Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • H
Arbitrary Command Injection
git-dummy-commit * npm 19 Jun, 2018
  • M
Cross-site Scripting (XSS)
oauth2orize-fprm <0.2.1 npm 17 Jun, 2018
  • H
Insecure Randomness
generate-pincode <5.0.2 npm 12 Jun, 2018
  • M
Cross-site Scripting (XSS)
bootstrap >=4.0.0 <4.1.2 npm 12 Jun, 2018
  • H
Arbitrary Code Execution
express-cart <1.1.7 npm 06 Jun, 2018
  • M
Cross-site Scripting (XSS)
sexstatic * npm 03 Jun, 2018
  • H
Information Exposure
serve <7.0.0 npm 03 Jun, 2018
  • M
Cross-site Scripting (XSS)
ag-grid >=13.0.0 <14.0.0 npm 03 Jun, 2018
  • H
Arbitrary File Write via Archive Extraction (Zip Slip)
unzipper <0.8.13 npm 31 May, 2018
  • H
Arbitrary File Write via Archive Extraction (Zip Slip)
adm-zip <0.4.11 npm 31 May, 2018
  • M
Arbitrary Command Injection
pdf-image <2.0.1 npm 30 May, 2018
  • M
Cross-site Scripting (XSS)
tinymce <4.7.12 npm 24 May, 2018
  • H
Cross-site Scripting (XSS)
tinymce <4.6.4 npm 24 May, 2018
  • H
Cross-Site Scripting (XSS)
react-marked-markdown * npm 22 May, 2018
  • M
Open Redirect
hekto <0.2.4 npm 22 May, 2018
  • H
Malicious Package
nothing-js * npm 21 May, 2018
  • H
Malicious Package
ladder-text-js * npm 21 May, 2018
  • H
Regular Expression Denial of Service (ReDoS)
citation-js <0.4.0-3 npm 16 May, 2018
  • H
Directory Traversal
koa-body * npm 16 May, 2018
  • M
Uninitialized Memory Exposure
stringstream <0.0.6 npm 13 May, 2018
  • M
SQL Injection
sql * npm 13 May, 2018
  • H
SQL Injection
query-mysql * npm 13 May, 2018
  • H
Arbitrary Command Injection
open * npm 13 May, 2018
  • H
Uninitialized Memory Exposure
npmconf <2.1.3 npm 13 May, 2018
  • H
Arbitrary Command Injection
macaddress * npm 13 May, 2018
  • H
Directory Traversal
localhost-now * npm 13 May, 2018
  • H
Directory Traversal
html-pages <2.1.0 npm 13 May, 2018
  • H
Arbitrary Command Injection
fs-path * npm 13 May, 2018
  • H
Arbitrary Command Injection
command-exists <1.2.4 npm 13 May, 2018
  • M
Uninitialized Memory Exposure
byte <1.4.1 npm 13 May, 2018