Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • H
Command Injection
node-latex-pdf * npm 21 Jan, 2021
  • M
Cross-site Request Forgery (CSRF)
com.softwaremill.akka-http-session:core_2.13 [0,0.6.1) Maven 21 Jan, 2021
  • M
Cross-site Request Forgery (CSRF)
com.softwaremill.akka-http-session:core_2.12 [0,0.6.1) Maven 21 Jan, 2021
  • M
Cross-site Request Forgery (CSRF)
com.softwaremill.akka-http-session:core_2.11 [0,) Maven 21 Jan, 2021
  • M
Denial of Service (DoS)
github.com/gravitational/teleport/lib/utils/parse <5.0.1-dev.1 Go 21 Jan, 2021
  • M
Use After Free
microsoft.z3.x64 [,4.8.10) NuGet 21 Jan, 2021
  • H
Remote Code Execution (RCE)
openmage/magento-lts <19.4.9,>=20.0.0, <20.0.5 Composer 21 Jan, 2021
  • H
Unrestricted File Upload
openmage/magento-lts >=20.0.0, <20.0.5,>=19.4.0, <19.4.9 Composer 21 Jan, 2021
  • M
Arbitrary Code Execution
openmage/magento-lts >=20.0.0, <20.0.5,>=19.4.0, <19.4.9 Composer 21 Jan, 2021
  • H
Command Injection
lycwed-spritesheetjs * npm 21 Jan, 2021
  • H
HTTP Response Splitting
github.com/gin-gonic/gin * Go 20 Jan, 2021
  • M
Cross-site Scripting (XSS)
mautic/core <2.13.0 Composer 20 Jan, 2021
  • H
Improper Neutralization
mautic/core <2.13.0 Composer 20 Jan, 2021
  • M
Cross-site Scripting (XSS)
mautic/core <2.14.0 Composer 20 Jan, 2021
  • M
Cross-site Scripting (XSS)
mautic/core >=2.1.0, <2.12.0 Composer 20 Jan, 2021
  • H
Information Exposure
mautic/core <2.13.0 Composer 20 Jan, 2021
  • M
Improper Authorization
mautic/core >=2.0.0, <2.12.0 Composer 20 Jan, 2021
  • M
Improper Authorization
mautic/core >=1.0.0, <2.12.0 Composer 20 Jan, 2021
  • H
Command Injection
monorepo-build * npm 20 Jan, 2021
  • M
Command Injection
git-archive * npm 20 Jan, 2021
  • H
Command Injection
get-npm-package-version * npm 20 Jan, 2021
  • H
Command Injection
s3-kilatstorage * npm 20 Jan, 2021
  • H
Command Injection
curljs * npm 20 Jan, 2021
  • M
Cross-site Request Forgery (CSRF)
anchorcms/anchor-cms >=0.0.0 Composer 20 Jan, 2021
  • H
Cross-site Scripting (XSS)
mautic/core >=3.0.0, <3.2.4,<2.16.5 Composer 20 Jan, 2021
  • L
Insufficiently Protected Credentials
de.tracetronic.jenkins.plugins:ecutest [,2.24) Maven 20 Jan, 2021
  • H
Cross-site Scripting (XSS)
mautic/core >=3.0.0, <3.2.4,<2.16.5 Composer 20 Jan, 2021
  • M
Cross-site Scripting (XSS)
mautic/core <2.14.0 Composer 20 Jan, 2021
  • M
Insecure Defaults
pysaml2 [,6.5.0) pip 20 Jan, 2021
  • M
Improper Validation
pysaml2 [,6.5.0) pip 20 Jan, 2021