Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • C
Uncaught Exception		org.webjars.npm:multer[0,]Maven4 Jun 2025
  • M
Exposed Dangerous Method or Function		org.webjars.npm:webpack-dev-server[0,]Maven4 Jun 2025
  • M
Arbitrary Code Injection		org.hibernate.validator:hibernate-validator[,6.2.0.CR1)[7.0.0.Alpha1,7.0.0.CR1)Maven4 Jun 2025
  • H
Origin Validation Error		org.webjars.npm:webpack-dev-server[0,]Maven4 Jun 2025
  • H
Incorrect Authorization		com.ritense.valtimo:object-management[11.0.0.RELEASE,12.13.0.RELEASE)Maven4 Jun 2025
  • H
Incorrect Authorization		com.ritense.valtimo:objecten-api[11.0.0.RELEASE,12.13.0.RELEASE)Maven4 Jun 2025
  • M
Insertion of Sensitive Information into Log File		com.erudika:para-server[0,]Maven3 Jun 2025
  • H
Improper Link Resolution Before File Access ('Link Following')		org.webjars.npm:tar-fs[0,]Maven3 Jun 2025
  • H
Unintended Proxy or Intermediary ('Confused Deputy')		org.springframework.cloud:spring-cloud-gateway-server-mvc[,4.1.8)[4.2.0,4.2.3)Maven30 May 2025
  • H
Unintended Proxy or Intermediary ('Confused Deputy')		org.springframework.cloud:spring-cloud-gateway-server[,3.1.10)[4.0.0,4.1.8)[4.2.0,4.2.3)Maven30 May 2025
  • M
Improper Handling of Case Sensitivity		org.apache.tomcat:tomcat-catalina[9.0.0.M1,9.0.105)[10.1.0-M1,10.1.41)[11.0.0-M1,11.0.7)Maven30 May 2025
  • M
Improper Handling of Case Sensitivity		org.apache.tomcat.embed:tomcat-embed-core[9.0.0.M1,9.0.105)[10.1.0-M1,10.1.41)[11.0.0-M1,11.0.7)Maven30 May 2025
  • H
Cross-site Request Forgery (CSRF)		com.liferay:com.liferay.layout.admin.web[,4.0.26)Maven29 May 2025
  • L
Cross-site Scripting (XSS)		org.webjars.bowergithub.vuetifyjs:vuetify[0,]Maven29 May 2025
  • L
Cross-site Scripting (XSS)		org.webjars.npm:vuetify[2.0.0,3.0.0)Maven29 May 2025
  • H
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')		commons-beanutils:commons-beanutils[1.0,1.11.0)Maven29 May 2025
  • H
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')		org.apache.commons:commons-beanutils2[2.0.0-M1,2.0.0-M2)Maven29 May 2025
  • C
Improper Handling of Invalid Use of Special Elements		org.apache.inlong:manager-pojo[1.13.0, 2.2.0)Maven28 May 2025
  • C
Improper Handling of Invalid Use of Special Elements		org.apache.inlong:manager-common[1.13.0, 2.2.0)Maven28 May 2025
  • C
Improper Handling of Invalid Use of Special Elements		org.apache.inlong:manager-pojo[1.13.0, 2.2.0)Maven28 May 2025
  • C
Improper Handling of Invalid Use of Special Elements		org.apache.inlong:manager-common[1.13.0, 2.2.0)Maven28 May 2025
  • H
Improper Handling of Unicode Encoding		org.apache.inlong:manager-pojo[1.7.0, 2.2.0)Maven28 May 2025
  • M
Incorrect Permission Assignment for Critical Resource		org.codelibs.fess:fess[,14.19.2)Maven27 May 2025
  • M
Information Exposure		org.webjars.npm:electron[0,]Maven26 May 2025
  • H
Function Call with Incorrectly Specified Arguments		org.webjars.npm:electron[0,]Maven25 May 2025
  • M
XML External Entity (XXE) Injection		org.eclipse.jgit:org.eclipse.jgit[,6.10.1.202505221210-r)[7.0.0.202409031743-r,7.0.1.202505221510-r)[7.1.0.202411261347-r,7.1.1.202505221757-r)[7.2.0.202503040940-r,7.2.1.202505142326-r)Maven23 May 2025
  • L
Server-side Request Forgery (SSRF)		org.apache.kylin:kylin-query-service[5.0.0,5.0.2)Maven21 May 2025
  • L
Server-side Request Forgery (SSRF)		org.apache.kylin:kylin-ops-server[5.0.0,5.0.2)Maven21 May 2025
  • L
Server-side Request Forgery (SSRF)		org.apache.kylin:kylin-datasource-service[5.0.0,5.0.2)Maven21 May 2025
  • L
Server-side Request Forgery (SSRF)		org.apache.kylin:kylin-core-common[5.0.0,5.0.2)Maven21 May 2025