Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Cross-site Scripting (XSS)CVE-2026-22787
Affects html2pdf.js | Versions <0.14.0
Has fix
npmPublished 15 Jan 2026
  • M
Time-of-check Time-of-use (TOCTOU) Race ConditionCVE-2026-22820
Affects outray | Versions <0.1.5
Has fix
npmPublished 14 Jan 2026
  • M
Cross-site Scripting (XSS)CVE-2026-0824
Affects @questdb/web-console | Versions <1.1.10
Has fix
npmPublished 14 Jan 2026
  • H
Improperly Controlled Modification of Dynamically-Determined Object AttributesCVE-2026-22814
Affects @adonisjs/lucid | Versions <21.8.2>=22.0.0-next.0 <22.0.0-next.6
Has fix
npmPublished 14 Jan 2026
  • M
Regular Expression Denial of Service (ReDoS)CVE-2026-22809
Affects tarteaucitronjs | Versions <1.29.0
Has fix
npmPublished 14 Jan 2026
  • C
Arbitrary Command InjectionCVE-2026-22785
Affects @orval/mcp | Versions <7.18.0
Has fix
npmPublished 14 Jan 2026
  • H
Protection Mechanism FailureCVE-2026-22686
Affects enclave-vm | Versions <2.7.0
Has fix
npmPublished 14 Jan 2026
  • C
Improper Validation of Specified Type of InputCVE-2026-21858
Affects n8n | Versions >=1.65.0 <1.121.0
Has fix
npmPublished 14 Jan 2026
  • M
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')CVE-2025-15056
Affects quill | Versions *
No fix available
npmPublished 14 Jan 2026
  • H
Arbitrary Command Injection
Affects renovate | Versions >=39.218.0 <40.33.0
Has fix
npmPublished 14 Jan 2026
  • H
Command Injection
Affects renovate | Versions >=32.124.0 <42.68.5
Has fix
npmPublished 14 Jan 2026
  • H
Arbitrary Command Injection
Affects renovate | Versions >=35.63.0 <40.33.0
Has fix
npmPublished 14 Jan 2026
  • H
Arbitrary Command Injection
Affects renovate | Versions >=31.51.0 <40.33.0
Has fix
npmPublished 14 Jan 2026
  • H
Arbitrary Command Injection
Affects renovate | Versions >=39.53.0 <40.33.0
Has fix
npmPublished 14 Jan 2026
  • H
Arbitrary Command Injection
Affects renovate | Versions >=32.135.0 <40.33.0
Has fix
npmPublished 14 Jan 2026
  • H
Use of a Broken or Risky Cryptographic AlgorithmCVE-2026-22817
Affects hono | Versions <4.11.4
Has fix
npmPublished 14 Jan 2026
  • H
Improper Verification of Cryptographic SignatureCVE-2026-22818
Affects hono | Versions <4.11.4
Has fix
npmPublished 14 Jan 2026
  • M
Permissive List of Allowed InputsCVE-2025-68949
Affects n8n-nodes-base | Versions >=1.36.0 <1.121.7>=2.0.0-rc.0 <2.2.0
Has fix
npmPublished 13 Jan 2026
  • M
Cross-site Scripting (XSS)CVE-2025-65110
Affects vega-selections | Versions <5.6.3>=6.0.0 <6.1.2
Has fix
npmPublished 13 Jan 2026
  • M
Cross-site Scripting (XSS)CVE-2025-66648
Affects vega-functions | Versions >=5.8.0 <6.1.1
Has fix
npmPublished 13 Jan 2026
  • C
Malicious Package
Affects n8n-nodes-zalo-vietts | Versions *
No fix available
npmPublished 13 Jan 2026
  • C
Malicious Package
Affects n8n-nodes-rooyai-model | Versions *
No fix available
npmPublished 13 Jan 2026
  • C
Malicious Package
Affects n8n-nodes-danev | Versions *
No fix available
npmPublished 13 Jan 2026
  • C
Malicious Package
Affects n8n-nodes-xkwqpzrt-jmflhvbn-dsyocgxwmkelpt | Versions *
No fix available
npmPublished 13 Jan 2026
  • C
Malicious Package
Affects n8n-nodes-gg-udhasudsh-hgjkhg-official | Versions *
No fix available
npmPublished 13 Jan 2026
  • C
Malicious Package
Affects n8n-nodes-danev-test-project | Versions *
No fix available
npmPublished 13 Jan 2026
  • C
Malicious Package
Affects @diendh/n8n-nodes-tiktok-v2 | Versions *
No fix available
npmPublished 13 Jan 2026
  • C
Malicious Package
Affects n8n-nodes-zl-vietts | Versions *
No fix available
npmPublished 13 Jan 2026
  • C
Malicious Package
Affects n8n-nodes-gasdhgfuy-rejerw-ytjsadx | Versions *
No fix available
npmPublished 13 Jan 2026
  • H
Integer Overflow or Wraparound
Affects @openzeppelin/confidential-contracts | Versions <0.3.1
Has fix
npmPublished 13 Jan 2026