Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • C
Malicious Package
Affects @revvity-signals/chemdraw-js | Versions *
No fix available
npmPublished 15 Dec 2025
  • C
Malicious Package
Affects sd-skbms | Versions *
No fix available
npmPublished 15 Dec 2025
  • C
Malicious Package
Affects bignumex | Versions *
No fix available
npmPublished 15 Dec 2025
  • C
Malicious Package
Affects @wb-drive/icons | Versions *
No fix available
npmPublished 15 Dec 2025
  • C
Malicious Package
Affects xboxlive-auth | Versions *
No fix available
npmPublished 15 Dec 2025
  • C
Malicious Package
Affects phx-core | Versions *
No fix available
npmPublished 15 Dec 2025
  • C
Malicious Package
Affects paypal-scripts-server-utils | Versions *
No fix available
npmPublished 15 Dec 2025
  • C
Malicious Package
Affects elf-stats-evergreen-muffin-867 | Versions *
No fix available
npmPublished 15 Dec 2025
  • C
Malicious Package
Affects @mohamed1687/iut-encrypt | Versions *
No fix available
npmPublished 15 Dec 2025
  • C
Malicious Package
Affects elf-stats-sugarplum-fireplace-278 | Versions *
No fix available
npmPublished 15 Dec 2025
  • C
Malicious Package
Affects elf-stats-candlelit-nutcracker-184 | Versions *
No fix available
npmPublished 15 Dec 2025
  • C
Malicious Package
Affects elf-stats-marzipan-muffin-733 | Versions *
No fix available
npmPublished 15 Dec 2025
  • M
Cross-site Scripting (XSS)
Affects vuetify | Versions >=2.0.0 <3.0.0
Has fix
npmPublished 14 Dec 2025
  • H
Prototype Pollution
Affects vuetify | Versions >=2.2.0-beta.2 <3.0.0-alpha.10
Has fix
npmPublished 14 Dec 2025
  • H
Deserialization of Untrusted Data
Affects @vitejs/plugin-rsc | Versions <0.5.7
Has fix
npmPublished 12 Dec 2025
  • M
Exposure of Sensitive System Information to an Unauthorized Control Sphere
Affects @vitejs/plugin-rsc | Versions <0.5.7
Has fix
npmPublished 12 Dec 2025
  • H
Server-side Request Forgery (SSRF)
Affects mcp-markdownify-server | Versions *
No fix available
npmPublished 12 Dec 2025
  • M
Exposure of Sensitive System Information to an Unauthorized Control Sphere
Affects next | Versions >=15.0.0-rc.0 <15.0.6>=15.1.0 <15.1.10>=15.2.0-canary.0 <15.2.7>=15.3.0-canary.0 <15.3.7>=15.4.0-canary.0 <15.4.9>=15.5.0 <15.5.8>=16.0.0-beta.0 <16.0.9>=16.1.0-canary.0 <16.1.0-canary.19
Has fix
npmPublished 12 Dec 2025
  • M
Exposure of Sensitive System Information to an Unauthorized Control Sphere
Affects react-server-dom-turbopack | Versions >=19.0.0 <19.0.2>=19.1.0 <19.1.3>=19.2.0 <19.2.2
Has fix
npmPublished 12 Dec 2025
  • M
Exposure of Sensitive System Information to an Unauthorized Control Sphere
Affects react-server-dom-parcel | Versions >=19.1.0 <19.1.3>=19.2.0 <19.2.2
Has fix
npmPublished 12 Dec 2025
  • M
Exposure of Sensitive System Information to an Unauthorized Control Sphere
Affects react-server-dom-webpack | Versions >=19.0.0 <19.0.2>=19.1.0 <19.1.3>=19.2.0 <19.2.2
Has fix
npmPublished 12 Dec 2025
  • H
Deserialization of Untrusted Data
Affects next | Versions >=14.2.34 <14.2.35>=15.0.6 <15.0.7>=15.1.10 <15.1.11>=15.2.7 <15.2.8>=15.3.7 <15.3.8>=15.4.9 <15.4.10>=15.5.8 <15.5.9>=16.0.9 <16.0.10>=16.1.0-canary.0 <16.1.0-canary.19
Has fix
npmPublished 12 Dec 2025
  • H
Deserialization of Untrusted Data
Affects react-server-dom-turbopack | Versions >=19.0.2 <19.0.3>=19.1.3 <19.1.4>=19.2.2 <19.2.3
Has fix
npmPublished 12 Dec 2025
  • H
Deserialization of Untrusted Data
Affects react-server-dom-parcel | Versions >=19.1.3 <19.1.4>=19.2.2 <19.2.3
Has fix
npmPublished 12 Dec 2025
  • H
Deserialization of Untrusted Data
Affects react-server-dom-webpack | Versions >=19.0.2 <19.0.3>=19.1.3 <19.1.4>=19.2.2 <19.2.3
Has fix
npmPublished 12 Dec 2025
  • H
Deserialization of Untrusted Data
Affects next | Versions >=13.3.0 <14.2.34>=15.0.0-rc.0 <15.0.6>=15.1.0 <15.1.10>=15.2.0-canary.0 <15.2.7>=15.3.0-canary.0 <15.3.7>=15.4.0-canary.0 <15.4.9>=15.5.0 <15.5.8>=16.0.0-beta.0 <16.0.9>=16.1.0-canary.0 <16.1.0-canary.19
Has fix
npmPublished 12 Dec 2025
  • H
Deserialization of Untrusted Data
Affects react-server-dom-turbopack | Versions >=19.0.0 <19.0.2>=19.1.0 <19.1.3>=19.2.0 <19.2.2
Has fix
npmPublished 12 Dec 2025
  • H
Deserialization of Untrusted Data
Affects react-server-dom-parcel | Versions >=19.1.0 <19.1.3>=19.2.0 <19.2.2
Has fix
npmPublished 12 Dec 2025
  • H
Deserialization of Untrusted Data
Affects react-server-dom-webpack | Versions >=19.0.0 <19.0.2>=19.1.0 <19.1.3>=19.2.0 <19.2.2
Has fix
npmPublished 12 Dec 2025
  • C
Malicious Package
Affects cms_comp_static | Versions *
No fix available
npmPublished 12 Dec 2025