Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Cross-site Request Forgery (CSRF)CVE-2026-6109
Affects metagpt | Versions [0,]
Has fix
pipPublished 28 Apr 2026
  • M
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')CVE-2026-6110
Affects metagpt | Versions [0,]
Has fix
pipPublished 28 Apr 2026
  • C
Command InjectionCVE-2026-41113
Affects sagredo-dev/qmail | Versions [,2026.04.07)
Has fix
Unmanaged (C/C++)Published 28 Apr 2026
  • M
Access Control BypassCVE-2025-56015
Affects genieacs | Versions >=0.0.0
Has fix
npmPublished 28 Apr 2026
  • M
Arbitrary Code InjectionCVE-2026-5971
Affects metagpt | Versions [0,]
Has fix
pipPublished 28 Apr 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-40242
Affects github.com/getarcaneapp/arcane/backend/internal/services | Versions <1.17.3
Has fix
GoPublished 28 Apr 2026
  • M
Arbitrary Command InjectionCVE-2026-5972
Affects metagpt | Versions [0,]
Has fix
pipPublished 28 Apr 2026
  • M
Arbitrary Command InjectionCVE-2026-5974
Affects metagpt | Versions [0,]
Has fix
pipPublished 28 Apr 2026
  • H
Improper Handling of Case Sensitivity
Affects github.com/gotenberg/gotenberg/v8/pkg/modules/exiftool | Versions <8.30.0
Has fix
GoPublished 28 Apr 2026
  • M
Arbitrary Command InjectionCVE-2026-5973
Affects metagpt | Versions [0,]
Has fix
pipPublished 28 Apr 2026
  • C
SQL InjectionCVE-2026-23696
Affects wmill | Versions >=1.276.0 <1.603.3
Has fix
CargoPublished 28 Apr 2026
  • H
Missing AuthorizationCVE-2026-22683
Affects wmill | Versions >=1.56.0 <1.615.0
Has fix
CargoPublished 28 Apr 2026
  • H
Missing AuthorizationCVE-2026-33318
Affects @actual-app/sync-server | Versions <26.4.0
Has fix
npmPublished 28 Apr 2026
  • M
Incorrect Behavior Order: Early ValidationCVE-2026-40923
Affects github.com/tektoncd/pipeline/pkg/apis/pipeline/v1beta1 | Versions <1.11.1
Has fix
GoPublished 28 Apr 2026
  • M
Incorrect Behavior Order: Early ValidationCVE-2026-40923
Affects github.com/tektoncd/pipeline/pkg/apis/pipeline/v1 | Versions <1.11.1
Has fix
GoPublished 28 Apr 2026
  • H
Arbitrary File UploadCVE-2026-40488
Affects openmage/magento-lts | Versions <20.17.0
Has fix
ComposerPublished 28 Apr 2026
  • C
Not Failing Securely ('Failing Open')CVE-2026-40525
Affects openviking | Versions [,0.3.9)
Has fix
pipPublished 28 Apr 2026
  • M
Use of Incorrectly-Resolved Name or Reference
Affects astral-tokio-tar | Versions <0.6.1
Has fix
CargoPublished 28 Apr 2026
  • M
Symlink Attack
Affects astral-tokio-tar | Versions <0.6.1
Has fix
CargoPublished 28 Apr 2026
  • H
SQL InjectionCVE-2026-41496
Affects praisonai | Versions [,4.5.149)
Has fix
pipPublished 28 Apr 2026
  • H
SQL InjectionCVE-2026-41496
Affects praisonaiagents | Versions [,1.6.9)
Has fix
pipPublished 28 Apr 2026
  • C
Arbitrary Command InjectionCVE-2026-41501
Affects electerm | Versions <3.3.8
Has fix
npmPublished 28 Apr 2026
  • M
Cross-site Request Forgery (CSRF)CVE-2026-42190
Affects rwsdk | Versions >=1.0.0-beta.50 <1.2.3
Has fix
npmPublished 28 Apr 2026
  • M
Origin Validation ErrorCVE-2026-40594
Affects pyload-ng | Versions [,0.5.0b3.dev98)
Has fix
pipPublished 28 Apr 2026
  • H
Incorrect Authorization
Affects @saltcorn/server | Versions <1.4.4>=1.5.0-beta.0 <1.5.2>=1.6.0-alpha.0 <1.6.0-beta.1
Has fix
npmPublished 28 Apr 2026
  • H
Incorrect Authorization
Affects @saltcorn/data | Versions <1.4.4>=1.5.0-beta.0 <1.5.2>=1.6.0-alpha.0 <1.6.0-beta.1
Has fix
npmPublished 28 Apr 2026
  • M
Insertion of Sensitive Information into Log FileCVE-2026-42282
Affects n8n-mcp | Versions <2.47.13
Has fix
npmPublished 28 Apr 2026
  • H
Sensitive Cookie Without "HttpOnly" FlagCVE-2026-42239
Affects @budibase/backend-core | Versions <3.35.10
Has fix
npmPublished 28 Apr 2026
  • M
Insertion of Sensitive Information into Log FileCVE-2026-41495
Affects n8n-mcp | Versions <2.47.11
Has fix
npmPublished 28 Apr 2026
  • H
Infinite loop
Affects justhtml | Versions [,1.17.0)
Has fix
pipPublished 28 Apr 2026