Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • H
Regular Expression Denial of Service (ReDoS)
wappalyzer <6.0.6 npm 07 Aug, 2020
  • M
Denial of Service (DoS)
github.com/projectcontour/contour/cmd/contour <1.7.0 Go 06 Aug, 2020
  • H
Denial of Service (DoS)
github.com/oragono/oragono * Go 06 Aug, 2020
  • M
Information Exposure
sulu/sulu <1.6.35,>=2.0.0, <2.0.10,>=2.1.0, <2.1.1 Composer 06 Aug, 2020
  • H
Improper Authorization
phpmyadmin/phpmyadmin >=4.0.0, <4.0.10.19,>=4.4.0, <4.4.15.10,>=4.6.0, <4.6.6 Composer 06 Aug, 2020
  • L
Improper Input Validation
github.com/etcd-io/etcd/wal <3.4.10 Go 06 Aug, 2020
  • M
Insecure Permissions
github.com/etcd-io/etcd/pkg/fileutil <3.4.10 Go 06 Aug, 2020
  • M
Improper Input Validation
github.com/etcd-io/etcd/wal <3.4.10 Go 06 Aug, 2020
  • H
Denial of Service (DoS)
phpmyadmin/phpmyadmin >=4.0.0, <4.0.10.19,>=4.4.0, <4.4.15.10,>=4.6.0, <4.6.6 Composer 06 Aug, 2020
  • H
Denial of Service (DoS)
phpmyadmin/phpmyadmin >=4.0.0, <4.0.10.19,>=4.4.0, <4.4.15.10,>=4.6.0, <4.6.6 Composer 06 Aug, 2020
  • M
Open Redirect
phpmyadmin/phpmyadmin >=4.0.0, <4.0.10.19,>=4.4.0, <4.4.15.10,>=4.6.0, <4.6.6 Composer 06 Aug, 2020
  • M
HTML Injection
phpmyadmin/phpmyadmin >=4.0.0, <4.0.10.19,>=4.4.0, <4.4.15.10,>=4.6.0, <4.6.6 Composer 06 Aug, 2020
  • M
Cross-Site Request Forgery (CSRF)
polaris-website <1.1.1 npm 06 Aug, 2020
  • H
CSS Injection
chartkick <3.4.0 RubyGems 06 Aug, 2020
  • M
Cryptographic Issues
github.com/dedis/kyber * Go 06 Aug, 2020
  • H
Cross-site Request Forgery (CSRF)
field_test <0.4.0 RubyGems 05 Aug, 2020
  • H
Cross-site Request Forgery (CSRF)
pghero <2.7.0 RubyGems 05 Aug, 2020
  • H
SQL Injection
org.apache.skywalking:storage-jdbc-hikaricp-plugin [,8.1.0) Maven 05 Aug, 2020
  • H
Cross-site Request Forgery (CSRF)
save-server <1.0.7 npm 05 Aug, 2020
  • M
Unintended Proxy or Intermediary
org.springframework.cloud:spring-cloud-netflix-hystrix-dashboard [,2.1.6.RELEASE),[2.2.0.RELEASE,2.2.4.RELEASE) Maven 05 Aug, 2020
  • H
Improper Input Validation
solidus_frontend >=2.8.0, <2.8.6,>=2.9.0, <2.9.6,>=2.10.0, <2.10.2 RubyGems 05 Aug, 2020
  • H
Improper Input Validation
solidus_api >=2.8.0, <2.8.6,>=2.9.0, <2.9.6,>=2.10.0, <2.10.2 RubyGems 05 Aug, 2020
  • M
Cryptographic Issues
laravel/framework <6.18.29,>7.0.0, <7.22.2 Composer 04 Aug, 2020
  • M
Cryptographic Issues
illuminate/cookie <6.18.29,>7.0.0, <7.22.2 Composer 04 Aug, 2020
  • M
Cross-site Request Forgery (CSRF)
github.com/uadmin/uadmin <0.5.0 Go 03 Aug, 2020
  • H
SQL Injection
github.com/uadmin/uadmin <0.5.0 Go 03 Aug, 2020
  • M
Cross-site Scripting (XSS)
kitodo/presentation <3.1.2 Composer 02 Aug, 2020
  • H
Improper Certificate Validation
faye-websocket <0.11.0 RubyGems 02 Aug, 2020
  • H
Server-side Request Forgery (SSRF)
ftp-srv * npm 02 Aug, 2020
  • M
Regular Expression Denial of Service (ReDoS)
markdown * npm 02 Aug, 2020