Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Cross-site Scripting (XSS)
@knight-lab/timelinejs <3.7.0 npm 10 Jul, 2020
  • M
Buffer Overflow
i18next <19.5.5 npm 09 Jul, 2020
  • H
Cross-site Scripting (XSS)
tiptap <1.29.0 npm 08 Jul, 2020
  • M
Insertion of Sensitive Information into Log File
npm-registry-fetch <4.0.5,>=5.0.0 <8.1.1 npm 08 Jul, 2020
  • H
Directory Traversal
socket.io-file * npm 08 Jul, 2020
  • M
Insertion of Sensitive Information into Log File
npm <6.14.6 npm 08 Jul, 2020
  • M
Denial of Service (DoS)
sockjs <0.3.20 npm 08 Jul, 2020
  • M
Arbitrary File Read
electron <7.2.4,>=8.0.0 <8.2.4 npm 07 Jul, 2020
  • H
Privilege Escalation
electron <7.2.4,>=8.0.0 <8.2.4 npm 07 Jul, 2020
  • H
Privilege Escalation
electron <7.2.4,>=8.0.0 <8.2.4 npm 07 Jul, 2020
  • H
Privilege Escalation
electron <6.1.11,>=7.0.0 <7.2.4,>=8.0.0 <8.2.4 npm 07 Jul, 2020
  • H
Command Injection
strider-git <2.0.0 npm 07 Jul, 2020
  • M
Cross-site Scripting (XSS)
formiojs * npm 07 Jul, 2020
  • M
Cross-site Scripting (XSS)
jspdf * npm 03 Jul, 2020
  • M
Cross-site Scripting (XSS)
jspdf * npm 03 Jul, 2020
  • L
Cross-site Scripting (XSS)
keycloak-connect <10.0.0 npm 03 Jul, 2020
  • H
Remote Code Execution (RCE)
locutus >0.0.0 npm 02 Jul, 2020
  • M
Cross-site Scripting (XSS)
tileserver-gl * npm 02 Jul, 2020
  • H
Cross-site Scripting (XSS)
jsoneditor <9.0.2 npm 01 Jul, 2020
  • M
Insecure Encryption
bcrypt <5.0.0 npm 01 Jul, 2020
  • M
Cryptographic Issues
bcrypt <5.0.0 npm 01 Jul, 2020
  • H
Authorization Bypass
express-jwt <6.0.0 npm 01 Jul, 2020
  • M
Insecure Defaults
swagger-ui <3.26.1 npm 01 Jul, 2020
  • H
Arbitrary Code Injection
wifiscanner * npm 30 Jun, 2020
  • H
Arbitrary Code Injection
mattermost-desktop <3.4.0 npm 29 Jun, 2020
  • H
Arbitrary Code Execution
gitlab-workflow * npm 28 Jun, 2020
  • H
Server-side Request Forgery (SSRF)
@uppy/companion <1.13.2,>=2.0.0-alpha.0 <2.0.0-alpha.5 npm 28 Jun, 2020
  • H
Cross-site Scripting (XSS)
docsify <4.11.4 npm 26 Jun, 2020
  • M
Cross-site Scripting (XSS)
redoc <2.0.0-rc.28 npm 26 Jun, 2020
  • H
Command Injection
mversion <2.0.1 npm 25 Jun, 2020