Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
- C
User ImpersonationCVE-2026-33131
Affects h3 | Versions >=2.0.0-beta.0 <2.0.1-rc.15
Has fix
npmPublished 19 Mar 2026
- H
Timing AttackCVE-2026-33129
Affects h3 | Versions <1.15.8>=2.0.0-beta.0 <2.0.1-rc.9
Has fix
npmPublished 19 Mar 2026
- H
Information ExposureCVE-2026-33163
Affects parse-server | Versions <8.6.50>=9.0.0 <9.6.0-alpha.35
Has fix
npmPublished 19 Mar 2026
- M
CRLF InjectionCVE-2026-33128
Affects h3 | Versions <1.15.6>=2.0.0 <2.0.1-rc.15
Has fix
npmPublished 19 Mar 2026
- H
Server-side Request Forgery (SSRF)CVE-2026-26801
Affects pdfmake | Versions >=0.3.0-beta.2
Has fix
npmPublished 18 Mar 2026
- C
Prototype PollutionCVE-2026-32621
Affects @apollo/federation-internals | Versions <2.9.6>=2.10.0-alpha.0 <2.10.5>=2.11.0-preview.0 <2.11.6>=2.12.0-preview.0 <2.12.3>=2.13.0-preview.0 <2.13.2
Has fix
npmPublished 18 Mar 2026
- C
Prototype PollutionCVE-2026-32621
Affects @apollo/gateway | Versions <2.9.6>=2.10.0-alpha.0 <2.10.5>=2.11.0-preview.0 <2.11.6>=2.12.0-preview.0 <2.12.3>=2.13.0-preview.0 <2.13.2
Has fix
npmPublished 18 Mar 2026
- C
Prototype PollutionCVE-2026-32621
Affects @apollo/query-planner | Versions <2.9.6>=2.10.0-alpha.0 <2.10.5>=2.11.0-preview.0 <2.11.6>=2.12.0-preview.0 <2.12.3>=2.13.0-preview.0 <2.13.2
Has fix
npmPublished 18 Mar 2026
- C
Arbitrary Code InjectionCVE-2026-30741
Affects openclaw | Versions >=0.0.0
Has fix
npmPublished 18 Mar 2026
Affects chai-as-constrained | Versions *
No fix available
npmPublished 18 Mar 2026
Affects h3 | Versions <1.15.6>=2.0.0-beta.0 <2.0.1-rc.15
Has fix
npmPublished 18 Mar 2026
- H
Always-Incorrect Control Flow ImplementationCVE-2026-33011
Affects @nestjs/core | Versions <11.1.17
Has fix
npmPublished 18 Mar 2026
- H
Prototype PollutionCVE-2025-65587
Affects graphql-upload-minimal | Versions <1.6.3
Has fix
npmPublished 18 Mar 2026
- H
Allocation of Resources Without Limits or ThrottlingCVE-2026-29112
Affects @dicebear/converter | Versions <9.4.0
Has fix
npmPublished 18 Mar 2026
- M
Authorization Bypass Through User-Controlled KeyCVE-2026-32638
Affects @withstudiocms/effect | Versions <0.4.1
Has fix
npmPublished 18 Mar 2026
- M
Authorization Bypass Through User-Controlled KeyCVE-2026-32638
Affects @withstudiocms/api-spec | Versions <0.3.2
Has fix
npmPublished 18 Mar 2026
- M
Authorization Bypass Through User-Controlled KeyCVE-2026-32638
Affects effectify | Versions <0.2.0
Has fix
npmPublished 18 Mar 2026
- M
Authorization Bypass Through User-Controlled KeyCVE-2026-32638
Affects studiocms | Versions <0.4.4
Has fix
npmPublished 18 Mar 2026
- H
Infinite loopCVE-2026-32256
Affects music-metadata | Versions <11.12.3
Has fix
npmPublished 18 Mar 2026
- H
Allocation of Resources Without Limits or ThrottlingCVE-2026-33151
Affects socket.io-parser | Versions <3.3.5>=3.4.0 <3.4.4>=4.0.0 <4.2.6
Has fix
npmPublished 18 Mar 2026
- M
Prototype PollutionCVE-2026-31865
Affects elysia | Versions <1.4.27
Has fix
npmPublished 18 Mar 2026
- H
Command InjectionCVE-2026-22169
Affects openclaw | Versions <2026.2.22
Has fix
npmPublished 18 Mar 2026
- H
Improperly Controlled Sequential Memory AllocationCVE-2026-32886
Affects parse-server | Versions <8.6.47>=9.0.0-alpha.1 <9.6.0-alpha.24
Has fix
npmPublished 18 Mar 2026
- M
Weak AuthenticationCVE-2026-33042
Affects parse-server | Versions <8.6.49>=9.0.0-alpha.1 <9.6.0-alpha.29
Has fix
npmPublished 18 Mar 2026
- L
Time-of-check Time-of-use (TOCTOU) Race ConditionCVE-2026-32943
Affects parse-server | Versions <8.6.48>=9.0.0-alpha.1 <9.6.0-alpha.28
Has fix
npmPublished 18 Mar 2026
- M
Prototype PollutionCVE-2026-32878
Affects parse-server | Versions <8.6.44>=9.0.0-alpha.1 <9.6.0-alpha.20
Has fix
npmPublished 18 Mar 2026
- H
Improper Validation of Syntactic Correctness of InputCVE-2026-32770
Affects parse-server | Versions <8.6.43>=9.0.0-alpha.1 <9.6.0-alpha.19
Has fix
npmPublished 18 Mar 2026
Affects parse-server | Versions <8.6.42>=9.0.0-alpha.1 <9.6.0-alpha.17
Has fix
npmPublished 18 Mar 2026
- H
Uncontrolled RecursionCVE-2026-32944
Affects parse-server | Versions <8.6.45>=9.0.0-alpha.1 <9.6.0-alpha.21
Has fix
npmPublished 18 Mar 2026
Affects typescript-operations | Versions *
No fix available
npmPublished 18 Mar 2026