Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • H
Open RedirectCVE-2026-40037
Affects openclaw | Versions <2026.4.8
Has fix
npmPublished 9 Apr 2026
  • C
Malicious Package
Affects dev-log-core | Versions *
No fix available
npmPublished 8 Apr 2026
  • M
Directory TraversalCVE-2026-39859
Affects liquidjs | Versions <10.25.5
Has fix
npmPublished 8 Apr 2026
  • H
Improperly Implemented Security Check for StandardCVE-2026-39412
Affects liquidjs | Versions <10.25.4
Has fix
npmPublished 8 Apr 2026
  • M
CRLF Injection
Affects nodemailer | Versions <8.0.5
Has fix
npmPublished 8 Apr 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-39865
Affects axios | Versions >=1.13.0 <1.13.2
Has fix
npmPublished 8 Apr 2026
  • M
Allocation of Resources Without Limits or ThrottlingCVE-2026-34404
Affects nuxt-og-image | Versions <6.2.5
Has fix
npmPublished 8 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-34405
Affects nuxt-og-image | Versions <6.2.5
Has fix
npmPublished 8 Apr 2026
  • H
Untrusted Search Path
Affects openclaw | Versions <2026.3.24
Has fix
npmPublished 8 Apr 2026
  • M
Arbitrary File Upload
Affects openclaw | Versions <2026.3.31
Has fix
npmPublished 8 Apr 2026
  • M
Allocation of Resources Without Limits or Throttling
Affects openclaw | Versions >=2026.2.26 <2026.3.31
Has fix
npmPublished 8 Apr 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-41297
Affects openclaw | Versions <2026.3.31
Has fix
npmPublished 8 Apr 2026
  • M
Timing Attack
Affects openclaw | Versions <2026.4.2
Has fix
npmPublished 8 Apr 2026
  • M
Improper Authorization
Affects openclaw | Versions <2026.3.28
Has fix
npmPublished 8 Apr 2026
  • L
Improper Privilege Management
Affects openclaw | Versions <2026.3.28
Has fix
npmPublished 8 Apr 2026
  • M
Improper Privilege ManagementCVE-2026-41298
Affects openclaw | Versions <2026.4.2
Has fix
npmPublished 8 Apr 2026
  • M
Unsafe Dependency ResolutionCVE-2026-41295
Affects openclaw | Versions <2026.4.2
Has fix
npmPublished 8 Apr 2026
  • M
Incorrect Authorization
Affects openclaw | Versions <2026.3.31
Has fix
npmPublished 8 Apr 2026
  • M
Directory Traversal
Affects openclaw | Versions <2026.4.2
Has fix
npmPublished 8 Apr 2026
  • M
Improper Handling of Case SensitivityCVE-2026-34426
Affects openclaw | Versions <2026.4.2
Has fix
npmPublished 8 Apr 2026
  • M
Information Exposure
Affects openclaw | Versions <2026.4.2
Has fix
npmPublished 8 Apr 2026
  • M
Incorrect Authorization
Affects openclaw | Versions <2026.4.2
Has fix
npmPublished 8 Apr 2026
  • M
Improper Input Validation
Affects openclaw | Versions <2026.4.2
Has fix
npmPublished 8 Apr 2026
  • M
Incomplete List of Disallowed Inputs
Affects openclaw | Versions <2026.3.31
Has fix
npmPublished 8 Apr 2026
  • M
Expected Behavior Violation
Affects @openclaw/zalo | Versions *
No fix available
npmPublished 8 Apr 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-34148
Affects @fedify/vocab-runtime | Versions <2.0.8>=2.1.0 <2.1.1
Has fix
npmPublished 8 Apr 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-34148
Affects @fedify/fedify | Versions <1.9.6>=1.10.0 <1.10.5>=2.0.0 <2.0.8>=2.1.0 <2.1.1
Has fix
npmPublished 8 Apr 2026
  • M
Insertion of Sensitive Information Into Sent DataCVE-2026-39381
Affects parse-server | Versions >=7.0.0-alpha.1 <8.6.75>=9.0.0-alpha.1 <9.8.0-alpha.7
Has fix
npmPublished 8 Apr 2026
  • M
Timing AttackCVE-2026-39321
Affects parse-server | Versions <8.6.74>=9.0.0-alpha.1 <9.8.0-alpha.6
Has fix
npmPublished 8 Apr 2026
  • M
Improper Handling of Insufficient Permissions or Privileges
Affects openclaw | Versions <2026.3.28
Has fix
npmPublished 8 Apr 2026