Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • M
Insufficient Session Expiration		payload<3.44.0npm29 Aug 2025
  • M
Insufficient Session Expiration		payload<3.44.0npm29 Aug 2025
  • M
Information Exposure		x402<0.5.2npm29 Aug 2025
  • M
Information Exposure		x402-next<0.5.2npm29 Aug 2025
  • M
Information Exposure		x402-express<0.5.2npm29 Aug 2025
  • M
Information Exposure		x402-hono<0.5.2npm29 Aug 2025
  • C
Permissive Cross-domain Policy with Untrusted Domains		@musistudio/claude-code-router<1.0.37npm29 Aug 2025
  • H
Improper Handling of Exceptional Conditions		@plone/volto<16.34.0>=17.0.0 <17.22.1>=18.0.0 <18.24.0>=19.0.0-alpha.1 <19.0.0-alpha.4npm29 Aug 2025
  • M
OS Command Injection		@wong2/mcp-cli*npm29 Aug 2025
  • H
SQL Injection		nodebb>=0.0.0npm28 Aug 2025
  • M
Allocation of Resources Without Limits or Throttling		@escape.tech/graphql-armor-max-depth<2.4.2npm28 Aug 2025
  • M
Allocation of Resources Without Limits or Throttling		@escape.tech/graphql-armor-max-depth<2.4.2npm28 Aug 2025
  • H
Allocation of Resources Without Limits or Throttling		jspdf<3.0.2npm27 Aug 2025
  • C
Embeded Malicious Code		@nx/workspace=20.9.0=21.5.0npm27 Aug 2025
  • C
Embeded Malicious Code		@nx/node=20.9.0=21.5.0npm27 Aug 2025
  • C
Embeded Malicious Code		@nx/key=3.2.0npm27 Aug 2025
  • C
Embeded Malicious Code		@nx/js=20.9.0=21.5.0npm27 Aug 2025
  • C
Embeded Malicious Code		@nx/eslint=21.5.0npm27 Aug 2025
  • C
Embeded Malicious Code		@nx/enterprise-cloud=3.2.0npm27 Aug 2025
  • C
Embeded Malicious Code		@nx/devkit=20.9.0=21.5.0npm27 Aug 2025
  • C
Embeded Malicious Code		nx>=21.5.0 <=21.8.0>=20.9.0 <=20.12.0npm27 Aug 2025
  • C
Prototype Pollution		devalue<5.3.2npm27 Aug 2025
  • H
Directory Traversal		vite-plugin-static-copy>=0.4.3 <2.3.2>=3.0.0 <3.1.2npm25 Aug 2025
  • H
Race Condition		kuzu<0.8.0npm25 Aug 2025
  • M
Regular Expression Denial of Service (ReDoS)		angular-sanitize*npm24 Aug 2025
  • M
Open Redirect		koa*npm22 Aug 2025
  • C
Malicious Package		apollo-ms*npm22 Aug 2025
  • M
Regular Expression Denial of Service (ReDoS)		yarn*npm22 Aug 2025
  • C
Function Call With Incorrect Argument Type		sha.js<2.4.12npm21 Aug 2025
  • C
Function Call With Incorrect Argument Type		cipher-base<1.0.5npm21 Aug 2025