Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Relative Path Overwrite (RPO)
swagger-ui <3.23.11 npm 11 Oct, 2019
  • M
Information Exposure
mongoose <5.7.5 npm 10 Oct, 2019
  • M
Regular Expression Denial of Service (ReDoS)
simple-markdown * npm 09 Oct, 2019
  • M
Regular Expression Denial of Service (ReDoS)
markdown-it <10.0.0 npm 09 Oct, 2019
  • M
Path Traversal
statics-server * npm 08 Oct, 2019
  • H
SQL Injection
knex <0.19.5 npm 07 Oct, 2019
  • M
Cross-site Scripting (XSS)
node-red-dashboard <2.17.0 npm 07 Oct, 2019
  • M
Denial of Service (DoS)
angular <1.6.3 npm 04 Oct, 2019
  • M
Cross-site Scripting (XSS)
angular <1.6.5 npm 04 Oct, 2019
  • M
Cross-site Scripting (XSS)
angular <1.6.0-rc.0 npm 04 Oct, 2019
  • H
Authentication Bypass
http-auth <3.2.4 npm 03 Oct, 2019
  • H
Outdated Static Dependency
ses <0.6.3 npm 03 Oct, 2019
  • H
Sandbox Breakout
realms-shim <1.2.0 npm 03 Oct, 2019
  • H
Denial of Service (DoS)
apostrophe <2.97.1 npm 03 Oct, 2019
  • H
Malicious Package
comander * npm 03 Oct, 2019
  • H
Malicious Package
bmap <1.0.3 npm 03 Oct, 2019
  • H
Malicious Package
pizza-pasta =1.0.3 npm 03 Oct, 2019
  • H
Malicious Package
8.9.4 * npm 03 Oct, 2019
  • H
Malicious Package
ember_cli_babe * npm 03 Oct, 2019
  • H
Malicious Package
log-symboles * npm 03 Oct, 2019
  • H
Malicious Package
require-port =1.0.0 npm 03 Oct, 2019
  • H
Malicious Package
uglyfi.js * npm 03 Oct, 2019
  • H
Malicious Package
yeoman-genrator =2.0.2 npm 03 Oct, 2019
  • M
Man-in-the-Middle (MitM)
https-proxy-agent <3.0.0 npm 02 Oct, 2019
  • L
Reverse Tabnabbing
showdown * npm 01 Oct, 2019
  • H
Information Exposure
pem <1.13.2 npm 29 Sep, 2019
  • M
Configuration Override
helmet-csp >=1.2.2 <2.9.2 npm 29 Sep, 2019
  • H
Denial of Service (DoS)
http-live-simulator >=1.0.7 <1.0.8 npm 27 Sep, 2019
  • H
Cross-site Scripting (XSS)
pdfjs-dist <2.0.943 npm 26 Sep, 2019
  • M
Cross-site Scripting (XSS)
@novnc/novnc <0.6.2 npm 25 Sep, 2019