Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Cross-site Request Forgery (CSRF)
forkcms/forkcms <5.8.2 Composer 07 May, 2021
  • H
Cross-site Scripting (XSS)
forkcms/forkcms <5.8.3 Composer 07 May, 2021
  • L
Timing Attack
org.springframework.security:spring-security-web [,5.2.9.RELEASE),[5.3.0,5.3.7),[5.4.0,5.4.3) Maven 07 May, 2021
  • H
Denial of Service (DoS)
ca.uhn.hapi.fhir:hapi-fhir-jpaserver-api [0,] Maven 07 May, 2021
  • H
Denial of Service (DoS)
ca.uhn.hapi.fhir:hapi-fhir-base [0,] Maven 07 May, 2021
  • H
Denial of Service (DoS)
fastify-multipart <1.0.5 npm 07 May, 2021
  • M
Cross-site Scripting (XSS)
zoujingli/thinkadmin <6.0.22 Composer 07 May, 2021
  • H
Access Restriction Bypass
docassemble [,1.2.65) pip 07 May, 2021
  • H
Authentication Bypass
dweeves/magmi <0.7.24 Composer 07 May, 2021
  • H
Command Injection
git-parse * npm 07 May, 2021
  • M
Prototype Pollution
backbone-query-parameters * npm 07 May, 2021
  • M
Improper Input Validation
github.com/tendermint/tendermint/libs/os * Go 07 May, 2021
  • M
Cross-site Scripting (XSS)
frappe-charts * npm 07 May, 2021
  • M
Cross-site Scripting (XSS)
org.webjars.npm:frappe-charts [0,] Maven 07 May, 2021
  • M
Cross-site Scripting (XSS)
localstack [0,] pip 07 May, 2021
  • H
Remote Code Execution (RCE)
localstack [0,] pip 07 May, 2021
  • H
Cross-site Request Forgery (CSRF)
dweeves/magmi >=0.0.0 Composer 07 May, 2021
  • M
Cryptographic Issues
org.apache.directory.server:apacheds-kerberos-codec [0,] Maven 06 May, 2021
  • H
Regular Expression Denial of Service (ReDoS)
actionpack >=6.1.0, <6.1.3.2,>=6.0.0, <6.0.3.7 RubyGems 06 May, 2021
  • M
Regular Expression Denial of Service (ReDoS)
actionpack >=6.1.0, <6.1.3.2 RubyGems 06 May, 2021
  • H
Denial of Service (DoS)
actionpack >=2.0.0, <5.2.4.6,>=5.2.5, <5.2.6,>=6.0.0, <6.0.3.7,>=6.1.0, <6.1.3.2 RubyGems 06 May, 2021
  • M
Cross-site Scripting (XSS)
highcharts <9.0.0 npm 06 May, 2021
  • M
Cross-site Scripting (XSS)
org.webjars:highcharts [0,] Maven 06 May, 2021
  • M
Cross-site Scripting (XSS)
org.webjars.npm:highcharts [0,] Maven 06 May, 2021
  • H
Directory Traversal
impacket [0,] pip 06 May, 2021
  • M
Information Exposure
actionpack >=2.0.0, <5.2.4.6,>=5.2.5, <5.2.6,>=6.0.0, <6.0.3.7,>=6.1.0, <6.1.3.2 RubyGems 06 May, 2021
  • M
Insecure Permissions
com.vaadin:flow-server [3.0.0,6.0.6),[2.0.9,2.5.3) Maven 06 May, 2021
  • H
Directory Traversal
rubysl-tmpdir >=0.0.0 RubyGems 06 May, 2021
  • H
Directory Traversal
tmpdir <0.1.2 RubyGems 06 May, 2021
  • H
Arbitrary File Read
github.com/ystia/yorc/v4/helper/sshutil >=4.0.0-M1 <4.0.0-M3,<3.2.4 Go 06 May, 2021