Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Use of Uninitialized Variable
pyarrow [0.12.0,0.15.1) pip 08 Nov, 2019
  • M
Use of Uninitialized Variable
red-parquet >=0.12.0, <0.15.1 RubyGems 08 Nov, 2019
  • M
Use of Uninitialized Variable
pyarrow [0.14.0,0.15.1) pip 08 Nov, 2019
  • M
Use of Uninitialized Variable
red-arrow >=0.14.0, <0.15.1 RubyGems 08 Nov, 2019
  • H
Improper Privilege Management
brakeman >=4.5.0, <4.7.1 RubyGems 08 Nov, 2019
  • H
Improper Privilege Management
ruby_parser-legacy >=1.0.0 RubyGems 08 Nov, 2019
  • H
Insufficient Verification of Data Authenticity
matrix-synapse [,1.5.0rc2) pip 08 Nov, 2019
  • H
Malicious Package
sj-tw-abc * npm 07 Nov, 2019
  • H
Malicious Package
sj-tw-sec * npm 07 Nov, 2019
  • H
Malicious Package
sj-tw-test-security * npm 07 Nov, 2019
  • H
XML External Entity
phpoffice/phpspreadsheet <1.8.0 Composer 07 Nov, 2019
  • M
Access Restriction Bypass
puppet <2.6.18,>=2.7.0, <2.7.21,>=3.1.0, <3.1.1 RubyGems 07 Nov, 2019
  • H
Malicious Package
owl-orchard-apple-sunshine * npm 07 Nov, 2019
  • H
Deserialization of Untrusted Data
puppet <4.10.1 RubyGems 07 Nov, 2019
  • H
Cryptographic Issues
robrichards/xmlseclibs >=1.0.0, <2.0.0,>=2.0.0, <2.1.1,>=3.0.0, <3.0.4 Composer 07 Nov, 2019
  • M
Improper Access Control
org.apache.cxf:cxf-rt-rs-security-sso-oidc [3.3.0,3.3.4),[3.2.0,3.2.11) Maven 06 Nov, 2019
  • M
Denial of Service (DoS)
org.apache.cxf:cxf-core [3.3.0,3.3.4),[3.2.0,3.2.11) Maven 06 Nov, 2019
  • H
Machine-In-The-Middle
airtable >=0.1.19 <0.7.2 npm 06 Nov, 2019
  • H
Arbitrary Code Injection
marsdb * npm 06 Nov, 2019
  • H
Directory Traversal
f-serv * npm 06 Nov, 2019
  • H
Arbitrary Code Execution
magento/core <1.9.4.3 Composer 06 Nov, 2019
  • H
Information Exposure
magento/core <1.9.4.3 Composer 06 Nov, 2019
  • H
Arbitrary Code Execution
magento/community-edition >=2.2, <2.2.10,>=2.3, <2.3.2-p2 Composer 06 Nov, 2019
  • H
Arbitrary Code Execution
magento/core <1.9.4.3 Composer 06 Nov, 2019
  • H
Remote Code Execution
magento/core <1.9.4.3 Composer 05 Nov, 2019
  • H
Remote Code Execution
magento/core <1.9.4.3 Composer 05 Nov, 2019
  • H
Denial of Service (DoS)
org.webjars.bower:handlebars [4.0.0,] Maven 05 Nov, 2019
  • H
Denial of Service (DoS)
org.webjars.npm:handlebars [4.0.0,] Maven 05 Nov, 2019
  • H
Denial of Service (DoS)
handlebars >=4.0.0 <4.4.5 npm 05 Nov, 2019
  • M
Authentication Bypass
saml2-js <2.0.5 npm 01 Nov, 2019