Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • M
Time-of-check Time-of-use (TOCTOU) Race ConditionCVE-2026-7724
Affects prefect | Versions [,3.6.28.dev2)
Has fix
pipPublished 4 May 2026
  • M
Improper AuthenticationCVE-2026-7722
Affects prefect | Versions [,3.6.22.dev7)
Has fix
pipPublished 4 May 2026
  • M
Missing Authentication for Critical FunctionCVE-2026-7723
Affects prefect | Versions [,3.6.14.dev5)
Has fix
pipPublished 4 May 2026
  • H
Command InjectionCVE-2026-7246
Affects click | Versions [8.2.0,8.3.3)
Has fix
pipPublished 3 May 2026
  • H
Open RedirectCVE-2026-40171
Affects notebook | Versions [7.0.0,7.5.6)
Has fix
pipPublished 3 May 2026
  • H
Open RedirectCVE-2026-40171
Affects jupyterlab | Versions [,4.5.7)
Has fix
pipPublished 3 May 2026
  • L
Untrusted Search PathCVE-2026-40947
Affects yubikey-manager | Versions [,5.9.1)
Has fix
pipPublished 1 May 2026
  • H
Inclusion of Functionality from Untrusted Control SphereCVE-2026-6859
Affects instructlab | Versions [0,]
Has fix
pipPublished 30 Apr 2026
  • H
Directory TraversalCVE-2026-6855
Affects instructlab | Versions [0,]
Has fix
pipPublished 30 Apr 2026
  • H
Improper Certificate ValidationCVE-2026-41016
Affects apache-airflow-providers-smtp | Versions [2.0.0rc1,3.0.0)
Has fix
pipPublished 30 Apr 2026
  • M
Incomplete List of Disallowed InputsCVE-2026-41206
Affects pyspector | Versions [,0.1.8)
Has fix
pipPublished 30 Apr 2026
  • M
Cross-site Scripting (XSS)CVE-2026-41241
Affects pretalx | Versions [,2026.1.0)
Has fix
pipPublished 30 Apr 2026
  • C
Embedded Malicious CodeCVE-2026-44484
Affects lightning | Versions [2.6.2][2.6.3]
Has fix
pipPublished 30 Apr 2026
  • H
Improper Neutralization of Special Elements Used in a Template EngineCVE-2026-40320
Affects giskard-checks | Versions [,1.0.2b1)
Has fix
pipPublished 30 Apr 2026
  • L
Regular Expression Denial of Service (ReDoS)CVE-2026-40319
Affects giskard-checks | Versions [,1.0.2b1)
Has fix
pipPublished 30 Apr 2026
  • M
SQL InjectionCVE-2025-66335
Affects doris-mcp-server | Versions [,0.6.1)
Has fix
pipPublished 30 Apr 2026
  • H
Improper Certificate ValidationCVE-2026-41132
Affects ckan | Versions [,2.10.10)[2.11.0,2.11.5)
Has fix
pipPublished 30 Apr 2026
  • H
SQL InjectionCVE-2026-42031
Affects ckan | Versions [,2.10.10)[2.11.0, 2.11.5)
Has fix
pipPublished 30 Apr 2026
  • M
Cross-site Request Forgery (CSRF)CVE-2026-41255
Affects ckan | Versions [, 2.10.10)[2.11.0, 2.11.5)
Has fix
pipPublished 30 Apr 2026
  • H
Arbitrary Code InjectionCVE-2026-40156
Affects praisonai | Versions [,4.5.140)
Has fix
pipPublished 30 Apr 2026
  • M
Cross-site Request Forgery (CSRF)CVE-2026-40948
Affects apache-airflow-providers-keycloak | Versions [,0.7.0rc1)
Has fix
pipPublished 30 Apr 2026
  • M
Information Exposure
Affects gramps-webapi | Versions [,3.11.0)
Has fix
pipPublished 29 Apr 2026
  • M
Use of Uninitialized ResourceCVE-2026-7141
Affects vllm | Versions [0,]
Has fix
pipPublished 29 Apr 2026
  • C
Authorization Bypass Through User-Controlled KeyCVE-2026-24178
Affects nvflare | Versions [,2.7.2)
Has fix
pipPublished 29 Apr 2026
  • H
Deserialization of Untrusted DataCVE-2026-24186
Affects nvflare | Versions [,2.7.2)
Has fix
pipPublished 29 Apr 2026
  • H
Improper Input ValidationCVE-2026-24204
Affects nvflare | Versions [,2.7.2)
Has fix
pipPublished 29 Apr 2026
  • H
Directory TraversalCVE-2026-39847
Affects emmett | Versions [2.5.0,2.8.1)
Has fix
pipPublished 28 Apr 2026
  • H
Permissive Cross-domain Policy with Untrusted DomainsCVE-2026-34839
Affects glances | Versions [,4.5.4)
Has fix
pipPublished 28 Apr 2026
  • H
Server-side Request Forgery (SSRF)CVE-2026-35587
Affects glances | Versions [,4.5.4)
Has fix
pipPublished 28 Apr 2026
  • H
SQL InjectionCVE-2026-35588
Affects glances | Versions [,4.5.4)
Has fix
pipPublished 28 Apr 2026