Vulnerability DB | Snyk

Find out if you have vulnerabilities that put you at risk

Test your applications

All Vulnerabilities

APPLICATION

Cargo | Rust
Objective-C, CocoaPods | Swift
Composer | PHP
Conan | C/C++
GitHub | Go
Hex | Elixir / Erlang
Maven | Java
npm | JavaScript
NuGet | C#/F#/VB
Pypi | Python
pub | Dart, Flutter
RubyGems | Ruby
Swift Packages | Swift
C/C++

OPERATING SYSTEM

All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
MinimOS
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi

Report a new vulnerability

M

Prototype Pollution

Affects org.webjars.npm:handlebars | Versions [4.6.2,]

Has fix

MavenPublished 30 Mar 2026

M

Time-of-check Time-of-use (TOCTOU) Race Condition

Affects org.webjars.npm:handlebars | Versions [4.0.2,]

Has fix

MavenPublished 30 Mar 2026

M

SQL Injection: HibernateCVE-2026-4593

Affects xyz.erupt:erupt-ai | Versions [0,]

Has fix

MavenPublished 29 Mar 2026

M

SQL Injection: HibernateCVE-2026-4594

Affects xyz.erupt:erupt-jpa | Versions [0,]

Has fix

MavenPublished 29 Mar 2026

M

Cross-site Scripting (XSS)

Affects org.webjars.npm:dompurify | Versions [,3.3.2)

Has fix

MavenPublished 29 Mar 2026

H

Improper Encoding or Escaping of Output

Affects software.amazon.awssdk:cloudfront | Versions [2.18.33,2.41.30)

Has fix

MavenPublished 29 Mar 2026

L

Server-side Request Forgery (SSRF)CVE-2026-4874

Affects org.keycloak:keycloak-services | Versions [0,]

Has fix

MavenPublished 29 Mar 2026

H

Allocation of Resources Without Limits or ThrottlingCVE-2026-3260

Affects io.undertow:undertow-core | Versions [,2.4.0.Beta1)

Has fix

MavenPublished 29 Mar 2026

C

Server-side Request Forgery (SSRF)CVE-2026-22742

Affects org.springframework.ai:spring-ai-bedrock-converse | Versions [,1.0.5)[1.1.0-M1,1.1.4)

Has fix

MavenPublished 27 Mar 2026

C

Server-side Request Forgery (SSRF)CVE-2026-22742

Affects org.springframework.ai:spring-ai-autoconfigure-model-bedrock-ai | Versions [,1.0.5)[1.1.0-M1,1.1.4)

Has fix

MavenPublished 27 Mar 2026

H

Improper Input ValidationCVE-2026-22743

Affects org.springframework.ai:spring-ai-neo4j-store | Versions [,1.0.5)[1.1.0-M1,1.1.4)

Has fix

MavenPublished 27 Mar 2026

H

Improper Input ValidationCVE-2026-22744

Affects org.springframework.ai:spring-ai-redis-store | Versions [,1.0.5)[1.1.0-M1,1.1.4)

Has fix

MavenPublished 27 Mar 2026

C

Arbitrary Code InjectionCVE-2026-22738

Affects org.springframework.ai:spring-ai-vector-store | Versions [,1.0.5)[1.1.0-M1,1.1.4)

Has fix

MavenPublished 27 Mar 2026

L

Incorrect AuthorizationCVE-2026-32642

Affects org.apache.activemq:artemis-openwire-protocol | Versions [2.0.0, 2.53.0)

Has fix

MavenPublished 27 Mar 2026

L

Incorrect AuthorizationCVE-2026-32642

Affects org.apache.artemis:artemis-openwire-protocol | Versions [,2.53.0)

Has fix

MavenPublished 27 Mar 2026

M

Information ExposureCVE-2026-4633

Affects org.keycloak:keycloak-services | Versions [0,]

Has fix

MavenPublished 27 Mar 2026

M

Access Control BypassCVE-2026-4628

Affects org.keycloak:keycloak-services | Versions [0,]

Has fix

MavenPublished 27 Mar 2026

L

Affects org.webjars.npm:nodemailer | Versions [0,]

Has fix

MavenPublished 27 Mar 2026

L

Prototype PollutionCVE-2026-33916

Affects org.webjars.npm:handlebars | Versions [4.0.0,]

Has fix

MavenPublished 27 Mar 2026

H

Improper Verification of Cryptographic SignatureCVE-2026-33894

Affects org.webjars.npm:node-forge | Versions [0,]

Has fix

MavenPublished 27 Mar 2026

C

Improper Certificate ValidationCVE-2026-33896

Affects org.webjars.npm:node-forge | Versions [0,]

Has fix

MavenPublished 27 Mar 2026

H

Infinite loopCVE-2026-33891

Affects org.webjars.npm:node-forge | Versions [0,]

Has fix

MavenPublished 27 Mar 2026

H

Improper Verification of Cryptographic SignatureCVE-2026-33895

Affects org.webjars.npm:node-forge | Versions [0,]

Has fix

MavenPublished 27 Mar 2026

H

Regular Expression Denial of Service (ReDoS)CVE-2026-4923

Affects org.webjars.npm:path-to-regexp | Versions [8.2.0,]

Has fix

MavenPublished 27 Mar 2026

H

Regular Expression Denial of Service (ReDoS)CVE-2026-4926

Affects org.webjars.npm:path-to-regexp | Versions [8.2.0,]

Has fix

MavenPublished 27 Mar 2026

M

Regular Expression Denial of Service (ReDoS)CVE-2026-4867

Affects org.webjars.npm:path-to-regexp | Versions [0,]

Has fix

MavenPublished 27 Mar 2026

H

Infinite loopCVE-2026-33750

Affects org.webjars.npm:brace-expansion | Versions [,1.1.13)[2.0.0, 2.0.3)[3.0.0, 3.0.2)[4.0.0 ,5.0.5)

Has fix

MavenPublished 27 Mar 2026

H

Allocation of Resources Without Limits or ThrottlingCVE-2026-33871

Affects io.netty:netty-codec-http2 | Versions [,4.1.132.Final)[4.2.0.Alpha1,4.2.10.Final)

Has fix

MavenPublished 27 Mar 2026

H

HTTP Request SmugglingCVE-2026-33870

Affects io.netty:netty-microbench | Versions [,4.1.132.Final)[4.2.0.Alpha1,4.2.12.Final)

Has fix

MavenPublished 27 Mar 2026

H

HTTP Request SmugglingCVE-2026-33870

Affects io.netty:netty-codec-http | Versions [,4.1.132.Final)[4.2.0.Alpha1,4.2.12.Final)

Has fix

MavenPublished 27 Mar 2026

Product

Partners
Developers & Devops Features
Enterprise Features
Pricing
Test with GitHub
Test with CLI
API status

Resources

Vulnerability DB
Blog
Documentation
FAQs

Company

About
Jobs
Contact
Legal terms
Privacy
Press kit
Events

Contact us

Support
Report a new vuln

Find us online

Track our development

© 2026 Snyk Ltd.