Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Allocation of Resources Without Limits or ThrottlingCVE-2026-6948
Affects www.velocidex.com/golang/velociraptor/file_store | Versions <0.76.4
Has fix
GoPublished 6 May 2026
  • M
Off-by-one ErrorCVE-2026-7572
Affects www.velocidex.com/golang/evtx | Versions >=0.0.1
Has fix
GoPublished 6 May 2026
  • M
Off-by-one ErrorCVE-2026-7572
Affects github.com/velocidex/evtx | Versions >=0.0.1
Has fix
GoPublished 6 May 2026
  • M
Authorization Bypass Through User-Controlled KeyCVE-2026-7573
Affects www.velocidex.com/golang/velociraptor/api | Versions >=0.2.1
Has fix
GoPublished 6 May 2026
  • M
Authorization Bypass Through User-Controlled KeyCVE-2026-7573
Affects github.com/velocidex/velociraptor/api | Versions >=0.2.1
Has fix
GoPublished 6 May 2026
  • M
Allocation of Resources Without Limits or ThrottlingCVE-2026-6948
Affects github.com/velocidex/velociraptor/file_store | Versions <0.76.4
Has fix
GoPublished 6 May 2026
  • M
Improper Validation of Specified Type of InputCVE-2026-5329
Affects www.velocidex.com/golang/velociraptor/flows | Versions <0.75.7>=0.76.1-rc1
Has fix
GoPublished 6 May 2026
  • M
Memory Allocation with Excessive Size ValueCVE-2026-33812
Affects golang.org/x/image/font/sfnt | Versions <0.39.0
Has fix
GoPublished 6 May 2026
  • M
Memory Allocation with Excessive Size ValueCVE-2026-33812
Affects github.com/golang/image/font/sfnt | Versions <0.39.0
Has fix
GoPublished 6 May 2026
  • M
Download of Code Without Integrity CheckCVE-2026-42248
Affects github.com/ollama/ollama/app/updater | Versions >=0.0.1
Has fix
GoPublished 6 May 2026
  • M
Download of Code Without Integrity CheckCVE-2026-42249
Affects github.com/ollama/ollama/app/updater | Versions >=0.0.1
Has fix
GoPublished 6 May 2026
  • M
Improper Validation of Specified Type of InputCVE-2026-5329
Affects github.com/velocidex/velociraptor/flows | Versions <0.75.7>=0.76
Has fix
GoPublished 6 May 2026
  • H
Incorrect Type Conversion or CastCVE-2026-42576
Affects chainguard.dev/apko/pkg/apk/apk | Versions <1.2.7
Has fix
GoPublished 6 May 2026
  • H
Resources Downloaded over Insecure ProtocolCVE-2026-42575
Affects chainguard.dev/apko/pkg/apk/apk | Versions <1.2.7
Has fix
GoPublished 6 May 2026
  • M
Missing AuthorizationCVE-2026-42541
Affects github.com/kubewarden/adm-controller/api/policies/v1 | Versions <1.35.0
Has fix
GoPublished 6 May 2026
  • M
Missing AuthorizationCVE-2026-42541
Affects github.com/kubewarden/adm-controller/internal/controller | Versions <1.35.0
Has fix
GoPublished 6 May 2026
  • H
Symlink AttackCVE-2026-42574
Affects chainguard.dev/apko/pkg/apk/fs | Versions >=0.14.8 <1.2.5
Has fix
GoPublished 6 May 2026
  • H
Out-of-bounds ReadCVE-2026-40251
Affects github.com/lxc/incus/v7/cmd/incusd | Versions <7.0.0
Has fix
GoPublished 6 May 2026
  • H
Out-of-bounds ReadCVE-2026-40251
Affects github.com/lxc/incus/v7/internal/server/storage | Versions <7.0.0
Has fix
GoPublished 6 May 2026
  • H
Cross-site Request Forgery (CSRF)CVE-2026-42091
Affects goshs.de/goshs/v2/httpserver | Versions <2.0.2
Has fix
GoPublished 6 May 2026
  • H
Directory TraversalCVE-2026-41589
Affects charm.land/wish/v2/scp | Versions <2.0.1
Has fix
GoPublished 6 May 2026
  • M
Symlink AttackCVE-2026-41433
Affects go.opentelemetry.io/obi/pkg/internal/java | Versions >=0.4.0 <0.8.0
Has fix
GoPublished 6 May 2026
  • H
Placement of User into Incorrect GroupCVE-2026-6970
Affects github.com/canonical/authd/internal/users | Versions >=0.6.0 <0.6.4
Has fix
GoPublished 6 May 2026
  • M
Integer Overflow or WraparoundCVE-2026-32759
Affects github.com/filebrowser/filebrowser/http | Versions >=1.0.0
Has fix
GoPublished 6 May 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-39383
Affects github.com/gotenberg/gotenberg/v8/pkg/modules/webhook | Versions >=8.29.1 <8.31.0
Has fix
GoPublished 6 May 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-39383
Affects github.com/gotenberg/gotenberg/v8/pkg/modules/chromium | Versions >=8.29.1 <8.31.0
Has fix
GoPublished 6 May 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-39383
Affects github.com/gotenberg/gotenberg/v8/pkg/modules/api | Versions >=8.29.1 <8.31.0
Has fix
GoPublished 6 May 2026
  • C
Authentication Bypass Using an Alternate Path or ChannelCVE-2026-42300
Affects github.com/l3montree-dev/devguard/middlewares | Versions <1.2.2
Has fix
GoPublished 6 May 2026
  • C
Authentication Bypass Using an Alternate Path or ChannelCVE-2026-42300
Affects github.com/l3montree-dev/devguard/integrations/gitlabint | Versions <1.2.2
Has fix
GoPublished 6 May 2026
  • C
Authentication Bypass Using an Alternate Path or ChannelCVE-2026-42300
Affects github.com/l3montree-dev/devguard/accesscontrol | Versions <1.2.2
Has fix
GoPublished 6 May 2026