Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • H
Off-by-one Error
github.com/osrg/gobgp/v3/pkg/packet/rtr<3.35.0Go21 Apr 2025
  • H
Off-by-one Error
github.com/osrg/gobgp/pkg/packet/rtr<3.35.0Go21 Apr 2025
  • M
Incorrect Authorization
github.com/mattermost/mattermost/server/channels/app<9.11.10>=10.4.0 <10.4.4>=10.5.0 <10.5.2Go18 Apr 2025
  • L
Missing Authentication for Critical Function
github.com/mattermost/mattermost/server/channels/api4<9.11.10-rc1>=10.5.0 <10.5.2Go18 Apr 2025
  • M
Incorrect Authorization
github.com/mattermost/mattermost/server/channels/app<9.11.10>=10.4.0 <10.4.4>=10.5.0 <10.5.2Go18 Apr 2025
  • M
Incorrect Permission Assignment for Critical Resource
ehang.io/nps/lib/install<0.23.2Go18 Apr 2025
  • M
Incorrect Permission Assignment for Critical Resource
github.com/ehang-io/nps/lib/install<0.23.2Go18 Apr 2025
  • C
Privilege Chaining
github.com/argoproj/argo-events/pkg/reconciler/sensor<1.9.6Go18 Apr 2025
  • C
Privilege Chaining
github.com/argoproj/argo-events/pkg/reconciler/eventsource<1.9.6Go18 Apr 2025
  • C
Privilege Chaining
github.com/argoproj/argo-events/pkg/apis/events/v1alpha1<1.9.6Go18 Apr 2025
  • C
Privilege Chaining
github.com/argoproj/argo-events/pkg/apis/events/openapi<1.9.6Go18 Apr 2025
  • L
Cross-site Request Forgery (CSRF)
github.com/gorilla/csrf<1.7.3Go18 Apr 2025
  • H
Server-side Request Forgery (SSRF)
github.com/kyverno/kyverno/api/kyverno/v1<1.14.0Go16 Apr 2025
  • M
HTTP Request Smuggling
github.com/clickhouse/ch-go/compress<0.65.0Go16 Apr 2025
  • M
Improper Authorization
github.com/nats-io/nats-server/v2/server>=2.2.0 <2.10.27>=2.11.0-RC.1 <2.11.1Go16 Apr 2025
  • M
Improper Authorization
github.com/nats-io/nats-server/server>=2.2.0 <2.10.27>=2.11.0-RC.1 <2.11.1Go16 Apr 2025
  • M
Incorrect Default Permissions
github.com/grafana/tempo-operator/internal/webhooks>=0.0.0Go15 Apr 2025
  • M
Incorrect Default Permissions
github.com/grafana/tempo-operator/internal/manifests/queryfrontend>=0.0.0Go15 Apr 2025
  • M
Incorrect Default Permissions
github.com/grafana/tempo-operator/internal/controller/tempo>=0.0.0Go15 Apr 2025
  • M
Incorrect Authorization
github.com/mattermost/mattermost/server/channels/app>=9.11.0-rc1 <9.11.10>=10.0.0-rc1 <10.4.4>=10.5.0-rc1 <10.5.2Go15 Apr 2025
  • M
Incorrect Authorization
github.com/mattermost/mattermost/server/channels/api4>=9.11.0-rc1 <9.11.10>=10.0.0-rc1 <10.4.4>=10.5.0-rc1 <10.5.2Go15 Apr 2025
  • H
Arbitrary File Write via Archive Extraction (Zip Slip)
github.com/mholt/archiver/v3>=3.0.0Go14 Apr 2025
  • H
Arbitrary File Write via Archive Extraction (Zip Slip)
github.com/mholt/archiver>=3.0.0 <4.0.0-alpha.1Go14 Apr 2025
  • M
Improper Input Validation
github.com/phires/go-guerrilla<1.6.7Go13 Apr 2025
  • M
Incorrect Authorization
github.com/mattermost/mattermost/server/public/model<9.11.9>=10.0.0-rc1 <10.5.0Go13 Apr 2025
  • M
Incorrect Authorization
github.com/mattermost/mattermost/server/channels/testlib<9.11.9>=10.0.0-rc1 <10.5.0Go13 Apr 2025
  • M
Incorrect Authorization
github.com/mattermost/mattermost/server/channels/app<9.11.9>=10.0.0-rc1 <10.5.0Go13 Apr 2025
  • H
Division by zero
github.com/ollama/ollama/fs/ggml*Go13 Apr 2025
  • H
Allocation of Resources Without Limits or Throttling
github.com/ollama/ollama/llm*Go13 Apr 2025
  • M
Cross-site Scripting (XSS)
miniflux.app/v2/internal/ui<2.2.7Go11 Apr 2025