Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Open Redirect
github.com/urfave/negroni/v2 >=0.0.0 Go 11 Oct, 2021
  • M
Open Redirect
github.com/urfave/negroni >=0.0.0 Go 11 Oct, 2021
  • M
Open Redirect
github.com/evergreen-ci/gimlet <0.0.0-20210928125547-31cad9d4fe58 Go 11 Oct, 2021
  • M
Open Redirect
github.com/evergreen-ci/evergreen <0.0.0-20210928201300-30730802494d Go 11 Oct, 2021
  • M
Cross-site Scripting (XSS)
django-unicorn [,0.36.1) pip 11 Oct, 2021
  • M
Cross-site Scripting (XSS)
mediawiki/core >=1.36.0, <1.36.2,>=1.32.0, <1.35.4,<1.31.16 Composer 11 Oct, 2021
  • H
Denial of Service (DoS)
mediawiki/core >=1.36.0, <1.36.2,>=1.32.0, <1.35.4,<1.31.16 Composer 11 Oct, 2021
  • M
Denial of Service (DoS)
mediawiki/core >=1.36.0, <1.36.2,>=1.32.0, <1.35.4,<1.31.16 Composer 11 Oct, 2021
  • M
Insecure Permissions
github.com/hashicorp/vault/vault * Go 11 Oct, 2021
  • M
Cross-site Scripting (XSS)
limesurvey/limesurvey >=3.0.0, <4.0.0 Composer 10 Oct, 2021
  • L
Access Restriction Bypass
github.com/hashicorp/vault/vault >=1.7.0 <1.7.4,>=1.8.0 <1.8.4 Go 10 Oct, 2021
  • H
XML External Entity (XXE) Injection
org.opencms:opencms-core [11.0.0,12.0) Maven 10 Oct, 2021
  • M
SQL Injection
intelliants/subrion >=0.0.0 Composer 10 Oct, 2021
  • H
Symlink Attack
k8s.io/kubernetes/pkg/kubelet >=1.22.0 <1.22.2,>=1.21.0 <1.21.5,>=1.20.0 <1.20.11,<1.19.15 Go 08 Oct, 2021
  • H
Symlink Attack
github.com/kubernetes/kubernetes/pkg/kubelet >=1.22.0 <1.22.2,>=1.21.0 <1.21.5,>=1.20.0 <1.20.11,<1.19.15 Go 08 Oct, 2021
  • M
Denial of Service (DoS)
github.com/hashicorp/nomad/command/agent/consul <1.1.6 Go 08 Oct, 2021
  • H
XML External Entity (XXE) Injection
org.jxls:jxls [0,] Maven 08 Oct, 2021
  • M
Regular Expression Denial of Service (ReDoS)
mpmath [0,] pip 08 Oct, 2021
  • M
Regular Expression Denial of Service (ReDoS)
prompts <2.4.2 npm 08 Oct, 2021
  • M
Regular Expression Denial of Service (ReDoS)
org.webjars.npm:prompts [0,] Maven 08 Oct, 2021
  • H
Improper Access Control
silverstripe/graphql >=3.0.0, <3.5.2 Composer 08 Oct, 2021
  • H
Directory Traversal
mkdocs [0,1.2.3) pip 08 Oct, 2021
  • M
Regular Expression Denial of Service (ReDoS)
zulip [, 0.4.7) pip 08 Oct, 2021
  • M
Cross-site Scripting (XSS)
sidekiq <5.2.0,>=6.0.0, <6.2.1 RubyGems 08 Oct, 2021
  • H
Arbitrary Code Execution
ruby-jss <1.6.0 RubyGems 08 Oct, 2021
  • M
Cross-site Scripting (XSS)
silverstripe/admin <1.8.1 Composer 08 Oct, 2021
  • H
SQL Injection
s-cart/core <6.3.0.3 Composer 07 Oct, 2021
  • H
Directory Traversal
freqtrade [0,2021.8) pip 07 Oct, 2021
  • M
Prototype Pollution
config-handler * npm 07 Oct, 2021
  • M
Cross-site Scripting (XSS)
django-unicorn [,0.36.1) pip 07 Oct, 2021