Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Show:
Report a new vulnerability
Vulnerability Affects Type Published
  • H
Remote Code Execution (RCE) 		studio-42/elfinder <2.1.58 Composer 13 Jun, 2021
  • M
Cross-site Scripting (XSS) 		total.js <3.3.0-13 npm 13 Jun, 2021
  • M
Denial of Service (DoS) 		io.undertow:undertow-core [0,] Maven 13 Jun, 2021
  • H
Denial of Service (DoS) 		org.apache.pdfbox:pdfbox [2.0.0, 2.0.24) Maven 13 Jun, 2021
  • H
Denial of Service (DoS) 		org.apache.pdfbox:pdfbox [2.0.0, 2.0.24) Maven 13 Jun, 2021
  • C
XML External Entity (XXE) Injection 		org.exist-db:exist-core [,5.0.0) Maven 11 Jun, 2021
  • M
Insecure Randomness 		github.com/rclone/rclone/fs/rc/rcserver >=1.49.0 <1.53.3 Go 11 Jun, 2021
  • M
Insecure Randomness 		github.com/rclone/rclone/fs/config >=1.49.0 <1.53.3 Go 11 Jun, 2021
  • M
Insecure Randomness 		github.com/rclone/rclone/cmd/rcd >=1.49.0 <1.53.3 Go 11 Jun, 2021
  • M
Insecure Randomness 		github.com/rclone/rclone/backend/premiumizeme >=1.49.0 <1.53.3 Go 11 Jun, 2021
  • M
Improper Input Validation 		go.mongodb.org/mongo-driver/bson/bsonrw <1.5.1 Go 11 Jun, 2021
  • M
Improper Input Validation 		github.com/mongodb/mongo-go-driver/bson/bsonrw <1.5.1 Go 11 Jun, 2021
  • M
Insecure Permissions 		org.keycloak:keycloak-services [,12.0.0) Maven 11 Jun, 2021
  • H
Denial of Service (DoS) 		imagemagick >=0.0.0 cocoapods 11 Jun, 2021
  • H
Improper Input Validation 		imagemagick >=0.0.0 cocoapods 11 Jun, 2021
  • M
Insecure Temporary File 		org.keycloak:keycloak-services [,13.0.0) Maven 11 Jun, 2021
  • M
Cross-site Scripting (XSS) 		ckeditor4 >=4.14.0 <4.16.1 npm 10 Jun, 2021
  • M
Cross-site Scripting (XSS) 		org.webjars.npm:ckeditor4 [4.14.0, 4.16.1) Maven 10 Jun, 2021
  • M
Cross-site Request Forgery (CSRF) 		fastapi [,0.65.2) pip 10 Jun, 2021
  • M
Arbitrary File Read 		github.com/sensepost/gowitness/cmd <2.3.6 Go 10 Jun, 2021
  • M
Information Exposure 		com.sap.scimono:scimono-server [0,] Maven 10 Jun, 2021
  • H
Directory Traversal 		thefuck [,3.31) pip 10 Jun, 2021
  • M
Improper Authorization 		foreman_ansible <2.0.0 RubyGems 10 Jun, 2021
  • M
Open Redirect 		flask-unchained [,0.9.0) pip 10 Jun, 2021
  • M
Cross-site Scripting (XSS) 		org.jboss.resteasy:resteasy-core [,4.6.0.Final) Maven 10 Jun, 2021
  • M
Prototype Pollution 		expand-hash * npm 10 Jun, 2021
  • M
Prototype Pollution 		set-getter * npm 10 Jun, 2021
  • M
Prototype Pollution 		org.webjars.npm:set-getter [0,] Maven 10 Jun, 2021
  • M
Information Exposure 		org.eclipse.jetty:jetty-servlets [,9.4.41),[10.0.0, 10.0.3),[11.0.0,11.0.3) Maven 09 Jun, 2021
  • M
Cross-site Scripting (XSS) 		baserproject/basercms <4.4.5 Composer 09 Jun, 2021