Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
Allocation of Resources Without Limits or Throttling
org.bouncycastle:bc-fips-debug[2.1.1, 2.1.2)Maven26 Oct 2025
  • M
Allocation of Resources Without Limits or Throttling
org.bouncycastle:bc-fips[2.1.1, 2.1.2)Maven26 Oct 2025
  • H
Missing Authentication for Critical Function
github.com/karmada-io/dashboard/cmd/api/app/router<0.2.0Go26 Oct 2025
  • H
Missing Authentication for Critical Function
github.com/karmada-io/dashboard/cmd/web/app<0.2.0Go26 Oct 2025
  • M
Insertion of Sensitive Information into Log File
github.com/rancher/rancher/pkg/auth/audit<2.13.0-alpha3Go26 Oct 2025
  • M
Improper Preservation of Permissions
github.com/rancher/rancher/pkg/rbac<2.11.7-alpha2>=2.12.0 <2.12.3-alpha2Go26 Oct 2025
  • M
Improper Preservation of Permissions
github.com/rancher/rancher/pkg/controllers/managementuser/rbac<2.11.7-alpha2>=2.12.0 <2.12.3-alpha2Go26 Oct 2025
  • M
Allocation of Resources Without Limits or Throttling
mysql[9.0.0,9.5.0)Unmanaged (C/C++)26 Oct 2025
  • H
Integer Overflow to Buffer Overflow
triton-inference-server/server[,2.58.0)Unmanaged (C/C++)24 Oct 2025
  • H
Resource Exhaustion
github.com/microstack-tech/parallax/core/rawdb<0.1.4Go24 Oct 2025
  • H
Incorrect Default Permissions
mongodb/mongo-bi-connector-odbc-driver[,1.4.7)Unmanaged (C/C++)24 Oct 2025
  • M
Cross-site Scripting (XSS)
piranha.manager[0,]NuGet24 Oct 2025
  • H
Missing Release of Memory after Effective Lifetime
fontforge/fontforge[,20251009)Unmanaged (C/C++)24 Oct 2025
  • H
Missing Release of Memory after Effective Lifetime
fontforge/fontforge[,20251009)Unmanaged (C/C++)24 Oct 2025
  • C
Access Control Bypass
@kottster/server>=3.2.0 <3.3.2npm24 Oct 2025
  • C
Access Control Bypass
@kottster/cli>=3.2.0 <3.3.2npm24 Oct 2025
  • C
Access Control Bypass
@kottster/common>=3.2.0 <3.3.2npm24 Oct 2025
  • M
Incorrect Authorization
github.com/openbao/openbao-plugins/auth/aws<0.1.1Go24 Oct 2025
  • M
Cross-site Scripting (XSS)
net.mingsoft:ms-mcms[0,]Maven24 Oct 2025
  • H
Authentication Bypass Using an Alternate Path or Channel
github.com/hashicorp/vault/builtin/credential/aws>=0.6.0 <1.21.0Go24 Oct 2025
  • H
Use After Free
libsoup[0,]Unmanaged (C/C++)24 Oct 2025
  • L
Cross-site Scripting (XSS)
wikibase-solutions/cookie-consent<2.0.0Composer24 Oct 2025
  • H
Brute Force
moodle/moodle<4.1.21>=4.4.0-beta, <4.4.11>=4.5.0-beta, <4.5.7>=5.0.0-beta, <5.0.3Composer24 Oct 2025
  • H
Allocation of Resources Without Limits or Throttling
github.com/hashicorp/vault/sdk/helper/jsonutil>=1.20.3 <1.21.0Go24 Oct 2025
  • H
Allocation of Resources Without Limits or Throttling
github.com/hashicorp/vault/internalshared/configutil>=1.20.3 <1.21.0Go24 Oct 2025
  • H
Allocation of Resources Without Limits or Throttling
github.com/hashicorp/vault/http>=1.20.3 <1.21.0Go24 Oct 2025
  • H
Allocation of Resources Without Limits or Throttling
github.com/hashicorp/vault/command>=1.20.3 <1.21.0Go24 Oct 2025
  • M
Incorrect Authorization
moodle/moodle>=4.5.0-beta, <4.5.7>=5.0.0-beta, <5.0.3Composer24 Oct 2025
  • M
Improper Authorization
moodle/moodle<4.1.21>=4.4.0-beta, <4.4.11>=4.5.0-beta, <4.5.7>=5.0.0-beta, <5.0.3Composer24 Oct 2025
  • M
Observable Response Discrepancy
moodle/moodle>=5.0.0-beta, <5.0.3Composer24 Oct 2025