Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • C
Prototype Pollution		expr-eval*npm5 Nov 2025
  • C
Malicious Package		@bbkkfkk/pre*npm5 Nov 2025
  • C
Malicious Package		aes-valid-ipherv*npm5 Nov 2025
  • C
Malicious Package		terminal-kleur*npm5 Nov 2025
  • C
Malicious Package		bcryptjs-node*npm5 Nov 2025
  • C
Malicious Package		webpack-jsxcompile*npm5 Nov 2025
  • C
Malicious Package		snavbox*npm5 Nov 2025
  • C
Malicious Package		jito-prop-exec*npm5 Nov 2025
  • C
Malicious Package		react-notifications-alert*npm5 Nov 2025
  • C
Malicious Package		bcryptjs-node-js*npm5 Nov 2025
  • C
Malicious Package		node-xpnav*npm5 Nov 2025
  • C
Malicious Package		pc-experience-fe-components*npm5 Nov 2025
  • C
Malicious Package		jsonretype*npm5 Nov 2025
  • C
Malicious Package		tailwind-fa-bridge*npm5 Nov 2025
  • M
Access Control Bypass		raspberrypi/rpi-imager[,2.0.0-rc3)Unmanaged (C/C++)4 Nov 2025
  • H
Improper Isolation or Compartmentalization		dspy[0,]pip4 Nov 2025
  • M
Missing Authorization		github.com/treeverse/lakefs/pkg/api<1.71.0Go4 Nov 2025
  • M
HTTP Request Smuggling		lighttpd[1.4.80, 1.4.81)Unmanaged (C/C++)4 Nov 2025
  • M
Cross-site Scripting (XSS)		openmage/magento-lts<20.16.0Composer4 Nov 2025
  • M
Cross-site Scripting (XSS)		getgrav/grav>=0.0.0Composer4 Nov 2025
  • M
Directory Traversal		langchain-chatchat[0,]pip4 Nov 2025
  • M
Directory Traversal		langchain-chatchat[0,]pip4 Nov 2025
  • H
Improper Encoding or Escaping of Output		motioneye[,0.43.1b5)pip4 Nov 2025
  • M
Cross-site Scripting (XSS)		com.liferay:com.liferay.dynamic.data.mapping.item.selector.web[,1.0.9)Maven4 Nov 2025
  • M
Insufficient Verification of Data Authenticity		mantisbt/mantisbt<2.27.2Composer4 Nov 2025
  • M
Improper Authorization		mantisbt/mantisbt<2.27.2Composer4 Nov 2025
  • H
Allocation of Resources Without Limits or Throttling		mantisbt/mantisbt<2.27.2Composer4 Nov 2025
  • H
Incorrect Comparison		mantisbt/mantisbt<2.27.2Composer4 Nov 2025
  • M
Missing Authorization		com.liferay:com.liferay.blogs.item.selector.web[,6.0.19)Maven4 Nov 2025
  • H
Improper Validation of Certificate with Host Mismatch		com.microsoft.sqlserver:mssql-jdbc[,10.2.4.jre8)[11.1.0.jre11-preview, 11.2.4.jre8)[12.1.0.jre11-preview, 12.2.1.jre8)[12.3.0.jre11-preview, 12.4.3.jre8)[12.5.0.jre11-preview, 12.6.5.jre8)[12.7.0.jre11-preview, 12.8.2.jre8)[12.9.0.jre11-preview, 12.10.2.jre8)[13.1.0.jre8-preview, 13.2.1.jre8)Maven4 Nov 2025