Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • L
User Impersonation		andyholmes/valent[,1.0.0-alpha.49)Unmanaged (C/C++)5 Dec 2025
  • L
User Impersonation		kde/kdeconnect-kde[25.04.0,25.11.90)Unmanaged (C/C++)5 Dec 2025
  • M
Improperly Controlled Sequential Memory Allocation		wireshark[4.6.0,4.6.2)Unmanaged (C/C++)5 Dec 2025
  • M
Infinite loop		wireshark[4.4.0,4.4.12)[4.6.0,4.6.2)Unmanaged (C/C++)5 Dec 2025
  • H
Out-of-Bounds		wpe_webkit[,2.50.3)Unmanaged (C/C++)5 Dec 2025
  • H
Out-of-Bounds		webkitgtk[,2.50.3)Unmanaged (C/C++)5 Dec 2025
  • H
Buffer Overflow		wpe_webkit[,2.50.3)Unmanaged (C/C++)5 Dec 2025
  • H
Buffer Overflow		webkitgtk[,2.50.3)Unmanaged (C/C++)5 Dec 2025
  • H
Integer Overflow or Wraparound		zevv/duc[,1.4.6)Unmanaged (C/C++)5 Dec 2025
  • M
Out-of-bounds Read		espressif/esp-idf[0,]Unmanaged (C/C++)5 Dec 2025
  • M
Cross-site Scripting (XSS)		getgrav/grav>=0.0.0Composer5 Dec 2025
  • M
Improper Control of Dynamically-Managed Code Resources		ZDoom/gzdoom[,4.14.3)Unmanaged (C/C++)5 Dec 2025
  • H
Use of a Broken or Risky Cryptographic Algorithm		libcrux-intrinsics>=0.0.3 <0.0.4Cargo5 Dec 2025
  • M
Heap-based Buffer Overflow		dannyvankooten/pepper-lang[0,]Unmanaged (C/C++)5 Dec 2025
  • L
Protection Mechanism Failure		@anthropic-ai/sandbox-runtime<0.0.16npm5 Dec 2025
  • M
Incorrect Authorization		github.com/smallstep/certificates/api<0.29.0Go5 Dec 2025
  • M
Incorrect Authorization		github.com/smallstep/certificates/authority/provisioner<0.29.0Go5 Dec 2025
  • M
Directory Traversal		composio-core[0,]pip5 Dec 2025
  • M
Open Redirect		com.linecorp.centraldogma:centraldogma-server-auth-shiro[,0.78.0)Maven5 Dec 2025
  • H
Directory Traversal		alexusmai/laravel-file-manager>=0.0.0Composer5 Dec 2025
  • M
Access Control Bypass		open-webui[0,]pip5 Dec 2025
  • M
Server-side Request Forgery (SSRF)		open-webui[,0.6.37)pip5 Dec 2025
  • M
Cross-site Scripting (XSS)		open-webui[,0.6.37)pip5 Dec 2025
  • C
Malicious Package		node-dpapi1*npm5 Dec 2025
  • C
Malicious Package		chai-promised-chain*npm5 Dec 2025
  • C
Malicious Package		json-map-source*npm5 Dec 2025
  • C
Malicious Package		dotnetenv*npm5 Dec 2025
  • M
Insertion of Sensitive Information into Log File		ansible[,12.0.0)pip5 Dec 2025
  • H
XML External Entity (XXE) Injection		org.apache.tika:tika-parsers[1.13,2.0.0)Maven5 Dec 2025
  • H
XML External Entity (XXE) Injection		org.apache.tika:tika-core[1.13,3.2.2)Maven5 Dec 2025