Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Cross-site Scripting (XSS)CVE-2026-6216
Affects dbgate-web | Versions >=7.0.0-alpha.10 <7.1.5
Has fix
npmPublished 16 Apr 2026
  • H
Arbitrary Argument InjectionCVE-2026-39884
Affects mcp-server-kubernetes | Versions >=1.0.0 <3.5.0
Has fix
npmPublished 16 Apr 2026
  • M
Authorization Bypass Through User-Controlled KeyCVE-2026-39857
Affects apostrophe | Versions <4.29.0
Has fix
npmPublished 16 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-35569
Affects apostrophe | Versions <4.29.0
Has fix
npmPublished 16 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-35569
Affects @apostrophecms/seo | Versions <1.4.2
Has fix
npmPublished 16 Apr 2026
  • M
Code Execution
Affects renovate | Versions >=43.65.0 <43.102.11
Has fix
npmPublished 16 Apr 2026
  • H
Uncontrolled Recursion
Affects @nestjs/microservices | Versions <11.1.19
Has fix
npmPublished 16 Apr 2026
  • M
Insertion of Sensitive Information into Log File
Affects langsmith | Versions <0.5.19
Has fix
npmPublished 16 Apr 2026
  • M
Cross-site Scripting (XSS)
Affects hono | Versions <4.12.14
Has fix
npmPublished 16 Apr 2026
  • M
Command InjectionCVE-2026-5528
Affects code-screenshot-mcp | Versions *
No fix available
npmPublished 16 Apr 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-22662
Affects prompts.chat | Versions *
No fix available
npmPublished 16 Apr 2026
  • H
Directory TraversalCVE-2026-22661
Affects prompts.chat | Versions *
No fix available
npmPublished 16 Apr 2026
  • H
Improper Handling of Case SensitivityCVE-2026-22665
Affects prompts.chat | Versions *
No fix available
npmPublished 16 Apr 2026
  • H
Missing AuthorizationCVE-2026-22663
Affects prompts.chat | Versions *
No fix available
npmPublished 16 Apr 2026
  • H
Server-side Request Forgery (SSRF)CVE-2026-22664
Affects prompts.chat | Versions *
No fix available
npmPublished 16 Apr 2026
  • M
Operator Precedence Logic Error
Affects dompurify | Versions <3.4.0
Has fix
npmPublished 16 Apr 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-5470
Affects google-search-mcp | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects tether-wrk-base | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects tensorzero-node | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects @pnc-cib/cib-core-lib | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects fusion-events | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects vs-supplier-portal-web | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects base-counter-web | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects laserlogsink | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects com.baogong.app_push_permission | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Missing AuthorizationCVE-2026-39397
Affects @delmaredigital/payload-puck | Versions <0.6.23
Has fix
npmPublished 15 Apr 2026
  • H
SQL Injection
Affects @vendure/core | Versions >=1.7.4 <2.3.4>=3.0.0-next.0 <3.5.7>=3.6.0 <3.6.2
Has fix
npmPublished 15 Apr 2026
  • C
Command InjectionCVE-2026-28291
Affects simple-git | Versions <3.32.0
Has fix
npmPublished 15 Apr 2026
  • C
Interpretation ConflictCVE-2026-33808
Affects @fastify/express | Versions <4.0.5
Has fix
npmPublished 15 Apr 2026
  • C
Interpretation ConflictCVE-2026-33807
Affects @fastify/express | Versions <4.0.5
Has fix
npmPublished 15 Apr 2026