Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • C
Arbitrary Code InjectionCVE-2026-41137
Affects flowise | Versions <3.1.0
Has fix
npmPublished 19 Apr 2026
  • C
Arbitrary Code InjectionCVE-2026-41137
Affects flowise-components | Versions <3.1.0
Has fix
npmPublished 19 Apr 2026
  • C
Arbitrary Code InjectionCVE-2026-41137
Affects flowise-ui | Versions <3.1.0
Has fix
npmPublished 19 Apr 2026
  • H
Server-side Request Forgery (SSRF)CVE-2026-41272
Affects flowise-components | Versions <3.1.0
Has fix
npmPublished 19 Apr 2026
  • C
Incomplete List of Disallowed InputsCVE-2026-41265
Affects flowise | Versions <3.1.0
Has fix
npmPublished 19 Apr 2026
  • C
Incomplete List of Disallowed InputsCVE-2026-41265
Affects flowise-components | Versions <3.1.0
Has fix
npmPublished 19 Apr 2026
  • C
Incomplete List of Disallowed InputsCVE-2026-41265
Affects flowise-ui | Versions <3.1.0
Has fix
npmPublished 19 Apr 2026
  • H
Symlink AttackCVE-2026-40931
Affects compressing | Versions <1.10.5>=2.0.0 <2.1.1
Has fix
npmPublished 19 Apr 2026
  • M
Incorrect AuthorizationCVE-2026-41427
Affects @better-auth/oauth-provider | Versions >=1.4.8-beta.7 <1.6.5>=1.7.0-beta.0
Has fix
npmPublished 17 Apr 2026
  • C
Malicious Package
Affects value-slider | Versions *
No fix available
npmPublished 17 Apr 2026
  • C
Malicious Package
Affects @than1st/baileys | Versions *
No fix available
npmPublished 17 Apr 2026
  • C
Malicious Package
Affects @than-xs/libsignal-node | Versions *
No fix available
npmPublished 17 Apr 2026
  • C
Malicious Package
Affects node-red-contrib-yolo-object-detection | Versions *
No fix available
npmPublished 17 Apr 2026
  • C
Malicious Package
Affects koa-v3 | Versions *
No fix available
npmPublished 17 Apr 2026
  • L
Time-of-check Time-of-use (TOCTOU) Race Condition
Affects openclaw | Versions <2026.4.10
Has fix
npmPublished 17 Apr 2026
  • C
Incorrect Authorization
Affects @clerk/shared | Versions >=2.20.17 <2.22.1>=3.47.3 <3.47.4>=4.0.0 <4.8.1
Has fix
npmPublished 17 Apr 2026
  • C
Incorrect Authorization
Affects @clerk/nuxt | Versions >=1.1.0 <1.13.28>=2.0.0 <2.2.2
Has fix
npmPublished 17 Apr 2026
  • C
Incorrect Authorization
Affects @clerk/nextjs | Versions >=5.0.0-alpha-v5.0 <5.7.6>=6.0.0 <6.39.2>=7.0.0 <7.2.1
Has fix
npmPublished 17 Apr 2026
  • C
Incorrect Authorization
Affects @clerk/astro | Versions <1.5.7>=2.0.0 <2.17.10>=3.0.0 <3.0.15
Has fix
npmPublished 17 Apr 2026
  • C
Interpretation ConflictCVE-2026-6270
Affects @fastify/middie | Versions <9.3.2
Has fix
npmPublished 17 Apr 2026
  • C
Interpretation ConflictCVE-2026-33804
Affects @fastify/middie | Versions <9.3.2
Has fix
npmPublished 17 Apr 2026
  • M
Directory TraversalCVE-2026-6410
Affects @fastify/static | Versions >=8.0.0 <9.1.1
Has fix
npmPublished 17 Apr 2026
  • H
Improper Handling of URL Encoding (Hex Encoding)CVE-2026-6414
Affects @fastify/static | Versions >=8.0.0 <9.1.1
Has fix
npmPublished 17 Apr 2026
  • H
Improperly Controlled Modification of Dynamically-Determined Object AttributesCVE-2026-40897
Affects mathjs | Versions >=13.1.1 <15.2.0
Has fix
npmPublished 17 Apr 2026
  • H
Server-side Request Forgery (SSRF)
Affects @angular/platform-server | Versions <19.2.21>=20.0.0-next.0 <20.3.19>=21.0.0-next.0 <21.2.9>=22.0.0-next.0 <22.0.0-next.8
Has fix
npmPublished 17 Apr 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-41324
Affects basic-ftp | Versions <5.3.0
Has fix
npmPublished 17 Apr 2026
  • C
Arbitrary Code InjectionCVE-2026-41242
Affects protobufjs | Versions >=7.5.2 <7.5.5>=8.0.0-experimental <8.0.1
Has fix
npmPublished 17 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-33889
Affects apostrophe | Versions <4.29.0
Has fix
npmPublished 16 Apr 2026
  • M
Incorrect AuthorizationCVE-2026-33888
Affects apostrophe | Versions <4.29.0
Has fix
npmPublished 16 Apr 2026
  • L
Cross-site Scripting (XSS)CVE-2026-40186
Affects sanitize-html | Versions >=2.17.2 <2.17.3
Has fix
npmPublished 16 Apr 2026