Vulnerability DB | Snyk

Find out if you have vulnerabilities that put you at risk

Test your applications

All Vulnerabilities

APPLICATION

Cargo | Rust
Objective-C, CocoaPods | Swift
Composer | PHP
Conan | C/C++
GitHub | Go
Hex | Elixir / Erlang
Maven | Java
npm | JavaScript
NuGet | C#/F#/VB
Pypi | Python
pub | Dart, Flutter
RubyGems | Ruby
Swift Packages | Swift
C/C++

OPERATING SYSTEM

All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
MinimOS
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi

Report a new vulnerability

C

Missing Authentication for Critical FunctionCVE-2026-23944

Affects github.com/getarcaneapp/arcane/backend/internal/middleware | Versions <1.13.2

Has fix

GoPublished 20 Jan 2026

C

Missing Authentication for Critical FunctionCVE-2026-23944

Affects github.com/getarcaneapp/arcane/backend/internal/bootstrap | Versions <1.13.2

Has fix

GoPublished 20 Jan 2026

M

Server-side Request Forgery (SSRF)CVE-2026-23845

Affects github.com/axllent/mailpit/internal/htmlcheck | Versions <1.28.3

Has fix

GoPublished 20 Jan 2026

H

Infinite loopCVE-2026-21696

Affects github.com/pterodactyl/wings/internal/cron | Versions >=1.7.0 <1.12.0

Has fix

GoPublished 20 Jan 2026

H

Allocation of Resources Without Limits or ThrottlingCVE-2025-69199

Affects github.com/pterodactyl/wings/server | Versions <1.12.0

Has fix

GoPublished 20 Jan 2026

H

Allocation of Resources Without Limits or ThrottlingCVE-2025-69199

Affects github.com/pterodactyl/wings/router/websocket | Versions <1.12.0

Has fix

GoPublished 20 Jan 2026

H

Allocation of Resources Without Limits or ThrottlingCVE-2025-69199

Affects github.com/pterodactyl/wings/router | Versions <1.12.0

Has fix

GoPublished 20 Jan 2026

L

Allocation of Resources Without Limits or ThrottlingCVE-2025-14822

Affects github.com/mattermost/mattermost/server/v8 | Versions >=10.11.0 <10.11.9>=11.0.0-alpha.1 <11.2.0

Has fix

GoPublished 19 Jan 2026

M

CRLF InjectionCVE-2026-23829

Affects github.com/axllent/mailpit/server/internal/smtpd | Versions <1.28.3

Has fix

GoPublished 19 Jan 2026

H

Directory TraversalCVE-2026-23644

Affects github.com/esm-dev/esm.sh/server | Versions *

No fix available

GoPublished 19 Jan 2026

M

Information ExposureCVE-2026-23511

Affects github.com/zitadel/zitadel/internal/api/ui/login | Versions >=2.0.0 <3.4.6>=4.0.0-rc.1 <4.9.1

Has fix

GoPublished 18 Jan 2026

M

Replay AttackCVE-2025-68671

Affects github.com/treeverse/lakefs/pkg/gateway/sig | Versions <1.74.0

Has fix

GoPublished 18 Jan 2026

H

Directory TraversalCVE-2025-66292

Affects github.com/donknap/dpanel/app/common/http/controller | Versions <1.9.2

Has fix

GoPublished 18 Jan 2026

L

Allocation of Resources Without Limits or ThrottlingCVE-2025-14822

Affects github.com/mattermost/mattermost/server/public/shared/markdown | Versions >=0.0.0

Has fix

GoPublished 18 Jan 2026

L

Allocation of Resources Without Limits or ThrottlingCVE-2025-14822

Affects github.com/mattermost/mattermost/server/public/model | Versions >=0.0.0

Has fix

GoPublished 18 Jan 2026

C

Command InjectionCVE-2026-23520

Affects github.com/getarcaneapp/arcane/backend/internal/utils/arcaneupdater | Versions <1.13.0

Has fix

GoPublished 18 Jan 2026

C

Command InjectionCVE-2026-23520

Affects github.com/getarcaneapp/arcane/backend/internal/services | Versions <1.13.0

Has fix

GoPublished 18 Jan 2026

H

Arbitrary Code InjectionCVE-2026-23742

Affects github.com/zalando/skipper/config | Versions <0.23.0

Has fix

GoPublished 18 Jan 2026

H

Arbitrary Code InjectionCVE-2026-23742

Affects github.com/zalando/skipper | Versions <0.23.0

Has fix

GoPublished 18 Jan 2026

H

Allocation of Resources Without Limits or ThrottlingCVE-2026-22045

Affects github.com/traefik/traefik/v2/pkg/server/router/tcp | Versions <2.11.35

Has fix

GoPublished 18 Jan 2026

H

Allocation of Resources Without Limits or ThrottlingCVE-2026-22045

Affects github.com/traefik/traefik/pkg/server/router/tcp | Versions <2.11.35>=3.0.0-beta1 <3.6.7

Has fix

GoPublished 16 Jan 2026

H

Allocation of Resources Without Limits or ThrottlingCVE-2026-22045

Affects github.com/traefik/traefik/v3/pkg/server/router/tcp | Versions <3.6.7

Has fix

GoPublished 16 Jan 2026

C

Use of Hard-coded CredentialsCVE-2025-62877

Affects github.com/harvester/harvester-installer/pkg/console | Versions <1.7.0-rc4

Has fix

GoPublished 16 Jan 2026

M

Affects github.com/go-chi/chi/v5/middleware | Versions >=5.2.2 <5.2.4

Has fix

GoPublished 15 Jan 2026

M

Affects github.com/go-chi/chi/middleware | Versions >=5.2.2 <5.2.4

Has fix

GoPublished 15 Jan 2026

M

Server-side Request Forgery (SSRF)CVE-2026-22772

Affects github.com/sigstore/fulcio/pkg/config | Versions <1.8.5

Has fix

GoPublished 15 Jan 2026

M

Server-side Request Forgery (SSRF)CVE-2026-22772

Affects github.com/sigstore/fulcio/pkg/identity/base | Versions <1.8.5

Has fix

GoPublished 15 Jan 2026

C

Arbitrary Code InjectionCVE-2026-22771

Affects github.com/envoyproxy/gateway/internal/gatewayapi/runner | Versions <1.5.7>=1.6.0-rc.0 <1.6.2

Has fix

GoPublished 15 Jan 2026

C

Arbitrary Code InjectionCVE-2026-22771

Affects github.com/envoyproxy/gateway/internal/gatewayapi/luavalidator | Versions <1.5.7>=1.6.0-rc.0 <1.6.2

Has fix

GoPublished 15 Jan 2026

C

Arbitrary Code InjectionCVE-2026-22771

Affects github.com/envoyproxy/gateway/internal/gatewayapi | Versions <1.5.7>=1.6.0-rc.0 <1.6.2

Has fix

GoPublished 15 Jan 2026

Product

Partners
Developers & Devops Features
Enterprise Features
Pricing
Test with GitHub
Test with CLI
API status

Resources

Vulnerability DB
Blog
Documentation
FAQs

Company

About
Jobs
Contact
Legal terms
Privacy
Press kit
Events

Contact us

Support
Report a new vuln

Find us online

Track our development

© 2026 Snyk Ltd.