Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Show:
Report a new vulnerability
Vulnerability Affects Type Published
  • H
Cross-site Request Forgery (CSRF) 		cd.go.plugin:go-plugin-api [19.6.0,21.2.0) Maven 04 Apr, 2021
  • H
Denial of Service (DoS) 		org.apache.cxf:cxf-rt-rs-security-oauth2 [,3.3.10),[3.4.0,3.4.3) Maven 04 Apr, 2021
  • M
Information Exposure 		org.eclipse.jetty:jetty-webapp [9.4.37.v20210219,9.4.39) Maven 02 Apr, 2021
  • H
Denial of Service (DoS) 		org.eclipse.jetty:jetty-io [7.2.2,9.4.39),[10.0.0.alpha0,10.0.2),[11.0.0.alpha0,11.0.2) Maven 02 Apr, 2021
  • L
Information Exposure 		org.eclipse.jetty:jetty-deploy [9.4.32,9.4.39),[10.0.0.beta2,10.0.2),[11.0.0.beta2, 11.0.2) Maven 02 Apr, 2021
  • H
XML External Entity (XXE) Injection 		net.sf.mpxj:mpxj [,5.0.0) Maven 01 Apr, 2021
  • L
Improper Authentication 		org.jenkins-ci.plugins:cloud-stats [,0.27) Maven 31 Mar, 2021
  • M
Improper Authentication 		org.jenkins-ci.plugins:tfs [0,] Maven 31 Mar, 2021
  • H
Cross-site Request Forgery (CSRF) 		org.jenkins-ci.plugins:tfs [0,] Maven 31 Mar, 2021
  • M
HTTP Request Smuggling 		io.netty:netty-codec-http2 [,4.1.61.Final) Maven 31 Mar, 2021
  • M
Cross-site Request Forgery (CSRF) 		org.jenkins-ci.plugins:dependency-track [,3.1.1) Maven 31 Mar, 2021
  • M
Denial of Service (DoS) 		org.apache.tika:tika-parsers [,1.26) Maven 31 Mar, 2021
  • H
Server-side Request Forgery (SSRF) 		org.webjars.npm:netmask [0,] Maven 30 Mar, 2021
  • H
Prototype Pollution 		org.webjars.npm:mquery [0,] Maven 30 Mar, 2021
  • H
Remote Code Execution (RCE) 		org.apache.druid:druid-core [,0.20.2) Maven 30 Mar, 2021
  • L
Arbitrary Code Injection 		org.webjars.npm:underscore [0,] Maven 29 Mar, 2021
  • L
Arbitrary Code Injection 		org.webjars.bowergithub.jashkenas:underscore [0,] Maven 29 Mar, 2021
  • L
Arbitrary Code Injection 		org.webjars.bower:underscore [0,] Maven 29 Mar, 2021
  • M
Server-side Request Forgery (SSRF) 		org.mule.runtime:mule-core [3.8.0,4.3.0) Maven 29 Mar, 2021
  • M
Server-side Request Forgery (SSRF) 		org.mule.runtime:mule [3.8.0,4.3.0) Maven 29 Mar, 2021
  • H
Remote Code Execution (RCE) 		org.mule.runtime:mule-core [3.8.0,4.3.0) Maven 29 Mar, 2021
  • H
Remote Code Execution (RCE) 		org.mule.runtime:mule [3.8.0,4.3.0) Maven 29 Mar, 2021
  • H
XML External Entity (XXE) Injection 		org.mule.runtime:mule-core [3.8.0,4.3.0) Maven 29 Mar, 2021
  • H
XML External Entity (XXE) Injection 		org.mule.runtime:mule [3.8.0,4.3.0) Maven 29 Mar, 2021
  • L
XML External Entity (XXE) Injection 		org.owasp.esapi:esapi [0,2.2.3.0) Maven 26 Mar, 2021
  • L
Information Disclosure 		org.elasticsearch:elasticsearch [7.0.0, 7.11.2),[,6.8.15) Maven 26 Mar, 2021
  • L
Information Disclosure 		org.elasticsearch:elasticsearch [7.0.0, 7.11.2),[,6.8.15) Maven 26 Mar, 2021
  • H
Use After Free 		org.webjars.npm:electron [0,] Maven 25 Mar, 2021
  • H
Improper Input Validation 		org.webjars.npm:electron [0,] Maven 25 Mar, 2021
  • M
Privilege Escalation 		com.netflix.hollow:hollow [0,] Maven 25 Mar, 2021