Homepage
About Snyk

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Expand this section

APPLICATION

Expand this section

OPERATING SYSTEM

Report a new vulnerability
VULNERABILITY AFFECTS TYPE PUBLISHED
  • M
Template Injection 		org.webjars.bowergithub.cure53:dompurify [0,] Maven 11 Apr 2024
  • H
Regular Expression Denial of Service (ReDoS) 		org.webjars.npm:xlsx [0,] Maven 10 Apr 2024
  • M
Improper Validation of Syntactic Correctness of Input 		org.apache.zeppelin:zeppelin-server [0.10.1,0.11.0) Maven 10 Apr 2024
  • M
Cross-Site Request Forgery (CSRF) 		org.apache.zeppelin:zeppelin-web [,0.9.0) Maven 10 Apr 2024
  • M
Path Traversal 		org.apache.zeppelin:zeppelin-server [0.9.0,0.11.0) Maven 10 Apr 2024
  • H
Improper Authentication 		org.eclipse.kura:org.eclipse.kura.web2 [2.0.600,] Maven 10 Apr 2024
  • M
Authentication Bypass by Spoofing 		org.apache.zeppelin:zeppelin-server [0.10.1,0.11.0) Maven 10 Apr 2024
  • M
Improper Input Validation 		org.apache.zeppelin:sap [0.8.0,] Maven 9 Apr 2024
  • H
Improper Neutralization of Special Elements Used in a Template Engine 		com.xuxueli:xxl-job-core [0,2.4.1) Maven 7 Apr 2024
  • H
Improper Input Validation 		io.undertow:undertow-core [,2.3.13.Final) Maven 5 Apr 2024
  • M
Improper Authorization 		org.apache.pulsar:pulsar-broker-common [2.7.1, 3.0.4) [3.1.0, 3.2.2) Maven 3 Apr 2024
  • M
Improper Authorization 		org.apache.pulsar:pulsar-broker [2.7.1, 3.0.4) [3.1.0, 3.2.2) Maven 3 Apr 2024
  • C
Deserialization of Untrusted Data 		org.codehaus.groovy:groovy [,2.4.7) Maven 2 Apr 2024
  • C
Deserialization of Untrusted Data 		org.codehaus.groovy:groovy [1.7.0,2.4.4) Maven 2 Apr 2024
  • M
Cross-site Scripting (XSS) 		org.bonitasoft.console:bonita-web-server [0,] Maven 2 Apr 2024
  • M
Improper Verification of Cryptographic Signature 		io.jsonwebtoken:jjwt-impl [,0.10.0) Maven 1 Apr 2024
  • M
Uncaught Exception 		org.elasticsearch.plugin:x-pack-core [8.4.0,8.11.1) Maven 31 Mar 2024
  • H
XML Injection 		org.verapdf:core-jakarta [0,] Maven 29 Mar 2024
  • M
Uncontrolled Resource Consumption ('Resource Exhaustion') 		org.webjars.npm:tar [0,] Maven 29 Mar 2024
  • M
Incorrect Authorization 		org.elasticsearch.plugin:x-pack-security [8.10.0,8.13.0) Maven 28 Mar 2024
  • M
Incorrect Authorization 		org.elasticsearch.plugin:x-pack-core [8.10.0,8.13.0) Maven 28 Mar 2024
  • M
Incorrect Authorization 		org.elasticsearch:elasticsearch [8.10.0,8.13.0) Maven 28 Mar 2024
  • M
Uncontrolled Recursion 		org.elasticsearch:elasticsearch [,7.17.19) [8.0.0-alpha1,8.13.0) Maven 27 Mar 2024
  • M
SQL Injection 		org.webjars.npm:pg-promise [0,] Maven 27 Mar 2024
  • H
Improper Privilege Management 		org.igniterealtime.openfire:xmppserver [0,] Maven 27 Mar 2024
  • M
Use of Cache Containing Sensitive Information 		org.igniterealtime.openfire:xmppserver [0,] Maven 27 Mar 2024
  • M
Cross-Site Scripting (XSS) 		org.webjars:tinymce [0,] Maven 27 Mar 2024
  • M
Cross-Site Scripting (XSS) 		org.webjars.npm:tinymce [,7.0.0) Maven 27 Mar 2024
  • M
Cross-Site Scripting (XSS) 		org.webjars.bower:tinymce [0,] Maven 27 Mar 2024
  • M
Cross-site Scripting (XSS) 		org.webjars:tinymce [0,] Maven 27 Mar 2024