Vulnerability DB

Subscribe to RSS feed
Report a new vulnerability

Detailed information and remediation guidance for known vulnerabilities.

Show:

Vulnerability	Affects	Type	Published
M Cross-site Scripting (XSS)	rendr-handlebars <1.0.0	npm	30 May, 2017
M Cross-site Scripting (XSS)	octotree <2.0.11	npm	30 May, 2017
M Cross-site Scripting (XSS)	octotree <1.1	npm	30 May, 2017
M Man-in-the-Middle (MitM)	hotel *	npm	30 May, 2017
M Cross-site Scripting (XSS)	ghost <0.11.4 >=0.8.0	npm	30 May, 2017
M Cross-site Scripting (XSS)	ghost <1.0.0-alpha.5 >=1.0.0-alpha.1 \|\| >=0.8.0 < 0.11.2	npm	30 May, 2017
M Open Redirect	ghost <0.10.0	npm	30 May, 2017
M Information Disclosure	ghost <0.5.9	npm	30 May, 2017
M Denial of Service (DoS)	ghost <0.5.9	npm	30 May, 2017
M Authentication Bypass	ghost <0.5.9	npm	30 May, 2017
M Authentication Bypass	ghost <0.5.9	npm	30 May, 2017
M Cross-site Scripting (XSS)	ghost <0.5.9	npm	30 May, 2017
M Identity Spoofing	ghost <0.5.9	npm	30 May, 2017
M Cross-site Scripting (XSS)	easyxdm <2.4.19	npm	30 May, 2017
M Cross-site Scripting (XSS)	bootstrap-markdown *	npm	30 May, 2017
H Arbitrary Code Execution	org.springframework.flex:spring-flex-core [,1.5.2.RELEASE]	Maven	21 May, 2017
M Denial of Service (DoS)	org.sonatype.nexus.xstream:xstream [1.4,1.4.6-SONATYPE-03]	Maven	21 May, 2017
L Timing Attacks	org.keycloak:keycloak-server-spi-private [2.5,2.5.0.Final]	Maven	21 May, 2017
H Denial of Service (DoS)	org.keycloak:keycloak-saml-core [1.2,2.5.4.Final]	Maven	21 May, 2017
L Timing Attack	org.keycloak:keycloak-core [1.4.0.Final,2.5.0.Final]	Maven	21 May, 2017
M Denial of Service (DoS)	org.jvnet.hudson:xstream [1.3,1.3.1-hudson-8]	Maven	21 May, 2017
H Arbitrary Code Execution	org.jvnet.hudson.plugins:distfork [,1.1]	Maven	21 May, 2017
M Denial of Service (DoS)	org.hudsonci.tools:xstream [,1.4.1-hudson-2]	Maven	21 May, 2017
M Denial of Service (DoS)	org.cloudfoundry.identity:cloudfoundry-identity-uaa [3.9,3.11.0)	Maven	21 May, 2017
H Privilege Escalation	org.cloudfoundry.identity:cloudfoundry-identity-uaa [,2.7.4.9]. [3,3.9.1]	Maven	21 May, 2017
L Session Fixation	org.cloudfoundry.identity:cloudfoundry-identity-uaa [,2.7.4.9], [3,3.9.1]	Maven	21 May, 2017
M Blind SQL Injection	org.cloudfoundry.identity:cloudfoundry-identity-server [3,3.9.1]	Maven	21 May, 2017
M Denial of Service (DoS)	org.cloudfoundry.identity:cloudfoundry-identity-server [3.9,3.11.0)	Maven	21 May, 2017
H Blind SQL Injection	org.cloudfoundry.identity:cloudfoundry-identity-server [3.,3.9.1]	Maven	21 May, 2017
H Privilege Escalation	org.cloudfoundry.identity:cloudfoundry-identity-server [3,3.9.1]	Maven	21 May, 2017

Cross-site Scripting (XSS)

rendr-handlebars <1.0.0

npm

30 May, 2017

Cross-site Scripting (XSS)

octotree <2.0.11

npm

30 May, 2017

Cross-site Scripting (XSS)

octotree <1.1

npm

30 May, 2017