Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • C
Arbitrary Code Injection		org.apache.synapse:synapse-core[,4.0.0-wso2v255)Maven7 Nov 2025
  • L
Improper Validation of Integrity Check Value		io.github.ascopes:protobuf-maven-plugin[,4.0.2)Maven5 Nov 2025
  • L
Missing Critical Step in Authentication		org.keycloak:keycloak-services[0,]Maven5 Nov 2025
  • M
Cross-site Scripting (XSS)		com.liferay:com.liferay.dynamic.data.mapping.item.selector.web[,1.0.9)Maven4 Nov 2025
  • M
Missing Authorization		com.liferay:com.liferay.blogs.item.selector.web[,6.0.19)Maven4 Nov 2025
  • H
Improper Validation of Certificate with Host Mismatch		com.microsoft.sqlserver:mssql-jdbc[,10.2.4.jre8)[11.1.0.jre11-preview, 11.2.4.jre8)[12.1.0.jre11-preview, 12.2.1.jre8)[12.3.0.jre11-preview, 12.4.3.jre8)[12.5.0.jre11-preview, 12.6.5.jre8)[12.7.0.jre11-preview, 12.8.2.jre8)[12.9.0.jre11-preview, 12.10.2.jre8)[13.1.0.jre8-preview, 13.2.1.jre8)Maven4 Nov 2025
  • M
Use of Web Browser Cache Containing Sensitive Information		com.liferay:com.liferay.adaptive.media.web[,5.0.52)Maven4 Nov 2025
  • M
Use of Web Browser Cache Containing Sensitive Information		com.liferay.portal:com.liferay.portal.impl[,69.0.0)Maven4 Nov 2025
  • M
Cross-site Scripting (XSS)		com.liferay:com.liferay.portal.security.iframe.sanitizer[,1.0.1)Maven2 Nov 2025
  • M
Cross-site Scripting (XSS)		com.liferay:com.liferay.portal.language.override.web[,1.0.3)Maven2 Nov 2025
  • M
Sensitive Information in Resource Not Removed Before Reuse		org.neo4j:neo4j-bolt[5.26.0,5.26.15)[2025.10.1,2025.1.0)Maven31 Oct 2025
  • M
CRLF Injection		org.keycloak:keycloak-services[,26.3.3)Maven31 Oct 2025
  • H
Allocation of Resources Without Limits or Throttling		io.grpc:grpc-netty-shaded[,1.75.0)Maven31 Oct 2025
  • M
Brute Force		com.liferay.portal:com.liferay.portal.impl[,60.0.0)Maven31 Oct 2025
  • M
Cross-site Scripting (XSS)		com.liferay:com.liferay.account.admin.web[,2.0.108)Maven30 Oct 2025
  • M
Insertion of Sensitive Information into Log File		com.liferay:com.liferay.portal.security.ldap.impl[,4.0.54)Maven30 Oct 2025
  • M
Open Redirect		com.liferay:com.liferay.layout.admin.web[,5.0.157)Maven30 Oct 2025
  • M
Cleartext Storage of Sensitive Information		com.liferay.portal:com.liferay.portal.impl[,93.0.0)Maven30 Oct 2025
  • M
Missing Authentication for Critical Function		com.liferay.portal:com.liferay.portal.impl[,97.0.0)Maven30 Oct 2025
  • M
Session Fixation		org.keycloak:keycloak-services[,26.0.0)Maven30 Oct 2025
  • H
Command Injection		org.jenkins-ci.plugins:azure-cli[0,]Maven30 Oct 2025
  • M
Cleartext Transmission of Sensitive Information		io.jenkins.plugins:byteguard-build-actions[0,]Maven30 Oct 2025
  • M
Cleartext Transmission of Sensitive Information		com.openshift.jenkins:openshift-pipeline[0,]Maven30 Oct 2025
  • M
Cross-site Request Forgery (CSRF)		org.jenkins-ci.plugins:nexus-task-runner[0,]Maven30 Oct 2025
  • M
Missing Authorization		org.jenkins-ci.plugins:nexus-task-runner[0,]Maven30 Oct 2025
  • M
Missing Authorization		org.jenkins-ci.plugins:windocks-start-container[0,]Maven30 Oct 2025
  • H
XML External Entity (XXE) Injection		org.jenkins-ci.plugins:jdepend[0,]Maven30 Oct 2025
  • M
Cleartext Transmission of Sensitive Information		org.jenkins-ci.plugins:curseforge-publisher[0,]Maven30 Oct 2025
  • M
Cross-site Request Forgery (CSRF)		jp.ikedam.jenkins.plugins:extensible-choice-parameter[0,]Maven30 Oct 2025
  • M
Cross-site Request Forgery (CSRF)		org.jenkins-ci.plugins:windocks-start-container[0,]Maven30 Oct 2025