Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Missing Support for Integrity Check
Affects openclaw | Versions <2026.4.8
Has fix
npmPublished 12 Apr 2026
  • M
Command Injection
Affects openclaw | Versions <2026.4.8
Has fix
npmPublished 12 Apr 2026
  • M
Insufficient Session Expiration
Affects openclaw | Versions <2026.4.8
Has fix
npmPublished 12 Apr 2026
  • M
Exposure of Resource to Wrong SphereCVE-2026-42424
Affects openclaw | Versions <2026.4.8
Has fix
npmPublished 12 Apr 2026
  • M
Allocation of Resources Without Limits or ThrottlingCVE-2026-42420
Affects openclaw | Versions <2026.4.8
Has fix
npmPublished 12 Apr 2026
  • H
Trust Boundary Violation
Affects openclaw | Versions <2026.4.8
Has fix
npmPublished 12 Apr 2026
  • H
Trust Boundary Violation
Affects openclaw | Versions <2026.4.8
Has fix
npmPublished 12 Apr 2026
  • M
Prototype PollutionCVE-2026-40190
Affects langsmith | Versions <0.5.18
Has fix
npmPublished 10 Apr 2026
  • H
HTTP Response SplittingCVE-2026-40175
Affects axios | Versions <0.31.0>=1.0.0 <1.15.0
Has fix
npmPublished 10 Apr 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-40073
Affects @sveltejs/kit | Versions <2.57.1
Has fix
npmPublished 10 Apr 2026
  • M
Improper Handling of Exceptional ConditionsCVE-2026-40074
Affects @sveltejs/kit | Versions <2.57.1
Has fix
npmPublished 10 Apr 2026
  • C
Malicious Package
Affects cline | Versions =2.3.0
Has fix
npmPublished 10 Apr 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-41914
Affects openclaw | Versions <2026.4.8
Has fix
npmPublished 10 Apr 2026
  • L
Improper Privilege ManagementCVE-2026-42429
Affects openclaw | Versions <2026.4.8
Has fix
npmPublished 10 Apr 2026
  • H
Incomplete List of Disallowed InputsCVE-2026-42427
Affects openclaw | Versions <2026.4.8
Has fix
npmPublished 10 Apr 2026
  • M
Improper Input ValidationCVE-2026-42423
Affects openclaw | Versions <2026.4.8
Has fix
npmPublished 10 Apr 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-6011
Affects openclaw | Versions <2026.1.29
Has fix
npmPublished 10 Apr 2026
  • L
Allocation of Resources Without Limits or Throttling
Affects openclaw | Versions <2026.4.5
Has fix
npmPublished 10 Apr 2026
  • L
Reliance on Untrusted Inputs in a Security DecisionCVE-2026-35617
Affects openclaw | Versions <2026.3.28-beta.1
Has fix
npmPublished 10 Apr 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-42430
Affects openclaw | Versions <2026.4.8
Has fix
npmPublished 10 Apr 2026
  • H
Authentication Bypass Using an Alternate Path or ChannelCVE-2026-42432
Affects openclaw | Versions <2026.4.8
Has fix
npmPublished 10 Apr 2026
  • M
Server-side Request Forgery (SSRF)
Affects openclaw | Versions <2026.4.8
Has fix
npmPublished 10 Apr 2026
  • M
Improper Privilege ManagementCVE-2026-42426
Affects openclaw | Versions <2026.4.8
Has fix
npmPublished 10 Apr 2026
  • L
Cross-site Scripting (XSS)
Affects telejson | Versions <6.0.0
Has fix
npmPublished 10 Apr 2026
  • L
Incorrect Regular ExpressionCVE-2026-35040
Affects fast-jwt | Versions <6.2.1
Has fix
npmPublished 10 Apr 2026
  • M
Regular Expression Denial of Service (ReDoS)CVE-2026-35041
Affects fast-jwt | Versions >=5.0.0 <6.2.1
Has fix
npmPublished 10 Apr 2026
  • M
Incomplete List of Disallowed InputsCVE-2026-39315
Affects unhead | Versions <2.1.13
Has fix
npmPublished 10 Apr 2026
  • M
Unintended Proxy or Intermediary ('Confused Deputy')CVE-2025-62718
Affects axios | Versions <0.31.0>=1.0.0 <1.15.0
Has fix
npmPublished 10 Apr 2026
  • M
Arbitrary Command InjectionCVE-2026-5603
Affects @elgentos/magento2-dev-mcp | Versions >=0.0.0
Has fix
npmPublished 9 Apr 2026
  • M
Arbitrary Command InjectionCVE-2026-5602
Affects @nor2/heim-mcp | Versions >=0.0.0
Has fix
npmPublished 9 Apr 2026