Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Information Exposure
appium <1.18.0-beta.0 npm 28 May, 2020
  • L
Regular Expression Denial of Service (ReDoS)
codemirror <5.54.0 npm 28 May, 2020
  • L
Regular Expression Denial of Service (ReDoS)
org.webjars:codemirror [0,] Maven 28 May, 2020
  • L
Regular Expression Denial of Service (ReDoS)
org.webjars.npm:codemirror [,5.54.0) Maven 28 May, 2020
  • L
Regular Expression Denial of Service (ReDoS)
org.webjars.bowergithub.components:codemirror [0,] Maven 28 May, 2020
  • L
Regular Expression Denial of Service (ReDoS)
org.webjars.bowergithub.codemirror:codemirror [0,] Maven 28 May, 2020
  • L
Regular Expression Denial of Service (ReDoS)
org.webjars.bower:codemirror [0,] Maven 28 May, 2020
  • L
Regular Expression Denial of Service (ReDoS)
org.apache.marmotta.webjars:codemirror [0,] Maven 28 May, 2020
  • M
Command Injection
jison * npm 28 May, 2020
  • M
Cross-site Scripting (XSS)
centreon/centreon >=0.0.0, <1.6.4,>=18.10.0, <18.10.5,>=19.4.0, <19.4.3,>=19.10.0-beta.1, <19.10.2 Composer 28 May, 2020
  • M
Cross-site Scripting (XSS)
centreon/centreon >=0.0.0, <1.6.4,>=18.10.0, <18.10.5,>=19.4.0, <19.4.3,>=19.10.0-beta.1, <19.10.2 Composer 28 May, 2020
  • L
Authentication Bypass
centreon/centreon <19.10.7 Composer 28 May, 2020
  • H
Cross-site Scripting (XSS)
forkcms <5.8.3 Composer 28 May, 2020
  • M
Improper Input Validation
phpmailer/phpmailer <6.1.6 Composer 28 May, 2020
  • H
Credential Exposure
aegir >=21.7.0 <21.10.1 npm 28 May, 2020
  • M
Cross-site Scripting (XSS)
bootstrap-select <1.13.6 npm 27 May, 2020
  • M
Cross-site Scripting (XSS)
org.webjars:bootstrap-select [0,] Maven 27 May, 2020
  • M
Cross-site Scripting (XSS)
org.webjars.npm:bootstrap-select [0,] Maven 27 May, 2020
  • M
Cross-site Scripting (XSS)
org.webjars.bowergithub.snapappointments:bootstrap-select [0,] Maven 27 May, 2020
  • M
Cross-site Scripting (XSS)
org.webjars.bower:bootstrap-select [0,] Maven 27 May, 2020
  • H
HTTP Request Smuggling
io.undertow:undertow-core [,2.1.1.Final) Maven 27 May, 2020
  • H
Man-in-the-Middle (MitM)
em-http-request <1.1.6 RubyGems 26 May, 2020
  • H
Cross-site Scripting (XSS)
schinckel/django-jsonfield [,1.0.1) pip 25 May, 2020
  • H
Remote Code Execution (RCE)
jw.util [0,] pip 24 May, 2020
  • H
Information Exposure
github.com/helm/helm/pkg/action >=3.1.0 <3.1.3 Go 24 May, 2020
  • M
HTTP Request Smuggling
puma <3.12.5,>=4.0.0, <4.3.4 RubyGems 22 May, 2020
  • M
HTTP Request Smuggling
puma <3.12.6,>=4.0.0, <4.3.5 RubyGems 22 May, 2020
  • H
Command Injection
org.apache.kylin:kylin-core-common [2.3.0, 2.3.2),[2.4.0, 2.4.1),[2.5.0, 2.5.2),[2.6.0, 2.6.5) Maven 22 May, 2020
  • M
Information Disclosure
github.com/hashicorp/vault/command >=1.3.0 <1.3.6,>=1.4.0 <1.4.2 Go 22 May, 2020
  • H
Deserialization of Untrusted Data
org.jodd:jodd-json [,5.0.4) Maven 22 May, 2020