Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • H
XML External Entity (XXE) Injection
ladon [0.6.1,) pip 19 Jul, 2019
  • H
Improper Access Control
drupal/core >=8.7.4, <8.7.5 Composer 18 Jul, 2019
  • L
Improper Access Control
openjdk-jre [11.0.3,11.0.4),[12.0.1,12.0.2) upstream 18 Jul, 2019
  • M
Deserialization of Untrusted Data
openjdk-jre [11.0.3,11.0.4),[12.0.1,12.0.2) upstream 18 Jul, 2019
  • M
Side-channel attack
openjdk-jre [11.0.3,11.0.4) upstream 18 Jul, 2019
  • L
Sandbox Bypass
openjdk-jre [11.0.3,11.0.4),[12.0.1,12.0.2) upstream 18 Jul, 2019
  • H
Directory Traversal
atompm <0.8.2 npm 18 Jul, 2019
  • M
Improper Input Validation
openjdk-jre [11.0.3,11.0.4),[12.0.1,12.0.2) upstream 18 Jul, 2019
  • H
Cross Site Request Forgery (CSRF)
org.jenkins-ci.main:jenkins-core [0,] Maven 18 Jul, 2019
  • M
Directory Traversal
org.jenkins-ci.main:jenkins-core [0,] Maven 18 Jul, 2019
  • M
Access Control Bypass
org.jenkins-ci.main:jenkins-core [0,] Maven 18 Jul, 2019
  • L
Information Exposure
openjdk-jre [11.0.3,11.0.4),[12.0.1,12.0.2) upstream 18 Jul, 2019
  • H
Malicious Package
load-from-cwd-or-npm >=3.0.2 <3.0.4 npm 18 Jul, 2019
  • H
Malicious Package
rate-map >=1.0.3 <1.0.5 npm 18 Jul, 2019
  • M
Information Exposure
org.springframework.data:spring-data-jpa [,1.11.22.RELEASE),[2.0.0.RELEASE, 2.1.8.RELEASE) Maven 18 Jul, 2019
  • M
Cross-site Scripting (XSS)
grumpydictator/firefly-iii <4.7.17.3 Composer 18 Jul, 2019
  • M
Cross-site Scripting (XSS)
grumpydictator/firefly-iii <4.7.17.3 Composer 18 Jul, 2019
  • M
Cross-site Scripting (XSS)
grumpydictator/firefly-iii <4.7.17.3 Composer 18 Jul, 2019
  • M
Cross-site Scripting (XSS)
grumpydictator/firefly-iii <4.7.17.2 Composer 18 Jul, 2019
  • M
Cross-site Scripting (XSS)
bpmn-js-properties-panel <0.31.0 npm 17 Jul, 2019
  • M
Cross-site Scripting (XSS)
cmmn-js-properties-panel <0.8.0 npm 17 Jul, 2019
  • M
Cross-site Scripting (XSS)
dmn-js-properties-panel <0.3.0 npm 17 Jul, 2019
  • H
Denial of Service (DOS)
flask [,1.0) pip 17 Jul, 2019
  • M
Cross-site Scripting (XSS)
roundup [0,] pip 17 Jul, 2019
  • H
Information Exposure
io.undertow:undertow-core [,2.0.20.Final) Maven 17 Jul, 2019
  • H
Directory Traversal
restify-swagger-jsdoc <3.2.1 npm 16 Jul, 2019
  • M
Information Exposure
com.brianfromoregon:caliper-ci [0,] Maven 16 Jul, 2019
  • M
Cross-site Request Forgery (CSRF)
io.jenkins.docker:docker-plugin [,1.1.7) Maven 16 Jul, 2019
  • M
Information Exposure
org.jenkins-ci.plugins:port-allocator [0,] Maven 16 Jul, 2019
  • M
Cross-site Scripting (XSS)
org.jenkins-ci.plugins:depgraph-view [0,] Maven 16 Jul, 2019