AuthorizationCVE-2026-43572
Affects @openclaw/msteams | Versions <2026.5.1-beta.1
Has fix
npmPublished 5 May 2026