Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Information Exposure
@apollo/client * npm 18 Jun, 2021
  • M
Prototype Pollution
@ianwalter/merge * npm 18 Jun, 2021
  • H
Denial of Service (DoS)
xlsx <0.17.0 npm 17 Jun, 2021
  • H
Denial of Service (DoS)
xlsx <0.17.0 npm 17 Jun, 2021
  • M
Prototype Pollution
lutils * npm 17 Jun, 2021
  • H
Denial of Service (DoS)
xlsx <0.17.0 npm 17 Jun, 2021
  • H
Access Restriction Bypass
@apollosproject/data-connector-rock <2.20.0 npm 17 Jun, 2021
  • M
Insecure Permissions
matrix-appservice-bridge <2.6.1 npm 17 Jun, 2021
  • H
Denial of Service (DoS)
valine * npm 17 Jun, 2021
  • H
Use After Free
hermes-engine <0.7.0 npm 16 Jun, 2021
  • C
Improper Verification of Cryptographic Signature
tenvoy <7.0.3 npm 16 Jun, 2021
  • M
Denial of Service (DoS)
@scandipwa/magento-scripts >=1.5.1 <1.5.3 npm 15 Jun, 2021
  • H
Prototype Pollution
nedb * npm 15 Jun, 2021
  • M
Cross-site Scripting (XSS)
total.js <3.3.0-13 npm 13 Jun, 2021
  • M
Cross-site Scripting (XSS)
ckeditor4 >=4.14.0 <4.16.1 npm 10 Jun, 2021
  • M
Prototype Pollution
expand-hash * npm 10 Jun, 2021
  • M
Prototype Pollution
set-getter * npm 10 Jun, 2021
  • H
Remote Code Execution (RCE)
reg-keygen-git-hash-plugin <0.10.16 npm 09 Jun, 2021
  • M
Cross-site Scripting (XSS)
apexcharts <3.27.0 npm 08 Jun, 2021
  • M
Prototype Pollution
nestie <1.0.2 npm 07 Jun, 2021
  • H
Arbitrary File Write via Archive Extraction (Zip Slip)
calipso * npm 07 Jun, 2021
  • L
Regular Expression Denial of Service (ReDoS)
polished <3.7.2,>=4.0.0-beta.1 <4.1.3 npm 07 Jun, 2021
  • H
Cross-site Scripting (XSS)
auth0-lock <11.30.1 npm 06 Jun, 2021
  • M
Regular Expression Denial of Service (ReDoS)
locutus <2.0.15 npm 06 Jun, 2021
  • M
Prototype Pollution
nestie <1.0.1 npm 04 Jun, 2021
  • M
Directory Traversal
@backstage/techdocs-common <0.6.3 npm 04 Jun, 2021
  • M
Cross-site Scripting (XSS)
@backstage/plugin-techdocs <0.9.5 npm 04 Jun, 2021
  • M
Cross-site Scripting (XSS)
@backstage/techdocs-common <0.6.4 npm 04 Jun, 2021
  • H
Heap-based Buffer Overflow
electron >=12.0.0-beta.1 <12.0.10,>=11.0.0-beta.1 <11.4.8,<10.4.7 npm 04 Jun, 2021
  • H
Race Condition
electron >=12.0.0-beta.1 <12.0.10,>=11.0.0-beta.1 <11.4.8,<10.4.7 npm 04 Jun, 2021