Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Cross-site Scripting (XSS)
serve-handler <5.0.3 npm 19 Nov, 2018
  • M
Cross-site Scripting (XSS)
ckeditor >=4.0.0 <4.11.0 npm 19 Nov, 2018
  • H
XML External Entity (XXE) Injection
samlify <2.4.0 npm 15 Nov, 2018
  • M
Arbitrary Code Injection
morgan <1.9.1 npm 12 Nov, 2018
  • M
Cross-site Scripting (XSS)
simplemde * npm 08 Nov, 2018
  • M
Cross-site Scripting (XSS)
editor.md * npm 08 Nov, 2018
  • H
Directory Traversal
takeapeek * npm 08 Nov, 2018
  • H
Prototype Pollution
cached-path-relative <1.0.2 npm 08 Nov, 2018
  • H
Arbitrary Code Execution
tianma-static * npm 08 Nov, 2018
  • H
Directory Traversal
knightjs * npm 08 Nov, 2018
  • H
Directory Traversal
kindeditor * npm 06 Nov, 2018
  • L
Prototype Pollution
merge <1.2.1 npm 04 Nov, 2018
  • M
Arbitrary Command Injection
libnmap <0.4.16 npm 04 Nov, 2018
  • H
Arbitrary Command Injection
apex-publish-static-files <2.0.1 npm 04 Nov, 2018
  • H
Denial of Service (DoS)
graphql-upload <6.0.0-alpha.1 npm 30 Oct, 2018
  • H
Denial of Service (DoS)
apollo-upload-server <6.0.0-alpha.1 npm 30 Oct, 2018
  • H
Denial of Service (DoS)
graphql-upload <7.0.0 npm 29 Oct, 2018
  • H
Denial of Service (DoS)
apollo-upload-server <7.0.0 npm 29 Oct, 2018
  • H
Arbitrary Code Injection
jstree <3.3.7 npm 21 Oct, 2018
  • M
Cross-site Scripting (XSS)
next >=7.0.0 <7.0.2 npm 15 Oct, 2018
  • H
Directory Traversal
http-live-simulator <1.0.6 npm 15 Oct, 2018
  • H
Arbitrary Code Execution
blueimp-file-upload <9.22.1 npm 15 Oct, 2018
  • H
Denial of Service (DoS)
rrule * npm 15 Oct, 2018
  • M
Denial of Service (DoS)
rrule <2.5.6 npm 09 Oct, 2018
  • M
Authentication Bypass
passport-saml * npm 02 Oct, 2018
  • L
Information Exposure
webpack-dev-server <3.1.6 npm 26 Sep, 2018
  • L
Information Exposure
parcel <1.10 npm 26 Sep, 2018
  • H
SQL Injection
express-cart <1.1.8 npm 26 Sep, 2018
  • M
Cross-site Scripting (XSS)
react-tooltip <3.8.1 npm 13 Sep, 2018
  • M
Arbitrary Command Injection
ps <1.0.0 npm 09 Sep, 2018