Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Improper Verification of Cryptographic Signature
Affects altcha | Versions <1.0.0
Has fix
hexPublished 17 Dec 2025
  • H
Incorrect Authorization
Affects ash | Versions >=3.6.3 <3.7.1
Has fix
hexPublished 20 Oct 2025
  • H
Incorrect Authorization
Affects ash | Versions <3.6.2
Has fix
hexPublished 13 Oct 2025
  • H
Incorrect Authorization
Affects ash | Versions <3.5.39
Has fix
hexPublished 15 Sept 2025
  • L
Missing Release of Resource after Effective Lifetime
Affects hackney | Versions <1.24.0
Has fix
hexPublished 29 May 2025
  • M
Missing Authentication for Critical Function
Affects ash_authentication | Versions <4.7.0
Has fix
hexPublished 21 Apr 2025
  • M
Improper Privilege Management
Affects ash_authentication | Versions >=4.1.0 <4.4.9
Has fix
hexPublished 13 Feb 2025
  • M
Server-side Request Forgery (SSRF)
Affects hackney | Versions <1.21.0
Has fix
hexPublished 10 Feb 2025
  • M
Files or Directories Accessible to External Parties
Affects ash_postgres | Versions <2.4.10
Has fix
hexPublished 24 Oct 2024
  • H
Insufficient Verification of Data Authenticity
Affects hex_core | Versions <0.4.0
Has fix
hexPublished 2 May 2024
  • M
Origin Validation Error
Affects phoenix | Versions <1.6.14
Has fix
hexPublished 9 Apr 2024
  • H
Denial of Service (DoS)
Affects rabbit_common | Versions >=3.7.0 <3.7.21>=3.8.0 <3.8.1
Has fix
hexPublished 9 Apr 2024
  • M
Uncontrolled Resource Consumption ('Resource Exhaustion')
Affects oidcc | Versions >=3.0.0 <3.0.2>=3.1.0 <3.1.2>=3.2.0-beta.1 <3.2.0-beta.3
Has fix
hexPublished 5 Apr 2024
  • M
Resource Exhaustion
Affects jose | Versions <1.11.7
Has fix
hexPublished 20 Mar 2024
  • M
Insufficient Session Expiration
Affects samly | Versions <1.4.0
Has fix
hexPublished 12 Feb 2024
  • M
Denial of Service (DoS)
Affects rabbit_common | Versions <3.11.24>=3.12.0-rc.1 <3.12.7
Has fix
hexPublished 20 Nov 2023
  • L
Path Traversal
Affects pleroma | Versions *
No fix available
hexPublished 20 Oct 2023
  • C
Improper Control of Generation of Code ('Code Injection')
Affects mtproto_proxy | Versions >=0.0.0
Has fix
hexPublished 12 Oct 2023
  • M
Improper Validation of Certificate Expiration
Affects pow | Versions >=1.0.14 <1.0.34
Has fix
hexPublished 19 Sept 2023
  • C
Arbitrary Code Execution
Affects livebook | Versions >=0.8.0 <0.8.2>=0.9.0 <0.9.3
Has fix
hexPublished 22 Jun 2023
  • L
Cross-site Scripting (XSS)
Affects rabbit_common | Versions >=3.7.0 <3.7.20>=3.8.0 <3.8.1
Has fix
hexPublished 6 Jul 2022
  • C
Improper Verification of Cryptographic Signature
Affects starkbank_ecdsa | Versions >=1.0.0 <1.0.1
Has fix
hexPublished 3 Jul 2022
  • H
NULL Pointer Dereference
Affects ecto | Versions <2.2.1
Has fix
hexPublished 30 Jun 2022
  • M
Cross-site Scripting (XSS)
Affects phoenix_html | Versions >=3.0.0 <3.0.4
Has fix
hexPublished 15 Dec 2021
  • C
Remote Code Execution (RCE)
Affects paginator | Versions <1.0.0
Has fix
hexPublished 30 Mar 2021
  • H
Improper Input Validation
Affects plug | Versions >=1.3.0 <1.3.2>=1.2.0-rc.0 <1.2.3>=1.1.0 <1.1.7<1.0.4
Has fix
hexPublished 30 Mar 2021
  • M
Open Redirect
Affects phoenix | Versions >=1.3.0-rc.0 <1.3.0-rc.1>=1.2.0-rc.0 <1.2.3>=1.1.0 <1.1.7<1.0.5
Has fix
hexPublished 30 Mar 2021
  • M
HTTP Header Injection
Affects plug | Versions >=1.3.0 <1.3.5>=1.2.0-rc.0 <1.2.5>=1.1.0 <1.1.9<1.0.6
Has fix
hexPublished 30 Mar 2021
  • H
Improper Input Validation
Affects ecto | Versions <2.2.1
Has fix
hexPublished 30 Mar 2021
  • H
Arbitrary Code Execution
Affects plug | Versions >=1.3.0 <1.3.2>=1.2.0-rc.0 <1.2.3>=1.1.0 <1.1.7<1.0.4
Has fix
hexPublished 30 Mar 2021