Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Timing Attack
Affects hono | Versions <4.11.10
Has fix
npmPublished 20 Feb 2026
  • L
Cross-site Scripting (XSS)CVE-2026-27122
Affects svelte | Versions <5.51.5
Has fix
npmPublished 20 Feb 2026
  • M
Improperly Controlled Modification of Dynamically-Determined Object AttributesCVE-2026-27125
Affects svelte | Versions <5.51.5
Has fix
npmPublished 20 Feb 2026
  • C
Prototype PollutionCVE-2026-27212
Affects swiper | Versions >=6.5.1 <12.1.2
Has fix
npmPublished 20 Feb 2026
  • L
Prototype Pollution
Affects devalue | Versions <5.6.3
Has fix
npmPublished 20 Feb 2026
  • H
Improper AuthenticationCVE-2026-28465
Affects @openclaw/voice-call | Versions <2026.2.3
Has fix
npmPublished 20 Feb 2026
  • M
Allocation of Resources Without Limits or Throttling
Affects devalue | Versions <5.6.3
Has fix
npmPublished 20 Feb 2026
  • H
Improper Encoding or Escaping of OutputCVE-2026-25940
Affects jspdf | Versions <4.2.0
Has fix
npmPublished 20 Feb 2026
  • C
User ImpersonationCVE-2026-28474
Affects @openclaw/nextcloud-talk | Versions <2026.2.6
Has fix
npmPublished 20 Feb 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-25535
Affects jspdf | Versions <4.2.0
Has fix
npmPublished 20 Feb 2026
  • H
Improper Encoding or Escaping of OutputCVE-2026-25755
Affects jspdf | Versions <4.2.0
Has fix
npmPublished 20 Feb 2026
  • H
Command InjectionCVE-2026-26280
Affects systeminformation | Versions <5.30.8
Has fix
npmPublished 19 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2026-27009
Affects openclaw | Versions <2026.2.15
Has fix
npmPublished 19 Feb 2026
  • M
Incorrect Comparison Logic GranularityCVE-2026-27007
Affects openclaw | Versions <2026.2.15
Has fix
npmPublished 19 Feb 2026
  • M
Insufficiently Protected CredentialsCVE-2026-27003
Affects openclaw | Versions <2026.2.15
Has fix
npmPublished 19 Feb 2026
  • M
External Control of File Name or PathCVE-2026-27008
Affects openclaw | Versions <2026.2.15
Has fix
npmPublished 19 Feb 2026
  • M
Origin Validation ErrorCVE-2026-27004
Affects openclaw | Versions <2026.2.15
Has fix
npmPublished 19 Feb 2026
  • H
Arbitrary Command InjectionCVE-2026-27001
Affects openclaw | Versions <2026.2.15
Has fix
npmPublished 19 Feb 2026
  • C
SQL InjectionCVE-2026-26980
Affects ghost | Versions >=3.24.0 <6.19.1
Has fix
npmPublished 19 Feb 2026
  • H
Execution with Unnecessary PrivilegesCVE-2026-27002
Affects openclaw | Versions <2026.2.15
Has fix
npmPublished 19 Feb 2026
  • H
Command InjectionCVE-2026-27487
Affects openclaw | Versions <2026.2.14
Has fix
npmPublished 19 Feb 2026
  • M
Cross-site Scripting (XSS)CVE-2026-27013
Affects fabric | Versions <7.2.0
Has fix
npmPublished 19 Feb 2026
  • M
Infinite loopCVE-2026-2739
Affects bn.js | Versions <4.12.3>=5.0.0 <5.2.3
Has fix
npmPublished 19 Feb 2026
  • H
Command InjectionCVE-2026-26318
Affects systeminformation | Versions <5.31.0
Has fix
npmPublished 19 Feb 2026
  • H
Regular Expression Denial of Service (ReDoS)CVE-2026-26996
Affects minimatch | Versions <3.1.3>=4.0.0 <4.2.4>=5.0.0 <5.1.7>=6.0.0 <6.2.1>=7.0.0 <7.4.7>=8.0.0 <8.0.5>=9.0.0 <9.0.6>=10.0.0 <10.2.1
Has fix
npmPublished 19 Feb 2026
  • L
Improper Output Neutralization for Logs
Affects openclaw | Versions <2026.2.13
Has fix
npmPublished 18 Feb 2026
  • L
Incorrect Authorization
Affects openclaw | Versions <2026.2.14
Has fix
npmPublished 18 Feb 2026
  • L
Arbitrary Code InjectionCVE-2026-24764
Affects openclaw | Versions <2026.2.3
Has fix
npmPublished 18 Feb 2026
  • M
Improper AuthorizationCVE-2026-28392
Affects openclaw | Versions <2026.2.14
Has fix
npmPublished 18 Feb 2026
  • M
User ImpersonationCVE-2026-28480
Affects openclaw | Versions <2026.2.14
Has fix
npmPublished 18 Feb 2026