Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Insertion of Sensitive Information into Log File
Affects langsmith | Versions <0.5.19
Has fix
npmPublished 16 Apr 2026
  • M
Cross-site Scripting (XSS)
Affects hono | Versions <4.12.14
Has fix
npmPublished 16 Apr 2026
  • M
Command InjectionCVE-2026-5528
Affects code-screenshot-mcp | Versions *
No fix available
npmPublished 16 Apr 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-22662
Affects prompts.chat | Versions *
No fix available
npmPublished 16 Apr 2026
  • H
Directory TraversalCVE-2026-22661
Affects prompts.chat | Versions *
No fix available
npmPublished 16 Apr 2026
  • H
Improper Handling of Case SensitivityCVE-2026-22665
Affects prompts.chat | Versions *
No fix available
npmPublished 16 Apr 2026
  • H
Missing AuthorizationCVE-2026-22663
Affects prompts.chat | Versions *
No fix available
npmPublished 16 Apr 2026
  • H
Server-side Request Forgery (SSRF)CVE-2026-22664
Affects prompts.chat | Versions *
No fix available
npmPublished 16 Apr 2026
  • M
Operator Precedence Logic Error
Affects dompurify | Versions <3.4.0
Has fix
npmPublished 16 Apr 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-5470
Affects google-search-mcp | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects tether-wrk-base | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects tensorzero-node | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects @pnc-cib/cib-core-lib | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects fusion-events | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects vs-supplier-portal-web | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects base-counter-web | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects laserlogsink | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects com.baogong.app_push_permission | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Missing AuthorizationCVE-2026-39397
Affects @delmaredigital/payload-puck | Versions <0.6.23
Has fix
npmPublished 15 Apr 2026
  • H
SQL Injection
Affects @vendure/core | Versions >=1.7.4 <2.3.4>=3.0.0-next.0 <3.5.7>=3.6.0 <3.6.2
Has fix
npmPublished 15 Apr 2026
  • C
Command InjectionCVE-2026-28291
Affects simple-git | Versions <3.32.0
Has fix
npmPublished 15 Apr 2026
  • C
Interpretation ConflictCVE-2026-33808
Affects @fastify/express | Versions <4.0.5
Has fix
npmPublished 15 Apr 2026
  • C
Interpretation ConflictCVE-2026-33807
Affects @fastify/express | Versions <4.0.5
Has fix
npmPublished 15 Apr 2026
  • C
HTTP Header InjectionCVE-2026-33805
Affects @fastify/http-proxy | Versions <11.4.4
Has fix
npmPublished 15 Apr 2026
  • C
HTTP Header InjectionCVE-2026-33805
Affects @fastify/reply-from | Versions <12.6.2
Has fix
npmPublished 15 Apr 2026
  • M
Open RedirectCVE-2026-40255
Affects @adonisjs/http-server | Versions <7.8.1>=8.0.0-next.0 <8.2.0
Has fix
npmPublished 15 Apr 2026
  • H
Improper Validation of Specified Type of InputCVE-2026-33806
Affects fastify | Versions >=4.29.0 <5.8.5
Has fix
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects snitz-chief-cloud-config | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects snitz-chief-cloud | Versions *
No fix available
npmPublished 15 Apr 2026
  • C
Malicious Package
Affects pdf-linker | Versions *
No fix available
npmPublished 15 Apr 2026