Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • C
Malicious Package
Affects json-specular | Versions *
No fix available
npmPublished 20 Mar 2026
  • C
Malicious Package
Affects chai-as-chayn | Versions *
No fix available
npmPublished 20 Mar 2026
  • C
Malicious Package
Affects couplus-cli | Versions *
No fix available
npmPublished 20 Mar 2026
  • C
Malicious Package
Affects svg-content-validation | Versions *
No fix available
npmPublished 20 Mar 2026
  • C
Malicious Package
Affects xyztttxyz | Versions *
No fix available
npmPublished 20 Mar 2026
  • C
Malicious Package
Affects lint-builder | Versions *
No fix available
npmPublished 20 Mar 2026
  • C
Malicious Package
Affects big-nunber | Versions *
No fix available
npmPublished 20 Mar 2026
  • C
Malicious Package
Affects changelog-logger-utils | Versions *
No fix available
npmPublished 20 Mar 2026
  • C
Malicious Package
Affects jsonify-bundler | Versions *
No fix available
npmPublished 20 Mar 2026
  • C
Malicious Package
Affects jsonify-parser | Versions *
No fix available
npmPublished 20 Mar 2026
  • C
Malicious Package
Affects changelog-logger-wrap | Versions *
No fix available
npmPublished 20 Mar 2026
  • C
Malicious Package
Affects tokenshower | Versions *
No fix available
npmPublished 20 Mar 2026
  • C
Prototype PollutionCVE-2026-33228
Affects flatted | Versions <3.4.2
Has fix
npmPublished 20 Mar 2026
  • H
Improper Validation of Specified Quantity in InputCVE-2026-33349
Affects fast-xml-parser | Versions >=4.0.0-beta.3 <5.5.7
Has fix
npmPublished 20 Mar 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-33060
Affects @aborruso/ckan-mcp-server | Versions <0.4.85
Has fix
npmPublished 19 Mar 2026
  • C
User ImpersonationCVE-2026-33131
Affects h3 | Versions >=2.0.0-beta.0 <2.0.1-rc.15
Has fix
npmPublished 19 Mar 2026
  • H
Timing AttackCVE-2026-33129
Affects h3 | Versions <1.15.8>=2.0.0-beta.0 <2.0.1-rc.9
Has fix
npmPublished 19 Mar 2026
  • H
Information ExposureCVE-2026-33163
Affects parse-server | Versions <8.6.50>=9.0.0 <9.6.0-alpha.35
Has fix
npmPublished 19 Mar 2026
  • M
CRLF InjectionCVE-2026-33128
Affects h3 | Versions <1.15.6>=2.0.0 <2.0.1-rc.15
Has fix
npmPublished 19 Mar 2026
  • H
Server-side Request Forgery (SSRF)CVE-2026-26801
Affects pdfmake | Versions >=0.3.0-beta.2
Has fix
npmPublished 18 Mar 2026
  • C
Prototype PollutionCVE-2026-32621
Affects @apollo/federation-internals | Versions <2.9.6>=2.10.0-alpha.0 <2.10.5>=2.11.0-preview.0 <2.11.6>=2.12.0-preview.0 <2.12.3>=2.13.0-preview.0 <2.13.2
Has fix
npmPublished 18 Mar 2026
  • C
Prototype PollutionCVE-2026-32621
Affects @apollo/gateway | Versions <2.9.6>=2.10.0-alpha.0 <2.10.5>=2.11.0-preview.0 <2.11.6>=2.12.0-preview.0 <2.12.3>=2.13.0-preview.0 <2.13.2
Has fix
npmPublished 18 Mar 2026
  • C
Prototype PollutionCVE-2026-32621
Affects @apollo/query-planner | Versions <2.9.6>=2.10.0-alpha.0 <2.10.5>=2.11.0-preview.0 <2.11.6>=2.12.0-preview.0 <2.12.3>=2.13.0-preview.0 <2.13.2
Has fix
npmPublished 18 Mar 2026
  • C
Arbitrary Code InjectionCVE-2026-30741
Affects openclaw | Versions >=0.0.0
Has fix
npmPublished 18 Mar 2026
  • C
Malicious Package
Affects chai-as-constrained | Versions *
No fix available
npmPublished 18 Mar 2026
  • H
Directory Traversal
Affects h3 | Versions <1.15.6>=2.0.0-beta.0 <2.0.1-rc.15
Has fix
npmPublished 18 Mar 2026
  • H
Always-Incorrect Control Flow ImplementationCVE-2026-33011
Affects @nestjs/core | Versions <11.1.17
Has fix
npmPublished 18 Mar 2026
  • H
Prototype PollutionCVE-2025-65587
Affects graphql-upload-minimal | Versions <1.6.3
Has fix
npmPublished 18 Mar 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2026-29112
Affects @dicebear/converter | Versions <9.4.0
Has fix
npmPublished 18 Mar 2026
  • M
Authorization Bypass Through User-Controlled KeyCVE-2026-32638
Affects @withstudiocms/effect | Versions <0.4.1
Has fix
npmPublished 18 Mar 2026