Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • C
Malicious Package		print-vault-node*npm18 Jul 2025
  • C
Malicious Package		lunasec*npm18 Jul 2025
  • C
Malicious Package		winston-compose*npm18 Jul 2025
  • C
Malicious Package		canonical-bridge-ui*npm18 Jul 2025
  • C
Malicious Package		iwf-typescript-sdk*npm18 Jul 2025
  • C
Malicious Package		sol-validator*npm18 Jul 2025
  • C
Malicious Package		notificationsandbox*npm18 Jul 2025
  • C
Malicious Package		react-hook-form-ui*npm18 Jul 2025
  • C
Malicious Package		mttdocs*npm18 Jul 2025
  • C
Malicious Package		nodemailer-helper*npm18 Jul 2025
  • M
Out-of-bounds Read		@openzeppelin/contracts>=5.2.0 <5.4.0npm18 Jul 2025
  • M
Out-of-bounds Read		@openzeppelin/contracts-upgradeable>=5.2.0 <5.4.0npm18 Jul 2025
  • H
Uncaught Exception		multer>=1.4.4-lts.1 <2.0.2npm18 Jul 2025
  • M
Improper Handling of Unexpected Data Type		on-headers<1.1.0npm18 Jul 2025
  • M
Cross-site Scripting (XSS)		vue-i18n<9.14.5>=10.0.0-alpha.1 <10.0.8>=11.0.0-beta.0 <11.1.10npm17 Jul 2025
  • M
Cross-site Scripting (XSS)		@intlify/core<9.14.5>=10.0.0-alpha.1 <10.0.8>=11.0.0-beta.0 <11.1.10npm17 Jul 2025
  • M
Cross-site Scripting (XSS)		petite-vue-i18n>=10.0.0-alpha.1 <10.0.8>=11.0.0-beta.0 <11.1.10npm17 Jul 2025
  • M
Cross-site Scripting (XSS)		@intlify/vue-i18n-core<9.14.5>=10.0.0-alpha.1 <10.0.8>=11.0.0-beta.0 <11.1.10npm17 Jul 2025
  • C
Malicious Package		ethers3-wallet*npm17 Jul 2025
  • M
Improper Authorization		@directus/api<28.0.0npm17 Jul 2025
  • M
Cross-site Scripting (XSS)		@intlify/shared<9.14.5>=10.0.0-alpha.1 <10.0.8>=11.0.0-beta.0 <11.1.10npm17 Jul 2025
  • M
Cross-site Scripting (XSS)		@intlify/core-base<9.14.5>=10.0.0-alpha.1 <10.0.8>=11.0.0-beta.0 <11.1.10npm17 Jul 2025
  • C
Malicious Package		target_user_list*npm16 Jul 2025
  • C
Malicious Package		rollup-linux-riscv64-gnu*npm16 Jul 2025
  • C
Malicious Package		dom-navigation*npm16 Jul 2025
  • C
Malicious Package		coverage-v8*npm16 Jul 2025
  • C
Malicious Package		@3kali182/selenium-webdriver4*npm16 Jul 2025
  • C
Malicious Package		@3kali182/angular-1.6*npm16 Jul 2025
  • M
Exposure of Sensitive System Information to an Unauthorized Control Sphere		@directus/api<28.0.0npm16 Jul 2025
  • M
Improper Removal of Sensitive Information Before Storage or Transfer		@directus/api<28.0.0npm16 Jul 2025