Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Show:
Report a new vulnerability
Vulnerability Affects Type Published
  • H
Cross-site Request Forgery (CSRF) 		github.com/rancher/rancher/server >=2.0.0 <2.0.16,>=2.1.0 <2.1.11,>=2.2.0 <2.2.5 Go 04 Sep, 2019
  • H
Remote Code Execution (RCE) 		org.sonatype.nexus.plugins:nexus-yum-repository-plugin [2.11.0-01, 2.14.14-01) Maven 03 Sep, 2019
  • M
Directory Traversal 		larvitbase-www * npm 03 Sep, 2019
  • L
Information Exposure 		seneca <3.9.0 npm 03 Sep, 2019
  • H
Information Exposure 		org.elasticsearch:elasticsearch [6.0.0, 6.3.0) Maven 02 Sep, 2019
  • H
Information Exposure 		org.elasticsearch:elasticsearch [5.6.0, 5.6.12),[6.0.0, 6.4.1) Maven 02 Sep, 2019
  • M
Information Exposure 		org.elasticsearch:elasticsearch [6.4.0, 6.4.3) Maven 02 Sep, 2019
  • M
XML External Entity (XXE) Injection 		org.elasticsearch:elasticsearch [6.5.0, 6.5.2) Maven 02 Sep, 2019
  • M
Cross-site Scripting (XSS) 		mavon-editor * npm 02 Sep, 2019
  • H
Privilege Escalation 		org.elasticsearch:elasticsearch [,5.6.15),[6.0.0, 6.6.1) Maven 02 Sep, 2019
  • M
Race Condition 		org.elasticsearch:elasticsearch [,6.8.2),[7.0.0, 7.2.1) Maven 02 Sep, 2019
  • H
Information Exposure 		logstash-core <5.6.15,>=6.0.0, <6.6.1 RubyGems 02 Sep, 2019
  • M
Regular Expression Denial of Service (ReDoS) 		simple-markdown <0.5.2 npm 01 Sep, 2019
  • H
Malicious Package 		axios-http * npm 01 Sep, 2019
  • H
Malicious Package 		axioss * npm 01 Sep, 2019
  • H
Malicious Package 		body-parse-xml * npm 01 Sep, 2019
  • H
Malicious Package 		file-logging * npm 01 Sep, 2019
  • H
Malicious Package 		import-mysql * npm 01 Sep, 2019
  • H
Malicious Package 		js-base64-int * npm 01 Sep, 2019
  • H
Malicious Package 		js-regular * npm 01 Sep, 2019
  • H
Malicious Package 		k0a_multer * npm 01 Sep, 2019
  • H
Malicious Package 		koa-body-parse * npm 01 Sep, 2019
  • H
Malicious Package 		mogobd * npm 01 Sep, 2019
  • H
Malicious Package 		mogodb * npm 01 Sep, 2019
  • H
Malicious Package 		mogodb-core * npm 01 Sep, 2019
  • H
Malicious Package 		mogoose * npm 01 Sep, 2019
  • H
Malicious Package 		mysql-koa * npm 01 Sep, 2019
  • H
Malicious Package 		node-ftp * npm 01 Sep, 2019
  • H
Malicious Package 		node-spdy * npm 01 Sep, 2019
  • H
Malicious Package 		serializes * npm 01 Sep, 2019