Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All Vulnerabilities
APPLICATION
Cargo | Rust
Objective-C, CocoaPods | Swift
Composer | PHP
Conan | C/C++
GitHub | Go
Hex | Elixir / Erlang
Maven | Java
npm | JavaScript
NuGet | C#/F#/VB
Pypi | Python
pub | Dart, Flutter
RubyGems | Ruby
Swift Packages | Swift
C/C++
OPERATING SYSTEM
All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
MinimOS
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi
Report a new vulnerability
Vulnerabilities
Packages
M
Missing Authentication for Critical Function
CVE-2026-25878
Affects
frosh/adminer-platform
| Versions
<2.2.1
M
Deserialization of Untrusted Data
CVE-2026-2113
Affects
yuan1994/tpadmin
| Versions
>=0.0.0
L
Information Exposure
CVE-2026-1196
Affects
mineadmin/mineadmin
| Versions
>=1.0.0
M
Incorrect Privilege Assignment
CVE-2026-1193
Affects
mineadmin/mineadmin
| Versions
>=1.0.0
L
Cross-site Scripting (XSS)
CVE-2025-70792
Affects
microweber/microweber
| Versions
<2.0.20
L
Cross-site Scripting (XSS)
CVE-2025-70791
Affects
microweber/microweber
| Versions
<2.0.20
M
Files or Directories Accessible to External Parties
CVE-2026-1194
Affects
mineadmin/mineadmin
| Versions
>=1.0.0, <=2.0.3
H
SQL Injection
CVE-2026-24418
Affects
devcode-it/openstamanager
| Versions
<2.10-beta
H
SQL Injection
CVE-2026-24417
Affects
devcode-it/openstamanager
| Versions
<2.10-beta
H
SQL Injection
CVE-2026-24419
Affects
devcode-it/openstamanager
| Versions
<2.10-beta
C
SQL Injection
CVE-2026-24416
Affects
devcode-it/openstamanager
| Versions
<2.10-beta
H
SQL Injection
CVE-2025-69216
Affects
devcode-it/openstamanager
| Versions
<2.10-beta
C
Command Injection
CVE-2025-69212
Affects
devcode-it/openstamanager
| Versions
<2.10-beta
H
SQL Injection
CVE-2025-69215
Affects
devcode-it/openstamanager
| Versions
<2.10-beta
H
SQL Injection
CVE-2025-69213
Affects
devcode-it/openstamanager
| Versions
<2.10-beta
M
Insertion of Sensitive Information Into Sent Data
CVE-2025-61639
Affects
mediawiki/core
| Versions
<1.39.14
>=1.43.0, <1.43.4
>=1.44.0, <1.44.1
M
Insertion of Sensitive Information Into Sent Data
CVE-2025-61643
Affects
mediawiki/core
| Versions
<1.39.14
>=1.43.0, <1.43.4
>=1.44.0, <1.44.1
M
Cross-site Scripting (XSS)
CVE-2025-6590
Affects
mediawiki/core
| Versions
<1.39.12
>=1.42.0, <1.42.76
>=1.43.0, <1.43.1
M
Allocation of Resources Without Limits or Throttling
CVE-2025-61641
Affects
mediawiki/core
| Versions
<1.39.14
>=1.43.0, <1.43.4
>=1.44.0, <1.44.1
M
Cross-site Scripting (XSS)
CVE-2026-22254
Affects
winter/wn-cms-module
| Versions
<1.2.10
M
Exposure of Sensitive System Information to an Unauthorized Control Sphere
CVE-2025-61646
Affects
mediawiki/core
| Versions
<1.39.14
>=1.40.0-rc.0, <1.43.4
>=1.44.0-rc.0, <1.44.1
M
Cross-site Scripting (XSS)
CVE-2025-70958
Affects
intelliants/subrion
| Versions
>=0.0.0
L
Improper Ownership Management
CVE-2025-6592
Affects
mediawiki/abuse-filter
| Versions
<1.43.2
M
Cross-site Scripting (XSS)
CVE-2026-25485
Affects
craftcms/commerce
| Versions
>=4.0.0-beta.1, <4.10.1
>=5.0.0-beta.1, <5.5.2
M
Cross-site Scripting (XSS)
CVE-2026-25490
Affects
craftcms/commerce
| Versions
>=4.0.0-beta.1, <4.10.1
>=5.0.0-beta.1, <5.5.2
M
Cross-site Scripting (XSS)
Affects
craftcms/commerce
| Versions
>=4.0.0-beta.1, <4.10.1
>=5.0.0-beta.1, <5.5.2
M
Cross-site Scripting (XSS)
CVE-2026-25488
Affects
craftcms/commerce
| Versions
>=4.0.0-beta.1, <4.10.1
>=5.0.0-beta.1, <5.5.2
M
Insertion of Sensitive Information Into Sent Data
CVE-2025-67476
Affects
mediawiki/core
| Versions
<1.44.3
>=1.45.0, <1.45.1
M
Cross-site Scripting (XSS)
CVE-2025-61645
Affects
mediawiki/core
| Versions
<1.44.1
M
Improperly Controlled Modification of Dynamically-Determined Object Attributes
CVE-2025-67479
Affects
mediawiki/core
| Versions
<1.39.14
>=1.42.0, <1.43.4
>=1.44.0, <1.44.1