Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • H
Cross-site Request Forgery (CSRF)
github.com/rancher/rancher/server >=2.0.0 <2.0.16,>=2.1.0 <2.1.11,>=2.2.0 <2.2.5 Go 04 Sep, 2019
  • H
Remote Code Execution (RCE)
org.sonatype.nexus.plugins:nexus-yum-repository-plugin [2.11.0-01, 2.14.14-01) Maven 03 Sep, 2019
  • M
Directory Traversal
larvitbase-www * npm 03 Sep, 2019
  • L
Information Exposure
seneca <3.9.0 npm 03 Sep, 2019
  • H
Information Exposure
org.elasticsearch:elasticsearch [6.0.0, 6.3.0) Maven 02 Sep, 2019
  • H
Information Exposure
org.elasticsearch:elasticsearch [5.6.0, 5.6.12),[6.0.0, 6.4.1) Maven 02 Sep, 2019
  • M
Information Exposure
org.elasticsearch:elasticsearch [6.4.0, 6.4.3) Maven 02 Sep, 2019
  • M
XML External Entity (XXE) Injection
org.elasticsearch:elasticsearch [6.5.0, 6.5.2) Maven 02 Sep, 2019
  • M
Cross-site Scripting (XSS)
mavon-editor * npm 02 Sep, 2019
  • H
Privilege Escalation
org.elasticsearch:elasticsearch [,5.6.15),[6.0.0, 6.6.1) Maven 02 Sep, 2019
  • M
Race Condition
org.elasticsearch:elasticsearch [,6.8.2),[7.0.0, 7.2.1) Maven 02 Sep, 2019
  • H
Information Exposure
logstash-core <5.6.15,>=6.0.0, <6.6.1 RubyGems 02 Sep, 2019
  • M
Regular Expression Denial of Service (ReDoS)
simple-markdown <0.5.2 npm 01 Sep, 2019
  • H
Malicious Package
axios-http * npm 01 Sep, 2019
  • H
Malicious Package
axioss * npm 01 Sep, 2019
  • H
Malicious Package
body-parse-xml * npm 01 Sep, 2019
  • H
Malicious Package
file-logging * npm 01 Sep, 2019
  • H
Malicious Package
import-mysql * npm 01 Sep, 2019
  • H
Malicious Package
js-base64-int * npm 01 Sep, 2019
  • H
Malicious Package
js-regular * npm 01 Sep, 2019
  • H
Malicious Package
k0a_multer * npm 01 Sep, 2019
  • H
Malicious Package
koa-body-parse * npm 01 Sep, 2019
  • H
Malicious Package
mogobd * npm 01 Sep, 2019
  • H
Malicious Package
mogodb * npm 01 Sep, 2019
  • H
Malicious Package
mogodb-core * npm 01 Sep, 2019
  • H
Malicious Package
mogoose * npm 01 Sep, 2019
  • H
Malicious Package
mysql-koa * npm 01 Sep, 2019
  • H
Malicious Package
node-ftp * npm 01 Sep, 2019
  • H
Malicious Package
node-spdy * npm 01 Sep, 2019
  • H
Malicious Package
serializes * npm 01 Sep, 2019