Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Improper Input Validation
matrix-sydent [,2.3.0) pip 16 Apr, 2021
  • H
Denial of Service (DoS)
matrix-sydent [,2.3.0) pip 16 Apr, 2021
  • M
Improper Input Validation
matrix-sydent [,2.3.0) pip 16 Apr, 2021
  • H
Cross-Site Request Forgery (CSRF)
centreon/centreon >=0.0.0 Composer 16 Apr, 2021
  • H
Server-side Request Forgery (SSRF)
matrix-sydent [,2.3.0) pip 16 Apr, 2021
  • M
Access Restriction Bypass
k8s.io/kubernetes/pkg/apis/apps/validation <1.21.0-rc.0 Go 15 Apr, 2021
  • M
Access Restriction Bypass
github.com/kubernetes/kubernetes/pkg/apis/apps/validation <1.21.0-rc.0 Go 15 Apr, 2021
  • M
Improper Input Validation
github.com/yubico/yubihsm-connector <3.0.1 Go 15 Apr, 2021
  • H
Access Restriction Bypass
shopxo/shopxo <1.6.0 Composer 15 Apr, 2021
  • M
Cross-site Request Forgery (CSRF)
trestle-auth >=0.4.0, <0.4.2 RubyGems 15 Apr, 2021
  • H
Arbitrary Code Execution
org.apache.tapestry:tapestry-core [5.4.0,5.6.2),[5.7.0, 5.7.1) Maven 15 Apr, 2021
  • M
Cross-site Scripting (XSS)
typo3/neos >=1.2.0, <1.2.13,>=2.0.0, <2.0.4 Composer 15 Apr, 2021
  • M
Cross-site Scripting (XSS)
neos/neos >=1.2.0, <1.2.13,>=2.0.0, <2.0.4 Composer 15 Apr, 2021
  • L
Deserialization of Untrusted Data
typo3/flow >=1.0.0, <1.0.4 Composer 15 Apr, 2021
  • L
Deserialization of Untrusted Data
neos/flow >=1.0.0, <1.0.4 Composer 15 Apr, 2021
  • H
Information Exposure
typo3/neos >=2.3.0, <2.3.99,>=3.0.0, <3.0.20,>=3.1.0, <3.1.18,>=3.2.0, <3.2.14,>=3.3.0, <3.3.23,>=4.0.0, <4.0.17,>=4.1.0, <4.1.16,>=4.2.0, <4.2.12,>=4.3.0, <4.3.3 Composer 15 Apr, 2021
  • H
Information Exposure
neos/neos >=2.3.0, <2.3.99,>=3.0.0, <3.0.20,>=3.1.0, <3.1.18,>=3.2.0, <3.2.14,>=3.3.0, <3.3.23,>=4.0.0, <4.0.17,>=4.1.0, <4.1.16,>=4.2.0, <4.2.12,>=4.3.0, <4.3.3 Composer 15 Apr, 2021
  • H
Server-side Request Forgery (SSRF)
org.apache.solr:solr-core [,8.8.2) Maven 15 Apr, 2021
  • M
Information Exposure
typo3/flow >=3.0.0, <3.0.12,>=3.1.0, <3.1.10,>=3.2.0, <3.2.13,>=3.3.0, <3.3.13,>=4.0.0, <4.0.6 Composer 15 Apr, 2021
  • M
Information Exposure
neos/flow >=3.0.0, <3.0.12,>=3.1.0, <3.1.10,>=3.2.0, <3.2.13,>=3.3.0, <3.3.13,>=4.0.0, <4.0.6 Composer 15 Apr, 2021
  • M
Improper Input Validation
github.com/ovn-org/ovn-kubernetes/go-controller/pkg/ovn * Go 15 Apr, 2021
  • H
SQL Injection
django-debug-toolbar [,1.11.1),[2.0, 2.2.1),[3.0, 3.2.1) pip 15 Apr, 2021
  • M
Cross-site Scripting (XSS)
djaiss/monica <2.19.1 Composer 15 Apr, 2021
  • M
Cross-site Scripting (XSS)
lavalite/cms >=0.0.0 Composer 15 Apr, 2021
  • H
Regular Expression Denial of Service (ReDoS)
ssri >=5.2.2 <6.0.2,>=7.0.0 <8.0.1 npm 15 Apr, 2021
  • H
Regular Expression Denial of Service (ReDoS)
org.webjars.npm:ssri [5.2.4,] Maven 15 Apr, 2021
  • M
Improper Input Validation
puppet <6.13.0 RubyGems 14 Apr, 2021
  • H
Arbitrary Code Execution
getgrav/grav <1.7.11 Composer 14 Apr, 2021
  • H
Command Injection
@azure/ms-rest-nodeauth <3.0.8 npm 14 Apr, 2021
  • M
Cross-site Scripting (XSS)
@nextcloud/dialogs <3.1.2 npm 14 Apr, 2021