Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
- M
Arbitrary Command InjectionCVE-2026-5973
Affects metagpt | Versions [0,]
Has fix
pipPublished 28 Apr 2026
- C
SQL InjectionCVE-2026-23696
Affects wmill | Versions >=1.276.0 <1.603.3
Has fix
CargoPublished 28 Apr 2026
- H
Missing AuthorizationCVE-2026-22683
Affects wmill | Versions >=1.56.0 <1.615.0
Has fix
CargoPublished 28 Apr 2026
- H
Missing AuthorizationCVE-2026-33318
Affects @actual-app/sync-server | Versions <26.4.0
Has fix
npmPublished 28 Apr 2026
- M
Incorrect Behavior Order: Early ValidationCVE-2026-40923
Affects github.com/tektoncd/pipeline/pkg/apis/pipeline/v1beta1 | Versions <1.11.1
Has fix
GoPublished 28 Apr 2026
- M
Incorrect Behavior Order: Early ValidationCVE-2026-40923
Affects github.com/tektoncd/pipeline/pkg/apis/pipeline/v1 | Versions <1.11.1
Has fix
GoPublished 28 Apr 2026
- H
Arbitrary File UploadCVE-2026-40488
Affects openmage/magento-lts | Versions <20.17.0
Has fix
ComposerPublished 28 Apr 2026
- C
Not Failing Securely ('Failing Open')CVE-2026-40525
Affects openviking | Versions [,0.3.9)
Has fix
pipPublished 28 Apr 2026
Affects astral-tokio-tar | Versions <0.6.1
Has fix
CargoPublished 28 Apr 2026
- H
SQL InjectionCVE-2026-41496
Affects praisonai | Versions [,4.5.149)
Has fix
pipPublished 28 Apr 2026
- H
SQL InjectionCVE-2026-41496
Affects praisonaiagents | Versions [,1.6.9)
Has fix
pipPublished 28 Apr 2026
- C
Arbitrary Command InjectionCVE-2026-41501
Affects electerm | Versions <3.3.8
Has fix
npmPublished 28 Apr 2026
- M
Cross-site Request Forgery (CSRF)CVE-2026-42190
Affects rwsdk | Versions >=1.0.0-beta.50 <1.2.3
Has fix
npmPublished 28 Apr 2026
- M
Origin Validation ErrorCVE-2026-40594
Affects pyload-ng | Versions [,0.5.0b3.dev98)
Has fix
pipPublished 28 Apr 2026
Affects @saltcorn/server | Versions <1.4.4>=1.5.0-beta.0 <1.5.2>=1.6.0-alpha.0 <1.6.0-beta.1
Has fix
npmPublished 28 Apr 2026
Affects @saltcorn/data | Versions <1.4.4>=1.5.0-beta.0 <1.5.2>=1.6.0-alpha.0 <1.6.0-beta.1
Has fix
npmPublished 28 Apr 2026
- M
Insertion of Sensitive Information into Log FileCVE-2026-42282
Affects n8n-mcp | Versions <2.47.13
Has fix
npmPublished 28 Apr 2026
- H
Sensitive Cookie Without "HttpOnly" FlagCVE-2026-42239
Affects @budibase/backend-core | Versions <3.35.10
Has fix
npmPublished 28 Apr 2026
- M
Insertion of Sensitive Information into Log FileCVE-2026-41495
Affects n8n-mcp | Versions <2.47.11
Has fix
npmPublished 28 Apr 2026
- M
Server-side Request Forgery (SSRF)CVE-2026-6606
Affects agentscope | Versions [0,]
Has fix
pipPublished 28 Apr 2026
- M
Server-side Request Forgery (SSRF)CVE-2026-6605
Affects agentscope | Versions [0,]
Has fix
pipPublished 28 Apr 2026
- M
Arbitrary Code InjectionCVE-2026-6603
Affects agentscope | Versions [0,]
Has fix
pipPublished 28 Apr 2026
- M
Server-side Request Forgery (SSRF)CVE-2026-6604
Affects agentscope | Versions [0,]
Has fix
pipPublished 28 Apr 2026
- H
Arbitrary Code InjectionCVE-2026-39846
Affects github.com/siyuan-note/siyuan/kernel/sql | Versions <3.6.4-dev2
Has fix
GoPublished 28 Apr 2026
Affects meridian.mapping | Versions [,2.1.1)
Has fix
NuGetPublished 28 Apr 2026
Affects meridian.mediator | Versions [,2.1.1)
Has fix
NuGetPublished 28 Apr 2026
- M
Incorrect AuthorizationCVE-2026-35596
Affects github.com/go-vikunja/vikunja/pkg/models | Versions <2.3.0
Has fix
GoPublished 28 Apr 2026
- M
Cross-site Scripting (XSS)CVE-2026-35600
Affects github.com/go-vikunja/vikunja/pkg/notifications | Versions <2.3.0
Has fix
GoPublished 28 Apr 2026