Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
All Vulnerabilities
APPLICATION
Cargo | Rust
Objective-C, CocoaPods | Swift
Composer | PHP
Conan | C/C++
GitHub | Go
Hex | Elixir / Erlang
Maven | Java
npm | JavaScript
NuGet | C#/F#/VB
Pypi | Python
pub | Dart, Flutter
RubyGems | Ruby
Swift Packages | Swift
C/C++
OPERATING SYSTEM
All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
MinimOS
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi
Report a new vulnerability
Vulnerabilities
Packages
H
Denial of Service (DoS)
CVE-2021-3541
Affects
nokogiri
| Versions
<1.11.4
H
Denial of Service (DoS)
CVE-2021-3537
Affects
nokogiri
| Versions
<1.11.4
H
Denial of Service (DoS)
CVE-2020-24977
Affects
nokogiri
| Versions
<1.11.4
H
Denial of Service (DoS)
CVE-2021-3517
Affects
nokogiri
| Versions
<1.11.4
M
Improper Authorization
CVE-2021-3457
Affects
smart_proxy_shellhooks
| Versions
<0.9.2
H
Denial of Service (DoS)
CVE-2021-29509
Affects
puma
| Versions
>=5.0.0.beta1, <5.3.1
<4.3.8
H
Arbitrary Code Execution
CVE-2019-3881
Affects
bundler
| Versions
>=1.14.0, <2.1.0
H
Regular Expression Denial of Service (ReDoS)
CVE-2021-22902
Affects
actionpack
| Versions
>=6.1.0, <6.1.3.2
>=6.0.0, <6.0.3.7
M
Regular Expression Denial of Service (ReDoS)
CVE-2021-22903
Affects
actionpack
| Versions
>=6.1.0, <6.1.3.2
H
Denial of Service (DoS)
CVE-2021-22904
Affects
actionpack
| Versions
>=2.0.0, <5.2.4.6
>=5.2.5, <5.2.6
>=6.0.0, <6.0.3.7
>=6.1.0, <6.1.3.2
M
Information Exposure
CVE-2021-22885
Affects
actionpack
| Versions
>=2.0.0, <5.2.4.6
>=5.2.5, <5.2.6
>=6.0.0, <6.0.3.7
>=6.1.0, <6.1.3.2
H
Directory Traversal
CVE-2018-6914
Affects
rubysl-tmpdir
| Versions
>=0.0.0
H
Directory Traversal
CVE-2021-28966
Affects
tmpdir
| Versions
<0.1.2
H
Command Injection
CVE-2021-31799
Affects
rdoc
| Versions
>=3.11, <6.3.0
H
Arbitrary Code Execution
CVE-2021-22204
Affects
exiftool_vendored
| Versions
<12.25.0
M
Information Exposure
CVE-2021-31671
Affects
pgsync
| Versions
<0.6.7
M
Web Cache Poisoning
Affects
rack
| Versions
<3.0.0.beta1
M
Cross-site Request Forgery (CSRF)
CVE-2021-29435
Affects
trestle-auth
| Versions
>=0.4.0, <0.4.2
M
Improper Input Validation
CVE-2020-7942
Affects
puppet
| Versions
<6.13.0
M
Cross-site Request Forgery (CSRF)
CVE-2021-29435
Affects
trestle-auth
| Versions
>=0.4.0, <0.4.2
M
Improper Certificate Validation
CVE-2020-24393
Affects
tweetstream
| Versions
>=0.0.0
H
Information Exposure
CVE-2021-3413
Affects
foreman_azure_rm
| Versions
<2.2.0
L
Improper Input Validation
CVE-2021-28965
Affects
rexml
| Versions
<3.2.5
M
Cross-site Scripting (XSS)
CVE-2021-30151
Affects
sidekiq
| Versions
<6.2.1
M
Cross-site Scripting (XSS)
CVE-2021-28796
Affects
qiita-markdown
| Versions
<0.33.0
M
Deserialization of Untrusted Data
CVE-2021-28834
Affects
kramdown
| Versions
>=1.16.0, <2.3.1
H
Denial of Service (DoS)
Affects
spree
| Versions
<4.2.0
M
Timing Attack
CVE-2019-25025
Affects
activerecord-session_store
| Versions
<2.0.0
M
Open Redirect
CVE-2021-22881
Affects
actionpack
| Versions
>=6.0.0, <6.0.3.5
>=6.1.0.rc1, <6.1.2.1
H
Regular Expression Denial of Service (ReDoS)
CVE-2021-22880
Affects
activerecord
| Versions
>=6.1.0, <6.1.2.1
>=6.0.0, <6.0.3.5
>=4.2.0, <5.2.4.5