Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
Cleartext Storage of Sensitive Information		org.ovirt.engine.sdk:ovirt-engine-sdk-java[0,]Maven27 Sept 2024
  • H
Insecure Storage of Sensitive Information		org.apache.maven.plugins:maven-archetype-plugin[3.2.1,3.3.0)Maven26 Sept 2024
  • M
Creation of Temporary File in Directory with Insecure Permissions		org.apache.hadoop:hadoop-common[,3.4.0)Maven25 Sept 2024
  • H
Inadequate Encryption Strength		org.apache.linkis:linkis-engineplugin-spark[1.3.0,1.6.0)Maven25 Sept 2024
  • M
Arbitrary File Read		org.jenkins-ci.main:remoting[,3206.3208.v409508a_675ff)[3248.v65ecb_254c298,3248.3250.v3277a_8e88c9b_)[3256.v4da_9d93e1a_f3,3256.3258.v858f3c9a_f69d)Maven24 Sept 2024
  • H
Allocation of Resources Without Limits or Throttling		org.apache.tomcat.embed:tomcat-embed-core[9.0.13,9.0.90)[10.1.0-M1,10.1.25)[11.0.0-M1,11.0.0-M21)Maven24 Sept 2024
  • H
Allocation of Resources Without Limits or Throttling		org.apache.tomcat:tomcat-coyote[9.0.13,9.0.90)[10.1.0-M1,10.1.25)[11.0.0-M1,11.0.0-M21)Maven24 Sept 2024
  • H
XML External Entity (XXE) Injection		de.gematik.refv.commons:commons[,2.5.1)Maven20 Sept 2024
  • C
Remote Code Execution (RCE)		pl.allegro.tech.hermes:hermes-management[,2.2.9)Maven20 Sept 2024
  • C
Deserialization of Untrusted Data		com.alipay.sofa:hessian[,3.5.5)Maven20 Sept 2024
  • M
Improper Verification of Cryptographic Signature		org.keycloak:keycloak-saml-core[,22.0.13)[23.0.0,24.0.8)[25.0.0,25.0.6)Maven20 Sept 2024
  • H
URL Redirection to Untrusted Site ('Open Redirect')		org.keycloak:keycloak-services[,22.0.13)[23.0.0,24.0.8)[25.0.0,25.0.6)Maven20 Sept 2024
  • H
URL Redirection to Untrusted Site ('Open Redirect')		org.keycloak:keycloak-server-spi-private[,22.0.13)[23.0.0,24.0.8)[25.0.0,25.0.6)Maven20 Sept 2024
  • L
Improper Input Validation		org.apache.druid:druid-processing[,30.0.1)Maven19 Sept 2024
  • H
Allocation of Resources Without Limits or Throttling		org.dnsjava:dnsjava[0,]Maven19 Sept 2024
  • H
Allocation of Resources Without Limits or Throttling		org.dnsjava:dnsjava[0,]Maven19 Sept 2024
  • H
Acceptance of Extraneous Untrusted Data With Trusted Data		org.dnsjava:dnsjava[0,]Maven19 Sept 2024
  • H
Incorrect Use of Privileged APIs		org.xwiki.platform:xwiki-platform-notifications-ui[13.2-rc-1,14.10.21)[15.0-rc-1,15.5.5)[15.6-rc-1,15.10.1)Maven19 Sept 2024
  • M
Exposure of Sensitive Information to an Unauthorized Actor		org.xwiki.platform:xwiki-platform-notifications-ui[13.2-rc-1,14.10.21)[15.0-rc-1,15.5.5)[15.6-rc-1,15.10.1)Maven19 Sept 2024
  • M
Improper Verification of Cryptographic Signature		org.apache.druid:druid-processing[0.18.0,30.0.1)Maven19 Sept 2024
  • M
Improper Verification of Cryptographic Signature		org.apache.druid.extensions:druid-pac4j[0.18.0,30.0.1)Maven19 Sept 2024
  • H
Stack-based Buffer Overflow		com.google.protobuf:protobuf-java-util[,3.25.5)[4.0.0-rc-1,4.27.5)[4.28.0-RC1,4.28.2)Maven19 Sept 2024
  • H
Stack-based Buffer Overflow		com.google.protobuf:protobuf-java[,3.25.5)[4.0.0-rc-1,4.27.5)[4.28.0-RC1,4.28.2)Maven19 Sept 2024
  • M
Improper Authorization		org.opendaylight.mdsal:mdsal-artifacts[0,]Maven17 Sept 2024
  • M
Improper Authorization		org.opendaylight.aaa:aaa.project[0,]Maven17 Sept 2024
  • C
Deserialization of Untrusted Data		org.apache.seata:seata-core[1.0.0,2.1.0)Maven17 Sept 2024
  • M
Uncontrolled Resource Consumption ('Resource Exhaustion')		org.bouncycastle:bcprov-jdk15to18[,1.73)Maven17 Sept 2024
  • M
Uncontrolled Resource Consumption ('Resource Exhaustion')		org.bouncycastle:bcprov-jdk14[,1.73)Maven17 Sept 2024
  • M
Uncontrolled Resource Consumption ('Resource Exhaustion')		org.bouncycastle:bcprov-ext-jdk14[,1.73)Maven17 Sept 2024
  • M
Uncontrolled Resource Consumption ('Resource Exhaustion')		org.bouncycastle:bcprov-ext-jdk15to18[,1.73)Maven17 Sept 2024