Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Show:
Report a new vulnerability
Vulnerability Affects Type Published
  • H
Arbitrary Code Injection 		vakata/jstree * npm 21 Oct, 2018
  • M
Cross-site Scripting (XSS) 		next >=7.0.0 <7.0.2 npm 15 Oct, 2018
  • H
Directory Traversal 		http-live-simulator <1.0.6 npm 15 Oct, 2018
  • H
Arbitrary Code Execution 		blueimp-file-upload <9.22.1 npm 15 Oct, 2018
  • H
Denial of Service (DoS) 		rrule * npm 15 Oct, 2018
  • M
Denial of Service (DoS) 		rrule <2.5.6 npm 09 Oct, 2018
  • M
Authentication Bypass 		passport-saml * npm 02 Oct, 2018
  • L
Information Exposure 		webpack-dev-server <3.1.6 npm 26 Sep, 2018
  • L
Information Exposure 		parcel <1.10 npm 26 Sep, 2018
  • H
SQL Injection 		express-cart <1.1.8 npm 26 Sep, 2018
  • M
Cross-site Scripting (XSS) 		react-tooltip <3.8.1 npm 13 Sep, 2018
  • M
Arbitrary Command Injection 		ps <1.0.0 npm 09 Sep, 2018
  • H
Arbitrary Command Injection 		ascii-art <1.4.4 npm 09 Sep, 2018
  • M
Cross-site Scripting (XSS) 		dojo <1.14 npm 06 Sep, 2018
  • H
Arbitrary Command Injection 		samsung-remote <1.3.5 npm 05 Sep, 2018
  • M
Cross-site Scripting (XSS) 		editor.md * npm 05 Sep, 2018
  • H
Directory Traversal 		simplehttpserver <0.2.1 npm 05 Sep, 2018
  • H
Regular Expression Denial of Service (ReDoS) 		mosca <2.8.2 npm 30 Aug, 2018
  • M
Denial of Service (DoS) 		mem <4.0.0 npm 29 Aug, 2018
  • H
Arbitrary Code Execution 		electron >=1.7.0 <1.7.16 || >=1.8.0 <1.8.8 || >=2.0.0 <2.0.8 || >=3.0.0-beta6 <3.0.0-beta.7 npm 27 Aug, 2018
  • M
Cross-site Scripting (XSS) 		mergely <4.0.5 npm 27 Aug, 2018
  • H
Arbitrary Command Injection 		egg-scripts <2.8.1 npm 27 Aug, 2018
  • H
Directory Traversal 		serve <7.1.3 npm 21 Aug, 2018
  • H
Directory Traversal 		ponse <2.0.3 npm 21 Aug, 2018
  • H
Cross-site Scripting (XSS) 		node-red <0.18.6 npm 21 Aug, 2018
  • M
Cross-site Scripting (XSS) 		m-server <1.4.2 npm 21 Aug, 2018
  • H
Privilege Escalation 		express-cart <1.1.7 npm 21 Aug, 2018
  • H
Arbitrary Command Injection 		entitlements <1.3.0 npm 21 Aug, 2018
  • M
Cross-site Scripting (XSS) 		buttle * npm 21 Aug, 2018
  • M
Cross-site Scripting (XSS) 		jplayer <2.3.0 npm 21 Aug, 2018
Subscribe to RSS feed