Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Show:
Report a new vulnerability
Vulnerability Affects Type Published
  • L
Regular Expression Denial of Service (ReDoS) 		scikit-learn [0,] pip 07 Apr, 2021
  • M
Improper Authentication 		phpseclib/phpseclib >=3.0.0, <3.0.7,<2.0.31 Composer 07 Apr, 2021
  • M
Directory Traversal 		github.com/opencontainers/umoci/oci/layer <0.4.7 Go 07 Apr, 2021
  • H
Denial of Service (DoS) 		github.com/syncthing/syncthing/lib/relay/protocol <1.15.0 Go 07 Apr, 2021
  • M
Arbitrary Code Execution 		projen >=0.6.0 <0.16.41 npm 07 Apr, 2021
  • M
Privilege Escalation 		mongodb-js-metrics <6.0.0 npm 07 Apr, 2021
  • M
Arbitrary Command Injection 		systeminformation <5.6.4 npm 07 Apr, 2021
  • M
SQL Injection 		doctrine/orm <2.8.4 Composer 07 Apr, 2021
  • H
Arbitrary Code Execution 		@prisma/sdk <2.20.0 npm 07 Apr, 2021
  • M
Regular Expression Denial of Service (ReDoS) 		@ckeditor/ckeditor5-widget <27.0.0 npm 07 Apr, 2021
  • M
Regular Expression Denial of Service (ReDoS) 		@ckeditor/ckeditor5-paste-from-office <27.0.0 npm 07 Apr, 2021
  • M
Regular Expression Denial of Service (ReDoS) 		@ckeditor/ckeditor5-media-embed <27.0.0 npm 07 Apr, 2021
  • M
Regular Expression Denial of Service (ReDoS) 		@ckeditor/ckeditor5-markdown-gfm <27.0.0 npm 07 Apr, 2021
  • M
Regular Expression Denial of Service (ReDoS) 		@ckeditor/ckeditor5-list <27.0.0 npm 07 Apr, 2021
  • M
Regular Expression Denial of Service (ReDoS) 		@ckeditor/ckeditor5-image <27.0.0 npm 07 Apr, 2021
  • M
Regular Expression Denial of Service (ReDoS) 		@ckeditor/ckeditor5-font <27.0.0 npm 07 Apr, 2021
  • M
Regular Expression Denial of Service (ReDoS) 		@ckeditor/ckeditor5-engine <27.0.0 npm 07 Apr, 2021
  • H
XML External Entity (XXE) Injection 		com.nimbusds:oauth2-oidc-sdk [,9.3.1) Maven 07 Apr, 2021
  • L
Insecure Encryption 		starkbank-ecdsa [,1.3.1) NuGet 07 Apr, 2021
  • H
Privilege Escalation 		isolated-vm <4.0.0 npm 07 Apr, 2021
  • M
Cross-site Scripting (XSS) 		sidekiq >=0.0.0 RubyGems 06 Apr, 2021
  • L
Access Restriction Bypass 		mediawiki/core <1.31.12,>=1.32.0, <1.35.2 Composer 06 Apr, 2021
  • M
Cross-site Scripting (XSS) 		mediawiki/core <1.31.12,>=1.32.0, <1.35.2 Composer 06 Apr, 2021
  • M
Cross-site Scripting (XSS) 		mediawiki/core <1.31.12,>=1.32.0, <1.35.2 Composer 06 Apr, 2021
  • L
Directory Traversal 		django [2.2, 2.2.20),[3.0, 3.0.14),[3.1, 3.1.8) pip 06 Apr, 2021
  • M
Cross-site Scripting (XSS) 		froala-editor * npm 05 Apr, 2021
  • M
XML External Entity (XXE) Injection 		pikepdf [1.3.0,2.10.0) pip 04 Apr, 2021
  • H
Cross-site Request Forgery (CSRF) 		cd.go.plugin:go-plugin-api [19.6.0,21.2.0) Maven 04 Apr, 2021
  • H
Information Exposure 		node-etsy-client <0.3.0 npm 04 Apr, 2021
  • M
Cross-site Scripting (XSS) 		docsify >=4.12.0 npm 04 Apr, 2021