Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • L
Missing Release of Resource after Effective Lifetime		hackney<1.24.0hex29 May 2025
  • M
Missing Authentication for Critical Function		ash_authentication<4.7.0hex21 Apr 2025
  • M
Improper Privilege Management		ash_authentication>=4.1.0 <4.4.9hex13 Feb 2025
  • M
Server-side Request Forgery (SSRF)		hackney<1.21.0hex10 Feb 2025
  • M
Files or Directories Accessible to External Parties		ash_postgres<2.4.10hex24 Oct 2024
  • H
Insufficient Verification of Data Authenticity		hex_core<0.4.0hex2 May 2024
  • M
Origin Validation Error		phoenix<1.6.14hex9 Apr 2024
  • H
Denial of Service (DoS)		rabbit_common>=3.7.0 <3.7.21>=3.8.0 <3.8.1hex9 Apr 2024
  • M
Uncontrolled Resource Consumption ('Resource Exhaustion')		oidcc>=3.0.0 <3.0.2>=3.1.0 <3.1.2>=3.2.0-beta.1 <3.2.0-beta.3hex5 Apr 2024
  • M
Resource Exhaustion		jose<1.11.7hex20 Mar 2024
  • M
Insufficient Session Expiration		samly<1.4.0hex12 Feb 2024
  • M
Denial of Service (DoS)		rabbit_common<3.11.24>=3.12.0-rc.1 <3.12.7hex20 Nov 2023
  • L
Path Traversal		pleroma*hex20 Oct 2023
  • C
Improper Control of Generation of Code ('Code Injection')		mtproto_proxy>=0.0.0hex12 Oct 2023
  • M
Improper Validation of Certificate Expiration		pow>=1.0.14 <1.0.34hex19 Sept 2023
  • C
Arbitrary Code Execution		livebook>=0.8.0 <0.8.2>=0.9.0 <0.9.3hex22 Jun 2023
  • L
Cross-site Scripting (XSS)		rabbit_common>=3.7.0 <3.7.20>=3.8.0 <3.8.1hex6 Jul 2022
  • C
Improper Verification of Cryptographic Signature		starkbank_ecdsa>=1.0.0 <1.0.1hex3 Jul 2022
  • H
NULL Pointer Dereference		ecto<2.2.1hex30 Jun 2022
  • M
Cross-site Scripting (XSS)		phoenix_html>=3.0.0 <3.0.4hex15 Dec 2021
  • C
Remote Code Execution (RCE)		paginator<1.0.0hex30 Mar 2021
  • H
Improper Input Validation		plug>=1.3.0 <1.3.2>=1.2.0-rc.0 <1.2.3>=1.1.0 <1.1.7<1.0.4hex30 Mar 2021
  • M
Open Redirect		phoenix>=1.3.0-rc.0 <1.3.0-rc.1>=1.2.0-rc.0 <1.2.3>=1.1.0 <1.1.7<1.0.5hex30 Mar 2021
  • M
HTTP Header Injection		plug>=1.3.0 <1.3.5>=1.2.0-rc.0 <1.2.5>=1.1.0 <1.1.9<1.0.6hex30 Mar 2021
  • H
Improper Input Validation		ecto<2.2.1hex30 Mar 2021
  • H
Arbitrary Code Execution		plug>=1.3.0 <1.3.2>=1.2.0-rc.0 <1.2.3>=1.1.0 <1.1.7<1.0.4hex30 Mar 2021
  • M
Cross-site Scripting (XSS)		xain<0.6.2hex30 Mar 2021
  • H
Denial of Service (DoS)		sweet_xml<0.7.0hex30 Mar 2021
  • M
Session Fixation		pow<1.0.16hex18 Mar 2021
  • H
Improper Input Validation		coherence<0.5.2hex18 Mar 2021