Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • C
Improper AuthenticationCVE-2026-29792
Affects @feathersjs/authentication-oauth | Versions >=5.0.0 <5.0.42
Has fix
npmPublished 12 Mar 2026
  • H
Regular Expression Denial of Service (ReDoS)CVE-2026-30837
Affects elysia | Versions <1.4.26
Has fix
npmPublished 12 Mar 2026
  • M
Directory TraversalCVE-2026-3089
Affects @actual-app/sync-server | Versions <26.3.0
Has fix
npmPublished 12 Mar 2026
  • L
Authorization Bypass Through User-Controlled KeyCVE-2026-30959
Affects @oneuptime/common | Versions <10.0.21
Has fix
npmPublished 12 Mar 2026
  • M
Exposed Dangerous Method or FunctionCVE-2026-30957
Affects @oneuptime/common | Versions >=10.0.15 <10.0.21
Has fix
npmPublished 12 Mar 2026
  • M
Missing AuthorizationCVE-2026-30956
Affects @oneuptime/common | Versions <10.0.21
Has fix
npmPublished 12 Mar 2026
  • M
Information ExposureCVE-2026-32098
Affects parse-server | Versions <8.6.35>=9.0.0-alpha.1 <9.6.0-alpha.9
Has fix
npmPublished 12 Mar 2026
  • H
SQL InjectionCVE-2026-32234
Affects parse-server | Versions <8.6.36>=9.0.0-alpha.1 <9.6.0-alpha.10
Has fix
npmPublished 12 Mar 2026
  • H
Incorrect AuthorizationCVE-2026-30870
Affects @powersync/service-sync-rules | Versions <0.33.0
Has fix
npmPublished 12 Mar 2026
  • C
Missing AuthorizationCVE-2026-30966
Affects parse-server | Versions <8.6.20>=9.0.0-alpha.1 <9.5.2-alpha.7
Has fix
npmPublished 12 Mar 2026
  • M
Insufficiently Protected CredentialsCVE-2026-30967
Affects parse-server | Versions <8.6.22>=9.0.0-alpha.1 <9.5.2-alpha.9
Has fix
npmPublished 12 Mar 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-30946
Affects parse-server | Versions <8.6.15>=9.0.0-alpha.1 <9.5.2-alpha.2
Has fix
npmPublished 12 Mar 2026
  • C
SQL InjectionCVE-2026-31871
Affects parse-server | Versions <8.6.31>=9.0.0-alpha.1 <9.6.0-alpha.5
Has fix
npmPublished 12 Mar 2026
  • H
Incorrect AuthorizationCVE-2026-30947
Affects parse-server | Versions <8.6.16>=9.0.0-alpha.1 <9.5.2-alpha.3
Has fix
npmPublished 12 Mar 2026
  • M
Improper Control of Interaction FrequencyCVE-2026-30972
Affects parse-server | Versions <8.6.23>=9.0.0-alpha.1 <9.5.2-alpha.10
Has fix
npmPublished 12 Mar 2026
  • C
Operation on a Resource after Expiration or ReleaseCVE-2026-31875
Affects parse-server | Versions <8.6.33>=9.0.0-alpha.1 <9.6.0-alpha.7
Has fix
npmPublished 12 Mar 2026
  • C
Improper Neutralization of Special Elements in Data Query LogicCVE-2026-30941
Affects parse-server | Versions <8.6.14>=9.0.0-alpha.1 <9.5.2-alpha.1
Has fix
npmPublished 12 Mar 2026
  • H
Incorrect AuthorizationCVE-2026-31872
Affects parse-server | Versions <8.6.32>=9.0.0-alpha.1 <9.6.0-alpha.6
Has fix
npmPublished 12 Mar 2026
  • M
Information ExposureCVE-2026-31901
Affects parse-server | Versions <8.6.34>=9.0.0-alpha.1 <9.6.0-alpha.8
Has fix
npmPublished 12 Mar 2026
  • M
Cross-site Scripting (XSS)CVE-2026-31868
Affects parse-server | Versions <8.6.30>=9.0.0-alpha.1 <9.6.0-alpha.4
Has fix
npmPublished 12 Mar 2026
  • M
LDAP InjectionCVE-2026-31828
Affects parse-server | Versions <8.6.26>=9.0.0-alpha.1 <9.5.2-alpha.13
Has fix
npmPublished 12 Mar 2026
  • H
Incorrect AuthorizationCVE-2026-30962
Affects parse-server | Versions <8.6.19>=9.0.0-alpha.1 <9.5.2-alpha.6
Has fix
npmPublished 12 Mar 2026
  • C
Improper Handling of Case SensitivityCVE-2026-4047
Affects @whyour/qinglong | Versions <2.20.2-0
Has fix
npmPublished 12 Mar 2026
  • H
Missing AuthorizationCVE-2026-31800
Affects parse-server | Versions <8.6.25>=9.0.0-alpha.1 <9.5.2-alpha.12
Has fix
npmPublished 12 Mar 2026
  • C
SQL InjectionCVE-2026-31856
Affects parse-server | Versions <8.6.29>=9.0.0-alpha.1 <9.6.0-alpha.3
Has fix
npmPublished 12 Mar 2026
  • C
SQL InjectionCVE-2026-31840
Affects parse-server | Versions <8.6.28>=9.0.0-alpha.1 <9.6.0-alpha.2
Has fix
npmPublished 12 Mar 2026
  • M
Improper Encoding or Escaping of OutputCVE-2026-32094
Affects shescape | Versions <2.1.10
Has fix
npmPublished 12 Mar 2026
  • C
Remote Code Execution (RCE)CVE-2026-3965
Affects @whyour/qinglong | Versions <2.20.2-0
Has fix
npmPublished 12 Mar 2026
  • M
Prototype PollutionCVE-2026-30226
Affects devalue | Versions >=4.0.0 <5.6.4
Has fix
npmPublished 12 Mar 2026
  • M
Off-by-one ErrorCVE-2026-31988
Affects yauzl | Versions >=3.2.0 <3.2.1
Has fix
npmPublished 12 Mar 2026