Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Arbitrary Command InjectionCVE-2026-2178
Affects xcode-mcp-server | Versions *
No fix available
npmPublished 9 Feb 2026
  • L
UNIX Symbolic Link (Symlink) FollowingCVE-2026-25724
Affects @anthropic-ai/claude-code | Versions <2.1.7
Has fix
npmPublished 8 Feb 2026
  • C
Infinite loopCVE-2026-25533
Affects enclave-vm | Versions *
No fix available
npmPublished 8 Feb 2026
  • C
Infinite loopCVE-2026-25533
Affects @enclave-vm/core | Versions <2.10.1
Has fix
npmPublished 8 Feb 2026
  • H
Command InjectionCVE-2026-25722
Affects @anthropic-ai/claude-code | Versions <2.0.57
Has fix
npmPublished 8 Feb 2026
  • M
Arbitrary Command InjectionCVE-2026-2130
Affects mcp-maigret | Versions *
No fix available
npmPublished 8 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2026-25581
Affects sceditor | Versions <3.2.1
Has fix
npmPublished 8 Feb 2026
  • M
Open RedirectCVE-2026-25651
Affects client-certificate-auth | Versions >=0.2.1 <1.0.0
Has fix
npmPublished 8 Feb 2026
  • H
Command InjectionCVE-2026-25723
Affects @anthropic-ai/claude-code | Versions <2.0.55
Has fix
npmPublished 8 Feb 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-25762
Affects @adonisjs/bodyparser | Versions <10.1.3>=11.0.0-next.0 <11.0.0-next.9
Has fix
npmPublished 8 Feb 2026
  • M
Prototype PollutionCVE-2026-25754
Affects @adonisjs/bodyparser | Versions <10.1.3>=11.0.0-next.0 <11.0.0-next.9
Has fix
npmPublished 8 Feb 2026
  • C
Prototype PollutionCVE-2026-25520
Affects @nyariv/sandboxjs | Versions <0.8.29
Has fix
npmPublished 8 Feb 2026
  • C
Prototype PollutionCVE-2026-25586
Affects @nyariv/sandboxjs | Versions <0.8.29
Has fix
npmPublished 8 Feb 2026
  • C
Time-of-check Time-of-use (TOCTOU) Race ConditionCVE-2026-25641
Affects @nyariv/sandboxjs | Versions <0.8.29
Has fix
npmPublished 8 Feb 2026
  • C
Arbitrary Code InjectionCVE-2026-25587
Affects @nyariv/sandboxjs | Versions <0.8.29
Has fix
npmPublished 8 Feb 2026
  • C
Malicious Package
Affects web3-chain-sinon | Versions *
No fix available
npmPublished 6 Feb 2026
  • C
Malicious Package
Affects web3-sinon | Versions *
No fix available
npmPublished 6 Feb 2026
  • C
Malicious Package
Affects aligned-arrays | Versions *
No fix available
npmPublished 6 Feb 2026
  • C
Embedded Malicious Code
Affects @dydxprotocol/v4-client-js | Versions =1.0.31=1.15.2=1.22.1=3.4.1
Has fix
npmPublished 6 Feb 2026
  • C
Malicious Package
Affects @meli-lint/eslint-config-base | Versions *
No fix available
npmPublished 6 Feb 2026
  • C
Malicious Package
Affects @hashicorp-internal/vault-reporting | Versions *
No fix available
npmPublished 6 Feb 2026
  • C
Malicious Package
Affects @opposhop/nuxt-ssr-cache | Versions *
No fix available
npmPublished 6 Feb 2026
  • C
Malicious Package
Affects @rsgweb/locale-tools | Versions *
No fix available
npmPublished 6 Feb 2026
  • C
Malicious Package
Affects @rsgweb/rockstar-account | Versions *
No fix available
npmPublished 6 Feb 2026
  • C
Malicious Package
Affects @rdxportal/ui-components | Versions *
No fix available
npmPublished 6 Feb 2026
  • C
Malicious Package
Affects @sbseg-plugin/qbo-web-app-ui | Versions *
No fix available
npmPublished 6 Feb 2026
  • C
Malicious Package
Affects @meli-lint/eslint-config-base-ts | Versions *
No fix available
npmPublished 6 Feb 2026
  • C
Malicious Package
Affects @sporting-life/sportinglife-betslip-sdk | Versions *
No fix available
npmPublished 6 Feb 2026
  • C
Malicious Package
Affects @meli-lint/eslint-config-tests-jest | Versions *
No fix available
npmPublished 6 Feb 2026
  • C
Malicious Package
Affects @rsgweb/tina | Versions *
No fix available
npmPublished 6 Feb 2026