Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • C
Malicious Package
Affects base58-engine | Versions *
No fix available
npmPublished 1 Apr 2026
  • C
Malicious Package
Affects base-or-engine | Versions *
No fix available
npmPublished 1 Apr 2026
  • M
Missing Authentication for Critical Function
Affects litellm | Versions [,1.82.4)
Has fix
pipPublished 1 Apr 2026
  • C
Deserialization of Untrusted Data
Affects ai.h2o:h2o-core | Versions [,3.46.0.10)
Has fix
MavenPublished 1 Apr 2026
  • H
Exposure of Sensitive System Information to an Unauthorized Control SphereCVE-2025-15381
Affects mlflow-skinny | Versions [,3.11.0rc0)
Has fix
pipPublished 1 Apr 2026
  • H
Exposure of Sensitive System Information to an Unauthorized Control SphereCVE-2025-15381
Affects mlflow | Versions [,3.11.0rc0)
Has fix
pipPublished 1 Apr 2026
  • H
Directory TraversalCVE-2026-35167
Affects kedro | Versions [,1.3.0)
Has fix
pipPublished 1 Apr 2026
  • L
SQL Injection
Affects @langchain/google-cloud-sql-pg | Versions <1.0.22
Has fix
npmPublished 1 Apr 2026
  • H
UNIX Symbolic Link (Symlink) FollowingCVE-2026-27489
Affects onnx | Versions [,1.21.0)
Has fix
pipPublished 1 Apr 2026
  • H
Directory Traversal
Affects onnxruntime | Versions [,1.24.1)
Has fix
pipPublished 1 Apr 2026
  • H
Arbitrary Code Execution
Affects fonttools | Versions [,4.62.0)
Has fix
pipPublished 1 Apr 2026
  • H
XML InjectionCVE-2026-34601
Affects org.webjars.npm:xmldom | Versions [0,]
Has fix
MavenPublished 1 Apr 2026
  • H
XML InjectionCVE-2026-34601
Affects xmldom | Versions *
No fix available
npmPublished 1 Apr 2026
  • H
XML InjectionCVE-2026-34601
Affects @xmldom/xmldom | Versions <0.8.12>=0.9.0 <0.9.9
Has fix
npmPublished 1 Apr 2026
  • H
Improper Verification of Cryptographic SignatureCVE-2026-34240
Affects jose_plus | Versions *
No fix available
pubPublished 1 Apr 2026
  • H
Improper Verification of Cryptographic SignatureCVE-2026-34240
Affects jose2 | Versions *
No fix available
pubPublished 1 Apr 2026
  • H
Improper Verification of Cryptographic SignatureCVE-2026-34240
Affects jose | Versions <0.3.5+1
Has fix
pubPublished 1 Apr 2026
  • M
Prototype PollutionCVE-2026-2950
Affects org.webjars.npm:lodash | Versions [4.0.0,]
Has fix
MavenPublished 1 Apr 2026
  • M
Prototype PollutionCVE-2026-2950
Affects org.webjars.npm:lodash-es | Versions [4.2.1,]
Has fix
MavenPublished 1 Apr 2026
  • H
Arbitrary Code InjectionCVE-2026-4800
Affects org.webjars.npm:lodash-es | Versions [0,]
Has fix
MavenPublished 1 Apr 2026
  • H
Arbitrary Code InjectionCVE-2026-4800
Affects org.webjars.npm:lodash.template | Versions [0,]
Has fix
MavenPublished 1 Apr 2026
  • H
Arbitrary Code InjectionCVE-2026-4800
Affects org.webjars.npm:lodash | Versions [0,]
Has fix
MavenPublished 1 Apr 2026
  • H
Arbitrary Code InjectionCVE-2026-4800
Affects lodash-rails | Versions >=0.7.0
Has fix
RubyGemsPublished 1 Apr 2026
  • H
Arbitrary Code InjectionCVE-2026-4800
Affects lodash.template | Versions <4.18.1
Has fix
npmPublished 1 Apr 2026
  • H
Arbitrary Code InjectionCVE-2026-4800
Affects lodash-es | Versions <4.18.1
Has fix
npmPublished 1 Apr 2026
  • H
Arbitrary Code InjectionCVE-2026-4800
Affects lodash-amd | Versions <4.18.1
Has fix
npmPublished 1 Apr 2026
  • H
Arbitrary Code InjectionCVE-2026-4800
Affects lodash | Versions <4.18.1
Has fix
npmPublished 1 Apr 2026
  • M
Prototype PollutionCVE-2026-2950
Affects lodash-amd | Versions >=4.0.0 <4.18.1
Has fix
npmPublished 1 Apr 2026
  • M
Prototype PollutionCVE-2026-2950
Affects lodash-es | Versions >=4.0.0 <4.18.1
Has fix
npmPublished 1 Apr 2026
  • M
Prototype PollutionCVE-2026-2950
Affects lodash.unset | Versions <4.18.0
Has fix
npmPublished 1 Apr 2026