See the full list of npm packages compromised in the "TanStack Supply Chain Compromise - May 2026" [View compromised packages].
Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
- C
Arbitrary Code InjectionCVE-2026-8634
Affects github.com/openclaw/crabbox/internal/cli | Versions <0.12.0
Has fix
GoPublished 15 May 2026
- H
Command InjectionCVE-2026-45578
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 May 2026
- M
Cross-site Request Forgery (CSRF)CVE-2026-45610
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 May 2026
- M
Cross-site Scripting (XSS)CVE-2026-45580
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 May 2026
- H
Server-side Request Forgery (SSRF)CVE-2026-45619
Affects wwbn/avideo | Versions >=0.0.0
Has fix
ComposerPublished 15 May 2026
- H
Authorization Bypass Through User-Controlled KeyCVE-2026-44692
Affects code16/sharp | Versions <9.22.0
Has fix
ComposerPublished 15 May 2026
- H
Cross-site Scripting (XSS)CVE-2026-41147
Affects nukeviet/nukeviet | Versions <4.5.08
Has fix
ComposerPublished 15 May 2026
- H
Directory TraversalCVE-2026-46491
Affects simplesamlphp/simplesamlphp-module-casserver | Versions <7.0.3
Has fix
ComposerPublished 15 May 2026
- M
Open RedirectCVE-2025-65954
Affects simplesamlphp/simplesamlphp-module-casserver | Versions <6.3.1>=7.0.0-rc1, <7.0.0
Has fix
ComposerPublished 15 May 2026
- M
Insufficient EntropyCVE-2025-14972
Affects SiliconLabs/simplicity_sdk | Versions [0,]
Has fix
Unmanaged (C/C++)Published 15 May 2026
- C
Buffer Underwrite (Buffer Underflow)CVE-2026-34253
Affects xiph/vorbis-tools | Versions [0,]
Has fix
Unmanaged (C/C++)Published 15 May 2026
- C
Use of a Broken or Risky Cryptographic AlgorithmCVE-2026-44699
Affects benmcollins/libjwt | Versions [3.0.0,3.3.3)
Has fix
Unmanaged (C/C++)Published 15 May 2026
- L
Command InjectionCVE-2026-46483
Affects vim/vim | Versions [,9.2.0479)
Has fix
Unmanaged (C/C++)Published 15 May 2026
- H
Out-of-bounds WriteCVE-2026-8454
Affects tonycoz/imager | Versions [,1.031)
Has fix
Unmanaged (C/C++)Published 15 May 2026
- H
Integer Overflow or WraparoundCVE-2026-44673
Affects libyang | Versions [0,]
Has fix
ConanPublished 15 May 2026
- H
Integer Overflow or WraparoundCVE-2026-44673
Affects CESNET/libyang | Versions [,5.4.9)
Has fix
Unmanaged (C/C++)Published 15 May 2026
- H
Heap-based Buffer OverflowCVE-2026-44636
Affects saitoha/libsixel | Versions [1.4.4,1.8.7-r2)
Has fix
Unmanaged (C/C++)Published 15 May 2026
- H
NULL Pointer DereferenceCVE-2026-44638
Affects saitoha/libsixel | Versions [1.0.0,1.8.7-r2)
Has fix
Unmanaged (C/C++)Published 15 May 2026
- M
Integer Overflow or WraparoundCVE-2026-44637
Affects saitoha/libsixel | Versions [0.11.0,1.8.7-r2)
Has fix
Unmanaged (C/C++)Published 15 May 2026
- H
Heap-based Buffer OverflowCVE-2026-43906
Affects openimageio | Versions [,3.1.13.1)
Has fix
ConanPublished 15 May 2026
- H
Heap-based Buffer OverflowCVE-2026-43906
Affects OpenImageIO/oiio | Versions [,3.0.18.0)[3.1.4.0-beta,3.1.13.0)[3.2.0.0-dev,3.2.0.2-dev)
Has fix
Unmanaged (C/C++)Published 15 May 2026
- M
Out-of-bounds ReadCVE-2026-43996
Affects openimageio | Versions [,3.1.13.1)
Has fix
ConanPublished 15 May 2026
- M
Out-of-bounds ReadCVE-2026-43996
Affects OpenImageIO/oiio | Versions [,3.0.18.0)[3.1.4.0-beta,3.1.13.0)[3.2.0.0-dev,3.2.0.2-dev)
Has fix
Unmanaged (C/C++)Published 15 May 2026
- H
Integer Overflow or WraparoundCVE-2026-43908
Affects openimageio | Versions [,3.1.13.1)
Has fix
ConanPublished 15 May 2026
- H
Integer Overflow or WraparoundCVE-2026-43908
Affects OpenImageIO/oiio | Versions [,3.0.18.1)[3.1.4.0-beta,3.1.13.1)[3.2.0.0-dev,3.2.0.2-dev)
Has fix
Unmanaged (C/C++)Published 15 May 2026
- H
Out-of-bounds WriteCVE-2026-43904
Affects openimageio | Versions [,3.1.13.1)
Has fix
ConanPublished 15 May 2026
- H
Out-of-bounds WriteCVE-2026-43904
Affects OpenImageIO/oiio | Versions [,3.0.18.0)[3.1.4.0-beta,3.1.13.0)[3.2.0.0-dev,3.2.0.2-dev)
Has fix
Unmanaged (C/C++)Published 15 May 2026
- H
Out-of-bounds WriteCVE-2026-43903
Affects openimageio | Versions [,3.1.13.1)
Has fix
ConanPublished 15 May 2026
- H
Out-of-bounds WriteCVE-2026-43903
Affects OpenImageIO/oiio | Versions [,3.0.18.0)[3.1.4.0-beta,3.1.13.0)[3.2.0.0-dev,3.2.0.2-dev)
Has fix
Unmanaged (C/C++)Published 15 May 2026