Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • L
Improper Validation of Specified Type of InputCVE-2025-13352
Affects github.com/mattermost/mattermost-plugin-github/server | Versions <2.5.0-rc1
Has fix
GoPublished 17 Dec 2025
  • C
Unintended Proxy or Intermediary ('Confused Deputy')CVE-2025-11393
Affects github.com/redhatinsights/runtimes-inventory-operator | Versions >=0.0.0
Has fix
GoPublished 17 Dec 2025
  • H
Incorrect Privilege AssignmentCVE-2025-13888
Affects github.com/redhat-developer/gitops-operator/controllers | Versions <1.16.2
Has fix
GoPublished 17 Dec 2025
  • H
NULL Pointer DereferenceCVE-2025-68274
Affects github.com/emiago/sipgo/sip | Versions >=0.3.0 <1.0.0-alpha-1
Has fix
GoPublished 17 Dec 2025
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2025-68156
Affects github.com/expr-lang/expr/builtin | Versions <1.17.7
Has fix
GoPublished 17 Dec 2025
  • M
Improper Verification of Cryptographic SignatureCVE-2025-68113
Affects github.com/altcha-org/altcha-lib-go | Versions <1.0.0
Has fix
GoPublished 17 Dec 2025
  • M
User ImpersonationCVE-2025-66508
Affects github.com/1panel-dev/1panel/agent/init/migration/migrations | Versions <2.0.14
Has fix
GoPublished 16 Dec 2025
  • M
User ImpersonationCVE-2025-66508
Affects github.com/1panel-dev/1panel/agent/init/migration | Versions <2.0.14
Has fix
GoPublished 16 Dec 2025
  • M
User ImpersonationCVE-2025-66508
Affects github.com/1panel-dev/1panel/agent/init/firewall | Versions <2.0.14
Has fix
GoPublished 16 Dec 2025
  • M
User ImpersonationCVE-2025-66508
Affects github.com/1panel-dev/1panel/agent/app/service | Versions <2.0.14
Has fix
GoPublished 16 Dec 2025
  • H
Authorization Bypass Through User-Controlled KeyCVE-2025-66507
Affects github.com/1panel-dev/1panel/core/server | Versions <2.0.14
Has fix
GoPublished 16 Dec 2025
  • H
Authorization Bypass Through User-Controlled KeyCVE-2025-66507
Affects github.com/1panel-dev/1panel/core/init/auth | Versions <2.0.14
Has fix
GoPublished 16 Dec 2025
  • H
Authorization Bypass Through User-Controlled KeyCVE-2025-66507
Affects github.com/1panel-dev/1panel/core/global | Versions <2.0.14
Has fix
GoPublished 16 Dec 2025
  • H
Authorization Bypass Through User-Controlled KeyCVE-2025-66507
Affects github.com/1panel-dev/1panel/core/app/service | Versions <2.0.14
Has fix
GoPublished 16 Dec 2025
  • H
Authorization Bypass Through User-Controlled KeyCVE-2025-66507
Affects github.com/1panel-dev/1panel/core/app/dto | Versions <2.0.14
Has fix
GoPublished 16 Dec 2025
  • H
Authorization Bypass Through User-Controlled KeyCVE-2025-66507
Affects github.com/1panel-dev/1panel/core/app/api/v2 | Versions <2.0.14
Has fix
GoPublished 16 Dec 2025
  • H
Directory TraversalCVE-2025-67488
Affects github.com/siyuan-note/siyuan/kernel/util | Versions <3.5.0-dev1
Has fix
GoPublished 16 Dec 2025
  • M
Server-side Request Forgery (SSRF)CVE-2025-13281
Affects k8s.io/kubernetes/pkg/volume/portworx | Versions <1.32.10>=1.33.0-alpha.0 <1.33.6>=1.34.0-alpha.0 <1.34.2
Has fix
GoPublished 16 Dec 2025
  • M
Server-side Request Forgery (SSRF)CVE-2025-13281
Affects github.com/kubernetes/kubernetes/pkg/volume/portworx | Versions <1.32.10>=1.33.0-alpha.0 <1.33.6>=1.34.0-alpha.0 <1.34.2
Has fix
GoPublished 16 Dec 2025
  • H
Directory TraversalCVE-2025-67818
Affects github.com/weaviate/weaviate/usecases/backup | Versions >=1.30.0 <1.30.20>=1.31.0-rc.0 <1.31.19>=1.32.0-rc.0 <1.32.16>=1.33.0-rc.0 <1.33.4
Has fix
GoPublished 14 Dec 2025
  • H
Directory TraversalCVE-2025-67818
Affects github.com/weaviate/weaviate/entities/diskio | Versions >=1.30.0 <1.30.20>=1.31.0-rc.0 <1.31.19>=1.32.0-rc.0 <1.32.16>=1.33.0-rc.0 <1.33.4
Has fix
GoPublished 14 Dec 2025
  • H
Directory TraversalCVE-2025-67819
Affects github.com/weaviate/weaviate/usecases/backup | Versions >=1.30.0 <1.30.20>=1.31.0-rc.0 <1.31.19>=1.32.0-rc.0 <1.32.16>=1.33.0-rc.0 <1.33.4
Has fix
GoPublished 14 Dec 2025
  • H
Directory TraversalCVE-2025-67819
Affects github.com/weaviate/weaviate/entities/diskio | Versions >=1.30.0 <1.30.20>=1.31.0-rc.0 <1.31.19>=1.32.0-rc.0 <1.32.16>=1.33.0-rc.0 <1.33.4
Has fix
GoPublished 14 Dec 2025
  • H
Directory TraversalCVE-2025-67819
Affects github.com/weaviate/weaviate/adapters/repos/db | Versions >=1.30.0 <1.30.20>=1.31.0-rc.0 <1.31.19>=1.32.0-rc.0 <1.32.16>=1.33.0-rc.0 <1.33.4
Has fix
GoPublished 14 Dec 2025
  • L
Deserialization of Untrusted DataCVE-2025-14606
Affects github.com/tiny-craft/tiny-rdm/backend/services | Versions >=0.0.0
Has fix
GoPublished 14 Dec 2025
  • L
Deserialization of Untrusted DataCVE-2025-14606
Affects github.com/tiny-craft/tiny-rdm/backend/utils/convert | Versions >=0.0.0
Has fix
GoPublished 14 Dec 2025
  • H
Improper Certificate ValidationCVE-2025-66001
Affects github.com/neuvector/neuvector/controller/kv | Versions >=5.3.0 <5.4.8
Has fix
GoPublished 14 Dec 2025
  • H
Improper Authorization
Affects github.com/babylonlabs-io/finality-provider/eotsmanager/service | Versions <1.0.4
Has fix
GoPublished 14 Dec 2025
  • H
Improper Authorization
Affects github.com/babylonlabs-io/finality-provider/eotsmanager | Versions <1.0.4
Has fix
GoPublished 14 Dec 2025
  • H
Improper Authorization
Affects github.com/babylonlabs-io/finality-provider/eotsmanager/config | Versions <1.0.4
Has fix
GoPublished 14 Dec 2025