Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All Vulnerabilities
APPLICATION
Cargo | Rust
Objective-C, CocoaPods | Swift
Composer | PHP
Conan | C/C++
GitHub | Go
Hex | Elixir / Erlang
Maven | Java
npm | JavaScript
NuGet | C#/F#/VB
Pypi | Python
pub | Dart, Flutter
RubyGems | Ruby
Swift Packages | Swift
C/C++
OPERATING SYSTEM
All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
MinimOS
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi
Report a new vulnerability
Vulnerabilities
Packages
L
Use of Weak Hash
CVE-2026-10812
Affects
gptcache
| Versions
[0,]
L
Insufficient Verification of Data Authenticity
CVE-2026-13507
Affects
openviking
| Versions
[0,]
H
Deserialization of Untrusted Data
CVE-2025-71363
Affects
picklescan
| Versions
[,0.0.30)
H
Deserialization of Untrusted Data
CVE-2025-71349
Affects
picklescan
| Versions
[,0.0.29)
H
Deserialization of Untrusted Data
CVE-2025-71350
Affects
picklescan
| Versions
[,0.0.28)
H
Protection Mechanism Failure
CVE-2025-71352
Affects
picklescan
| Versions
[,0.0.29)
H
Deserialization of Untrusted Data
CVE-2025-71368
Affects
picklescan
| Versions
[,0.0.30)
H
Deserialization of Untrusted Data
CVE-2025-71374
Affects
picklescan
| Versions
[,0.0.29)
H
Deserialization of Untrusted Data
CVE-2025-71371
Affects
picklescan
| Versions
[,0.0.29)
L
Improper Resource Shutdown or Release
CVE-2026-10775
Affects
sglang
| Versions
[0,]
M
Reachable Assertion
CVE-2026-10300
Affects
sglang
| Versions
[0,]
H
Directory Traversal
CVE-2026-10108
Affects
xiaomusic
| Versions
[,0.5.8)
H
Arbitrary Code Injection
CVE-2026-46447
Affects
ironic
| Versions
[17.0.0,]
M
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
CVE-2026-9353
Affects
hermes-agent
| Versions
[,0.15.0)
M
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
CVE-2026-9366
Affects
hermes-agent
| Versions
[,0.15.0)
M
Cross-site Scripting (XSS)
CVE-2026-6658
Affects
nbconvert
| Versions
[0,]
M
Access Control Bypass
CVE-2024-37155
Affects
pycti
| Versions
[,6.1.9)
M
Cross-site Scripting (XSS)
CVE-2026-35212
Affects
pycti
| Versions
[,7.260227.0)
M
Access Control Bypass
CVE-2026-37737
Affects
sanic-cors
| Versions
[0,]
H
Use of Less Trusted Source
CVE-2020-37248
Affects
offlineimap
| Versions
[,8.0.3)
M
Missing Authorization
CVE-2026-31215
Affects
nexent
| Versions
[0,]
H
Server-side Request Forgery (SSRF)
CVE-2026-13751
Affects
snowflake-cli
| Versions
[,3.19.0)
M
SQL Injection
CVE-2026-13752
Affects
snowflake-cli
| Versions
[,3.19.0)
L
Arbitrary Command Injection
CVE-2026-11455
Affects
metagpt
| Versions
[0,]
M
Deserialization of Untrusted Data
CVE-2026-10566
Affects
metagpt
| Versions
[0,]
H
Directory Traversal
CVE-2026-4944
Affects
vllm
| Versions
[0,]
L
Use of Weak Hash
CVE-2026-10813
Affects
lmcache
| Versions
[0,]
H
Arbitrary Argument Injection
CVE-2026-3515
Affects
prefect
| Versions
[0,]
C
Deserialization of Untrusted Data
CVE-2026-48207
Affects
pyfory
| Versions
[,1.0.0)
H
Authorization Bypass Through User-Controlled Key
CVE-2026-56780
Affects
modoboa
| Versions
[,2.9.0)