Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
Information Exposure
org.webjars.npm:electron[0,]Maven26 May 2025
  • H
Function Call with Incorrectly Specified Arguments
org.webjars.npm:electron[0,]Maven25 May 2025
  • M
XML External Entity (XXE) Injection
org.eclipse.jgit:org.eclipse.jgit[,6.10.1.202505221210-r)[7.0.0.202409031743-r,7.0.1.202505221510-r)[7.1.0.202411261347-r,7.1.1.202505221757-r)[7.2.0.202503040940-r,7.2.1.202505142326-r)Maven23 May 2025
  • L
Server-side Request Forgery (SSRF)
org.apache.kylin:kylin-query-service[5.0.0,5.0.2)Maven21 May 2025
  • L
Server-side Request Forgery (SSRF)
org.apache.kylin:kylin-ops-server[5.0.0,5.0.2)Maven21 May 2025
  • L
Server-side Request Forgery (SSRF)
org.apache.kylin:kylin-datasource-service[5.0.0,5.0.2)Maven21 May 2025
  • L
Server-side Request Forgery (SSRF)
org.apache.kylin:kylin-core-common[5.0.0,5.0.2)Maven21 May 2025
  • C
Missing Authentication for Critical Function
org.springframework.security:spring-security-core[6.4.0,6.4.6)Maven20 May 2025
  • H
Uncaught Exception
org.webjars.npm:multer[0,]Maven20 May 2025
  • M
Cross-site Scripting (XSS)
org.webjars:bootstrap-multiselect[0,]Maven20 May 2025
  • M
Cross-site Scripting (XSS)
org.webjars.bower:bootstrap-multiselect[0,]Maven20 May 2025
  • M
Cross-site Scripting (XSS)
org.webjars.npm:bootstrap-multiselect[0,]Maven20 May 2025
  • M
Cross-site Scripting (XSS)
org.webjars.bowergithub.davidstutz:bootstrap-multiselect[0,]Maven20 May 2025
  • H
Missing Release of Memory after Effective Lifetime
org.webjars.npm:multer[0,]Maven20 May 2025
  • H
Improper Verification of Cryptographic Signature
org.webjars.npm:openpgp[0,]Maven20 May 2025
  • H
Improper Authentication
org.jenkins-ci.plugins:wso2id-oauth[0,]Maven19 May 2025
  • M
Prototype Pollution
org.webjars.npm:estree-util-value-to-estree[,3.3.3)Maven19 May 2025
  • H
Cross-site Scripting (XSS)
org.jenkins-ci.plugins:cloudbees-jenkins-advisor[,374.376.v3a_41a_a_142efe)Maven18 May 2025
  • M
Cross-site Scripting (XSS)
com.liferay:com.liferay.calendar.web[,4.0.0)Maven18 May 2025
  • M
Cross-site Scripting (XSS)
com.liferay:com.liferay.portal.workflow.kaleo.forms.web[,5.0.0)Maven18 May 2025
  • H
SQL Injection
com.liferay.commerce:com.liferay.commerce.address.web[,3.0.8)Maven18 May 2025
  • H
SQL Injection
com.liferay.commerce:com.liferay.commerce.product.service[,5.0.19)Maven18 May 2025
  • H
Access Control Bypass
com.liferay:com.liferay.multi.factor.authentication.web[,2.0.0)Maven18 May 2025
  • H
Access Control Bypass
com.liferay:com.liferay.multi.factor.authentication.timebased.otp.web[,2.0.0)Maven18 May 2025
  • M
Insertion of Sensitive Information into Log File
org.apache.iotdb:node-commons[0.10.0,1.3.4)[2.0.1-beta,2.0.2)Maven16 May 2025
  • M
Insertion of Sensitive Information into Log File
org.apache.iotdb:iotdb-server[0.10.0,1.3.4)[2.0.1-beta,2.0.2)Maven16 May 2025
  • M
Insertion of Sensitive Information into Log File
org.apache.iotdb:iotdb-jdbc[0.10.0,1.3.4)[2.0.1-beta,2.0.2)Maven16 May 2025
  • H
Arbitrary Code Injection
org.apache.iotdb:node-commons[1.0.0,1.3.4)Maven16 May 2025
  • H
Arbitrary Code Injection
org.apache.iotdb:iotdb-server[1.0.0,1.3.4)Maven16 May 2025
  • L
Improper Handling of Case Sensitivity
org.springframework:spring-context[6.1.0,6.1.20)[6.2.0,6.2.7)Maven16 May 2025