Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Show:
Report a new vulnerability
Vulnerability Affects Type Published
  • H
Regular Expression Denial of Service (ReDoS) 		wappalyzer <6.0.6 npm 07 Aug, 2020
  • M
Denial of Service (DoS) 		github.com/projectcontour/contour/cmd/contour <1.7.0 Go 06 Aug, 2020
  • H
Denial of Service (DoS) 		github.com/oragono/oragono * Go 06 Aug, 2020
  • M
Information Exposure 		sulu/sulu <1.6.35,>=2.0.0, <2.0.10,>=2.1.0, <2.1.1 Composer 06 Aug, 2020
  • H
Improper Authorization 		phpmyadmin/phpmyadmin >=4.0.0, <4.0.10.19,>=4.4.0, <4.4.15.10,>=4.6.0, <4.6.6 Composer 06 Aug, 2020
  • L
Improper Input Validation 		github.com/etcd-io/etcd/wal <3.4.10 Go 06 Aug, 2020
  • M
Insecure Permissions 		github.com/etcd-io/etcd/pkg/fileutil <3.4.10 Go 06 Aug, 2020
  • M
Improper Input Validation 		github.com/etcd-io/etcd/wal <3.4.10 Go 06 Aug, 2020
  • H
Denial of Service (DoS) 		phpmyadmin/phpmyadmin >=4.0.0, <4.0.10.19,>=4.4.0, <4.4.15.10,>=4.6.0, <4.6.6 Composer 06 Aug, 2020
  • H
Denial of Service (DoS) 		phpmyadmin/phpmyadmin >=4.0.0, <4.0.10.19,>=4.4.0, <4.4.15.10,>=4.6.0, <4.6.6 Composer 06 Aug, 2020
  • M
Open Redirect 		phpmyadmin/phpmyadmin >=4.0.0, <4.0.10.19,>=4.4.0, <4.4.15.10,>=4.6.0, <4.6.6 Composer 06 Aug, 2020
  • M
HTML Injection 		phpmyadmin/phpmyadmin >=4.0.0, <4.0.10.19,>=4.4.0, <4.4.15.10,>=4.6.0, <4.6.6 Composer 06 Aug, 2020
  • M
Cross-Site Request Forgery (CSRF) 		polaris-website <1.1.1 npm 06 Aug, 2020
  • H
CSS Injection 		chartkick <3.4.0 RubyGems 06 Aug, 2020
  • M
Cryptographic Issues 		github.com/dedis/kyber * Go 06 Aug, 2020
  • H
Cross-site Request Forgery (CSRF) 		field_test <0.4.0 RubyGems 05 Aug, 2020
  • H
Cross-site Request Forgery (CSRF) 		pghero <2.7.0 RubyGems 05 Aug, 2020
  • H
SQL Injection 		org.apache.skywalking:storage-jdbc-hikaricp-plugin [,8.1.0) Maven 05 Aug, 2020
  • H
Cross-site Request Forgery (CSRF) 		save-server <1.0.7 npm 05 Aug, 2020
  • M
Unintended Proxy or Intermediary 		org.springframework.cloud:spring-cloud-netflix-hystrix-dashboard [,2.1.6.RELEASE),[2.2.0.RELEASE,2.2.4.RELEASE) Maven 05 Aug, 2020
  • H
Improper Input Validation 		solidus_frontend >=2.8.0, <2.8.6,>=2.9.0, <2.9.6,>=2.10.0, <2.10.2 RubyGems 05 Aug, 2020
  • H
Improper Input Validation 		solidus_api >=2.8.0, <2.8.6,>=2.9.0, <2.9.6,>=2.10.0, <2.10.2 RubyGems 05 Aug, 2020
  • M
Cryptographic Issues 		laravel/framework <6.18.29,>7.0.0, <7.22.2 Composer 04 Aug, 2020
  • M
Cryptographic Issues 		illuminate/cookie <6.18.29,>7.0.0, <7.22.2 Composer 04 Aug, 2020
  • M
Cross-site Request Forgery (CSRF) 		github.com/uadmin/uadmin <0.5.0 Go 03 Aug, 2020
  • H
SQL Injection 		github.com/uadmin/uadmin <0.5.0 Go 03 Aug, 2020
  • M
Cross-site Scripting (XSS) 		kitodo/presentation <3.1.2 Composer 02 Aug, 2020
  • H
Improper Certificate Validation 		faye-websocket <0.11.0 RubyGems 02 Aug, 2020
  • H
Server-side Request Forgery (SSRF) 		ftp-srv * npm 02 Aug, 2020
  • M
Regular Expression Denial of Service (ReDoS) 		markdown * npm 02 Aug, 2020