Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • C
Authentication Bypass Using an Alternate Path or Channel		org.apache.pinot:pinot-controller[,1.3.0)Maven3 Apr 2025
  • C
Authentication Bypass Using an Alternate Path or Channel		org.apache.pinot:pinot-common[,1.3.0)Maven3 Apr 2025
  • C
Authentication Bypass Using an Alternate Path or Channel		org.apache.pinot:pinot-broker[,1.3.0)Maven3 Apr 2025
  • M
Inefficient Algorithmic Complexity		io.netty.incubator:netty-incubator-codec-classes-quic[,0.0.71)Maven3 Apr 2025
  • H
Privilege Context Switching Error		org.jenkins-ci.plugins:templating-engine[,2.5.4)Maven3 Apr 2025
  • M
Missing Authorization		org.jenkins-ci.main:jenkins-core[,2.492.3)[2.493,2.504)Maven3 Apr 2025
  • M
Missing Authorization		org.jenkins-ci.main:jenkins-core[,2.492.3)[2.493,2.504)Maven3 Apr 2025
  • H
Allocation of Resources Without Limits or Throttling		org.keycloak:keycloak-quarkus-server[0,]Maven3 Apr 2025
  • H
Infinite loop		org.webjars.npm:image-size[0,]Maven3 Apr 2025
  • C
Improper Handling of Case Sensitivity		org.apache.camel:camel-undertow[4.8.0,4.8.6)[4.10.0,4.10.3)Maven2 Apr 2025
  • H
Deserialization of Untrusted Data		io.jooby:jooby-pac4j[,2.17.0)[3.0.0.M1,3.7.0)Maven1 Apr 2025
  • H
Missing Release of Memory after Effective Lifetime		org.infinispan:infinispan-server-rest[0,]Maven31 Mar 2025
  • M
Improper Isolation or Compartmentalization		org.webjars.npm:electron[0,]Maven30 Mar 2025
  • M
Cross-site Scripting (XSS)		org.webjars.bower:contenttools[0,]Maven28 Mar 2025
  • M
Cross-site Scripting (XSS)		org.webjars.npm:contenttools[0,]Maven28 Mar 2025
  • H
Cross-site Scripting (XSS)		org.jboss.hal:hal-core[,3.6.21)[3.7.0,3.7.7)Maven28 Mar 2025
  • L
Insufficient Verification of Data Authenticity		org.wildfly.security:wildfly-elytron-http-oidc[1.17.0.Final,2.2.9.Final)[2.3.0.Final,2.6.2.Final)Maven28 Mar 2025
  • L
Arbitrary Code Injection		org.apache.kylin:kylin-datasource-sdk[4.0.0-alpha,5.0.2)Maven28 Mar 2025
  • L
Arbitrary Code Injection		org.apache.kylin:kylin-core-common[4.0.0,5.0.2)Maven28 Mar 2025
  • L
Arbitrary Code Injection		org.apache.kylin:kylin-common-service[,5.0.2)Maven28 Mar 2025
  • M
Cross-site Scripting (XSS)		org.webjars.npm:vega-functions[,5.18.0)Maven27 Mar 2025
  • M
Cross-site Scripting (XSS)		org.webjars.npm:vega-functions[,5.18.0)Maven27 Mar 2025
  • M
Improper Handling of Highly Compressed Data (Data Amplification)		io.seata:seata-compressor-zstd[0,]Maven27 Mar 2025
  • M
Improper Handling of Highly Compressed Data (Data Amplification)		org.apache.seata:seata-compressor-zstd[,2.3.0)Maven27 Mar 2025
  • M
Deserialization of Untrusted Data		org.apache.seata:seata-config-core[2.0.0,2.2.0)Maven26 Mar 2025
  • M
Allocation of Resources Without Limits or Throttling		org.keycloak:keycloak-services[0,]Maven25 Mar 2025
  • M
Cross-site Scripting (XSS)		org.apache.oozie:oozie-core[0,]Maven25 Mar 2025
  • M
Incorrect Authorization		org.webjars.npm:vite[,6.3.5)Maven25 Mar 2025
  • H
Relative Path Traversal		org.apache.commons:commons-vfs2[,2.10.0)Maven25 Mar 2025
  • M
Insertion of Sensitive Information into Log File		org.apache.commons:commons-vfs2[,2.10.0)Maven25 Mar 2025