Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
L Protection Mechanism Failure	@anthropic-ai/sandbox-runtime<0.0.16	npm	5 Dec 2025
M Incorrect Authorization	github.com/smallstep/certificates/api<0.29.0	Go	5 Dec 2025
M Incorrect Authorization	github.com/smallstep/certificates/authority/provisioner<0.29.0	Go	5 Dec 2025
M Directory Traversal	composio-core[0,]	pip	5 Dec 2025
M Open Redirect	com.linecorp.centraldogma:centraldogma-server-auth-shiro[,0.78.0)	Maven	5 Dec 2025
H Directory Traversal	alexusmai/laravel-file-manager<3.3.2	Composer	5 Dec 2025
M Access Control Bypass	open-webui[0,]	pip	5 Dec 2025
M Server-side Request Forgery (SSRF)	open-webui[,0.6.37)	pip	5 Dec 2025
M Cross-site Scripting (XSS)	open-webui[,0.6.37)	pip	5 Dec 2025
C Malicious Package	node-dpapi1*	npm	5 Dec 2025
C Malicious Package	chai-promised-chain*	npm	5 Dec 2025
C Malicious Package	json-map-source*	npm	5 Dec 2025
C Malicious Package	dotnetenv*	npm	5 Dec 2025
M Insertion of Sensitive Information into Log File	ansible[,12.0.0)	pip	5 Dec 2025
H XML External Entity (XXE) Injection	org.apache.tika:tika-parsers[1.13,2.0.0)	Maven	5 Dec 2025
H XML External Entity (XXE) Injection	org.apache.tika:tika-core[1.13,3.2.2)	Maven	5 Dec 2025
M Directory Traversal	github.com/kserve/kserve/pkg/agent/storage<0.15.0-rc0	Go	5 Dec 2025
H Use of Incorrectly-Resolved Name or Reference	strands-agents[,1.18.0)	pip	5 Dec 2025
M Race Condition	tenzir/tenzir[,2020.01.31)	Unmanaged (C/C++)	5 Dec 2025
M Incorrect Authorization	agent-mcp-gateway[,0.2.0)	pip	5 Dec 2025
M Race Condition	tenzir/tenzir[,1.1.2)	Unmanaged (C/C++)	5 Dec 2025
C Command Injection	rxiv-maker[,1.8.9)	pip	5 Dec 2025
H Improper Verification of Cryptographic Signature	org.webjars.npm:jws[0,]	Maven	5 Dec 2025
H Improper Verification of Cryptographic Signature	jws<3.2.3>=4.0.0 <4.0.1	npm	5 Dec 2025
M SQL Injection	sonnixgres[,0.2.0)	pip	5 Dec 2025
H Out-of-Bounds	wpe_webkit[,2.20.1)	Unmanaged (C/C++)	4 Dec 2025
H Out-of-Bounds	webkitgtk[,2.20.3)	Unmanaged (C/C++)	4 Dec 2025
C Missing Authentication for Critical Function	github.com/smallstep/certificates/errs<0.29.0	Go	4 Dec 2025
C Missing Authentication for Critical Function	github.com/smallstep/certificates/authority/provisioner<0.29.0	Go	4 Dec 2025
C Missing Authentication for Critical Function	github.com/smallstep/certificates/authority<0.29.0	Go	4 Dec 2025

APPLICATION

OPERATING SYSTEM