Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Incorrect AuthorizationCVE-2026-6290
Affects www.velocidex.com/golang/velociraptor/vql/server | Versions >=0.2.1
Has fix
GoPublished 15 Apr 2026
  • M
Incorrect AuthorizationCVE-2026-6290
Affects www.velocidex.com/golang/velociraptor/vql/tools | Versions >=0.2.1
Has fix
GoPublished 15 Apr 2026
  • M
Incorrect AuthorizationCVE-2026-6290
Affects www.velocidex.com/golang/velociraptor/paths/artifacts | Versions >=0.2.1
Has fix
GoPublished 15 Apr 2026
  • M
Incorrect AuthorizationCVE-2026-6290
Affects github.com/velocidex/velociraptor/vql/tools | Versions >=0.2.1
Has fix
GoPublished 15 Apr 2026
  • M
Incorrect AuthorizationCVE-2026-6290
Affects github.com/velocidex/velociraptor/vql/server | Versions >=0.2.1
Has fix
GoPublished 15 Apr 2026
  • M
Incorrect AuthorizationCVE-2026-6290
Affects github.com/velocidex/velociraptor/paths/artifacts | Versions >=0.2.1
Has fix
GoPublished 15 Apr 2026
  • M
Information ExposureCVE-2025-12141
Affects github.com/grafana/grafana/pkg/services/sqlstore/migrations | Versions <12.4.0
Has fix
GoPublished 15 Apr 2026
  • M
Information ExposureCVE-2025-12141
Affects github.com/grafana/grafana/pkg/services/ngalert/accesscontrol | Versions <12.4.0
Has fix
GoPublished 15 Apr 2026
  • M
Server-side Request Forgery (SSRF)
Affects github.com/kyverno/kyverno/pkg/engine/apicall | Versions >=0.1.0
Has fix
GoPublished 15 Apr 2026
  • H
Server-side Request Forgery (SSRF)CVE-2026-35036
Affects github.com/lin-snow/ech0/internal/service | Versions <4.2.8
Has fix
GoPublished 15 Apr 2026
  • H
Server-side Request Forgery (SSRF)CVE-2026-35036
Affects github.com/lin-snow/ech0/internal/router | Versions <4.2.8
Has fix
GoPublished 15 Apr 2026
  • M
Authorization Bypass Through User-Controlled KeyCVE-2026-28736
Affects github.com/mattermost/focalboard/server | Versions >=0.6.0
Has fix
GoPublished 15 Apr 2026
  • H
SQL InjectionCVE-2026-25773
Affects github.com/mattermost/focalboard/server | Versions >=0.6.0
Has fix
GoPublished 15 Apr 2026
  • M
Server-side Request Forgery (SSRF)
Affects github.com/kyverno/kyverno/pkg/engine/context/loaders | Versions <1.16.2
Has fix
GoPublished 15 Apr 2026
  • M
Server-side Request Forgery (SSRF)
Affects github.com/kyverno/kyverno/pkg/engine/factories | Versions <1.16.2
Has fix
GoPublished 15 Apr 2026
  • M
Server-side Request Forgery (SSRF)
Affects github.com/kyverno/kyverno/pkg/engine/apicall | Versions <1.16.2
Has fix
GoPublished 15 Apr 2026
  • H
Unintended Proxy or Intermediary ('Confused Deputy')
Affects github.com/kyverno/kyverno/pkg/background/mpol | Versions <1.17.0
Has fix
GoPublished 15 Apr 2026
  • H
Unintended Proxy or Intermediary ('Confused Deputy')
Affects github.com/kyverno/kyverno/pkg/engine/apicall | Versions <1.17.0
Has fix
GoPublished 15 Apr 2026
  • H
Unintended Proxy or Intermediary ('Confused Deputy')
Affects github.com/kyverno/kyverno/pkg/cel/policies/vpol/compiler | Versions <1.17.0
Has fix
GoPublished 15 Apr 2026
  • H
Unintended Proxy or Intermediary ('Confused Deputy')
Affects github.com/kyverno/kyverno/pkg/cel/policies/mpol/compiler | Versions <1.17.0
Has fix
GoPublished 15 Apr 2026
  • H
Unintended Proxy or Intermediary ('Confused Deputy')
Affects github.com/kyverno/kyverno/pkg/cel/policies/gpol/compiler | Versions <1.17.0
Has fix
GoPublished 15 Apr 2026
  • H
Unintended Proxy or Intermediary ('Confused Deputy')
Affects github.com/kyverno/kyverno/pkg/cel/policies/dpol/compiler | Versions <1.17.0
Has fix
GoPublished 15 Apr 2026
  • H
Information ExposureCVE-2026-34984
Affects github.com/external-secrets/external-secrets/runtime/template/v2 | Versions <2.3.0
Has fix
GoPublished 15 Apr 2026
  • H
Missing Authentication for Critical Function
Affects github.com/minio/minio/cmd | Versions >=0.0.0
Has fix
GoPublished 15 Apr 2026
  • H
Improper Authentication
Affects github.com/minio/minio/cmd | Versions >=0.0.0
Has fix
GoPublished 15 Apr 2026
  • H
Improper Privilege ManagementCVE-2026-39961
Affects github.com/aiven/aiven-operator/controllers | Versions >=0.31.0 <0.37.0
Has fix
GoPublished 15 Apr 2026
  • H
Improper Privilege ManagementCVE-2026-39961
Affects github.com/aiven/aiven-operator/api/v1alpha1 | Versions >=0.31.0 <0.37.0
Has fix
GoPublished 15 Apr 2026
  • H
Out-of-bounds Read
Affects github.com/gomarkdown/markdown/html | Versions >=0.0.0
Has fix
GoPublished 15 Apr 2026
  • H
Missing AuthorizationCVE-2026-34976
Affects github.com/dgraph-io/dgraph/v24/graphql/admin | Versions <24.1.6
Has fix
GoPublished 14 Apr 2026
  • H
Missing AuthorizationCVE-2026-34976
Affects github.com/dgraph-io/dgraph/v25/graphql/admin | Versions <25.3.1
Has fix
GoPublished 14 Apr 2026