Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • H
Always-Incorrect Control Flow ImplementationCVE-2026-33011
Affects @nestjs/core | Versions <11.1.17
Has fix
npmPublished 18 Mar 2026
  • L
Incorrect Resource Transfer Between SpheresCVE-2026-32772
Affects inetutils | Versions [0,]
Has fix
Unmanaged (C/C++)Published 18 Mar 2026
  • C
Improper Verification of Cryptographic SignatureCVE-2026-32614
Affects github.com/emmansun/gmsm/sm9 | Versions <0.41.1
Has fix
GoPublished 18 Mar 2026
  • C
Improper Verification of Cryptographic SignatureCVE-2026-32614
Affects github.com/emmansun/gmsm/internal/sm9/bn256 | Versions <0.41.1
Has fix
GoPublished 18 Mar 2026
  • M
Insufficient Granularity of Access ControlCVE-2026-4105
Affects systemd/systemd | Versions [225,226)[259-rc1,259.4)[260-rc1,260-rc3)
Has fix
Unmanaged (C/C++)Published 18 Mar 2026
  • H
Prototype PollutionCVE-2025-65587
Affects graphql-upload-minimal | Versions <1.6.3
Has fix
npmPublished 18 Mar 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-29112
Affects @dicebear/converter | Versions <9.4.0
Has fix
npmPublished 18 Mar 2026
  • M
Authorization Bypass Through User-Controlled KeyCVE-2026-32638
Affects @withstudiocms/effect | Versions <0.4.1
Has fix
npmPublished 18 Mar 2026
  • M
Authorization Bypass Through User-Controlled KeyCVE-2026-32638
Affects @withstudiocms/api-spec | Versions <0.3.2
Has fix
npmPublished 18 Mar 2026
  • M
Authorization Bypass Through User-Controlled KeyCVE-2026-32638
Affects effectify | Versions <0.2.0
Has fix
npmPublished 18 Mar 2026
  • M
Authorization Bypass Through User-Controlled KeyCVE-2026-32638
Affects studiocms | Versions <0.4.4
Has fix
npmPublished 18 Mar 2026
  • C
Origin Validation ErrorCVE-2026-27478
Affects io.unitycatalog:unitycatalog-server | Versions [0,]
Has fix
MavenPublished 18 Mar 2026
  • M
Memory Allocation with Excessive Size ValueCVE-2026-26246
Affects github.com/mattermost/mattermost/server/public | Versions <0.1.22
Has fix
GoPublished 18 Mar 2026
  • M
Memory Allocation with Excessive Size ValueCVE-2026-26246
Affects github.com/mattermost/mattermost/server/v8/channels/app/imaging | Versions <10.11.11-rc1>=11.0.0-alpha.1 <11.2.3>=11.3.0-rc1 <11.3.1>=11.4.0-rc1 <11.5.0-rc1
Has fix
GoPublished 18 Mar 2026
  • C
Out-of-bounds WriteCVE-2026-32746
Affects inetutils | Versions [0,]
Has fix
Unmanaged (C/C++)Published 18 Mar 2026
  • H
Infinite loopCVE-2026-32256
Affects music-metadata | Versions <11.12.3
Has fix
npmPublished 18 Mar 2026
  • C
Missing Authentication for Critical FunctionCVE-2026-33017
Affects langflow-base | Versions [,0.8.1)
Has fix
pipPublished 18 Mar 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-33151
Affects org.webjars.npm:socket.io-parser | Versions [0,]
Has fix
MavenPublished 18 Mar 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-33151
Affects socket.io-parser | Versions <3.3.5>=3.4.0 <3.4.4>=4.0.0 <4.2.6
Has fix
npmPublished 18 Mar 2026
  • M
Deserialization of Untrusted DataCVE-2026-1323
Affects cpsit/typo3-mailqueue | Versions <0.4.5>=0.5.0, <0.5.2
Has fix
ComposerPublished 18 Mar 2026
  • M
Prototype PollutionCVE-2026-31865
Affects elysia | Versions <1.4.27
Has fix
npmPublished 18 Mar 2026
  • L
Missing AuthorizationCVE-2026-4202
Affects ayacoo/redirect-tab | Versions <2.1.2>=3.0.0, <3.1.7>=4.0.0, <4.0.5
Has fix
ComposerPublished 18 Mar 2026
  • M
Cross-site Scripting (XSS)CVE-2026-4175
Affects aureuserp/aureuserp | Versions <1.3.0-BETA1
Has fix
ComposerPublished 18 Mar 2026
  • H
Authorization Bypass Through User-Controlled KeyCVE-2026-4208
Affects ralffreit/mfa-email | Versions <2.0.1
Has fix
ComposerPublished 18 Mar 2026
  • H
Authorization Bypass Through User-Controlled KeyCVE-2026-26004
Affects sentry | Versions [0,]
Has fix
pipPublished 18 Mar 2026
  • M
Missing AuthorizationCVE-2026-32265
Affects craftcms/aws-s3 | Versions >=2.0.2, <2.2.5
Has fix
ComposerPublished 18 Mar 2026
  • H
Improper Neutralization of Special Elements Used in a Template EngineCVE-2026-32261
Affects craftcms/webhooks | Versions >=3.0.0-beta.1, <3.2.0
Has fix
ComposerPublished 18 Mar 2026
  • M
Missing Authentication for Critical FunctionCVE-2026-32266
Affects craftcms/google-cloud | Versions >=2.0.0-beta.1, <2.2.1
Has fix
ComposerPublished 18 Mar 2026
  • H
Missing AuthorizationCVE-2026-32268
Affects craftcms/azure-blob | Versions >=2.0.0-beta.1, <2.1.1
Has fix
ComposerPublished 18 Mar 2026
  • M
Cross-site Scripting (XSS)CVE-2026-32757
Affects admidio/admidio | Versions <5.0.7
Has fix
ComposerPublished 18 Mar 2026