Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Show:
Report a new vulnerability
Vulnerability Affects Type Published
  • H
Denial of Service (DoS) 		pillow [,8.2.0) pip 04 Apr, 2021
  • M
Denial of Service (DoS) 		github.com/containers/storage/pkg/archive >=1.23.8 <1.28.1 Go 04 Apr, 2021
  • H
Denial of Service (DoS) 		org.apache.cxf:cxf-rt-rs-security-oauth2 [,3.3.10),[3.4.0,3.4.3) Maven 04 Apr, 2021
  • M
Open Redirect 		github.com/pomerium/pomerium/authenticate >=0.10.0 <0.13.4 Go 04 Apr, 2021
  • H
Denial of Service (DoS) 		pillow [,8.2.0) pip 04 Apr, 2021
  • H
Denial of Service (DoS) 		pillow [,8.2.0) pip 04 Apr, 2021
  • H
Denial of Service (DoS) 		pillow [,8.2.0) pip 04 Apr, 2021
  • M
Open Redirect 		github.com/pomerium/pomerium/proxy <0.13.4 Go 04 Apr, 2021
  • M
Open Redirect 		github.com/pomerium/pomerium/config <0.13.4 Go 04 Apr, 2021
  • M
Information Exposure 		org.eclipse.jetty:jetty-webapp [9.4.37.v20210219,9.4.39) Maven 02 Apr, 2021
  • H
Denial of Service (DoS) 		org.eclipse.jetty:jetty-io [7.2.2,9.4.39),[10.0.0.alpha0,10.0.2),[11.0.0.alpha0,11.0.2) Maven 02 Apr, 2021
  • L
Information Exposure 		org.eclipse.jetty:jetty-deploy [9.4.32,9.4.39),[10.0.0.beta2,10.0.2),[11.0.0.beta2, 11.0.2) Maven 02 Apr, 2021
  • M
Cross-site Scripting (XSS) 		concrete-datastore [,1.23.0) pip 01 Apr, 2021
  • L
Denial of Service (DoS) 		chia-blockchain [,1.0rc6) pip 01 Apr, 2021
  • M
Information Exposure 		ajsonrpc [,1.1.0) pip 01 Apr, 2021
  • L
Improper Input Validation 		gunicorn [,19.4.0) pip 01 Apr, 2021
  • M
Inadequate Encryption Strength 		chiavdf [,1.0) pip 01 Apr, 2021
  • L
Information Exposure 		django-registration [,3.1.2) pip 01 Apr, 2021
  • H
Denial of Service (DoS) 		st2 [,3.4.1) pip 01 Apr, 2021
  • H
XML External Entity (XXE) Injection 		net.sf.mpxj:mpxj [,5.0.0) Maven 01 Apr, 2021
  • M
Privilege Escalation 		github.com/google/exposure-notifications-verification-server/pkg/rbac <0.23.1 Go 01 Apr, 2021
  • H
Improper Access Control 		lemur [,0.9.0) pip 01 Apr, 2021
  • H
SQL Injection 		pypostalcode [,0.3.5) pip 01 Apr, 2021
  • L
Access Restriction Bypass 		products.pluggableauthservice [,2.6.2) pip 01 Apr, 2021
  • M
Insecure Defaults 		khoros [,3.5.0) pip 01 Apr, 2021
  • M
Cross-site Scripting (XSS) 		prestashop/ps_emailsubscription <2.6.1 Composer 01 Apr, 2021
  • M
Improper Authentication 		superdesk-planning [,2.0.2) pip 01 Apr, 2021
  • L
Insecure Defaults 		invenio-app-ils [,1.0.0a28) pip 01 Apr, 2021
  • L
Improper Input Validation 		pytask-latex [,0.0.11) pip 01 Apr, 2021
  • L
Improper Authentication 		org.jenkins-ci.plugins:cloud-stats [,0.27) Maven 31 Mar, 2021