Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Cross-site Scripting (XSS)
org.webjars.npm:primeng [0,] Maven 23 Jan, 2020
  • M
Cross-site Scripting (XSS)
primeng <9.0.0-rc.3 npm 23 Jan, 2020
  • M
Denial of Service (DoS)
sequelize <5.0.0 npm 23 Jan, 2020
  • H
Prototype Pollution
klona <1.1.1 npm 23 Jan, 2020
  • H
HTTP Request Smuggling
waitress [,1.4.0) pip 22 Jan, 2020
  • H
Reflected File Download (RFD)
org.springframework:spring-webflux [5.2.0, 5.2.3),[5.1.0, 5.1.13),[5.0.0, 5.0.16) Maven 22 Jan, 2020
  • H
Reflected File Download (RFD)
org.springframework:spring-webmvc [5.2.0, 5.2.3),[5.1.0, 5.1.13),[5.0.0, 5.0.16) Maven 22 Jan, 2020
  • M
Cross-Site Request Forgery (CSRF)
org.springframework:spring-webflux [5.2.0, 5.2.3) Maven 22 Jan, 2020
  • M
Cross-Site Request Forgery (CSRF)
org.springframework:spring-webmvc [5.2.0, 5.2.3) Maven 22 Jan, 2020
  • H
Bit-Flipping Attack
parsel >=0.0.0 npm 22 Jan, 2020
  • H
Bit-Flipping Attack
parsel >=0.0.0 RubyGems 22 Jan, 2020
  • H
Insecure Encryption
parsel >=0.0.0 npm 22 Jan, 2020
  • H
Insecure Encryption
parsel >=0.0.0 RubyGems 22 Jan, 2020
  • H
Insecure Encryption
parsel >=0.0.0 RubyGems 22 Jan, 2020
  • H
Internal Property Tampering
schema-inspector <1.6.9 npm 20 Jan, 2020
  • M
Credential Exposure
org.jenkins-ci.plugins:redgate-sql-ci [,2.0.5) Maven 20 Jan, 2020
  • H
XML External Entity (XXE) Injection
org.jenkins-ci.plugins:robot [,2.0.1) Maven 20 Jan, 2020
  • L
Cross-Site Request Forgery (CSRF)
org.jenkins-ci.plugins:ec2 [,1.48) Maven 20 Jan, 2020
  • M
Cross-Site Request Forgery (CSRF)
org.jenkins-ci.plugins:cloudbees-jenkins-advisor [,3.0.1) Maven 20 Jan, 2020
  • H
Cross-Site Request Forgery (CSRF)
org.jenkins-ci.plugins:sounds [0,] Maven 20 Jan, 2020
  • M
Cross-site Scripting (XSS)
org.jenkins-ci.plugins:gitlab-hook [0,] Maven 20 Jan, 2020
  • H
Deserialization of Untrusted Data
org.apache.xmlrpc:xmlrpc [3.1,) Maven 20 Jan, 2020
  • H
Deserialization of Untrusted Data
org.apache.xmlrpc:xmlrpc-client [3.1,) Maven 20 Jan, 2020
  • M
Cross-site Scripting (XSS)
org.apache.cxf:cxf-bundle [3.0.0-milestone2,] Maven 19 Jan, 2020
  • M
Cross-site Scripting (XSS)
org.apache.cxf:cxf-rt-transports-http [,3.2.12),[3.3.0, 3.3.5) Maven 19 Jan, 2020
  • M
Information Exposure
org.apache.cxf:cxf-rt-rs-security-jose [,3.2.12),[3.3.0, 3.3.5) Maven 19 Jan, 2020
  • M
Command Injection
salt [2019.2.0, 2019.2.3) pip 19 Jan, 2020
  • L
Information Disclosure
org.webjars.bowergithub.jonschlinkert:kind-of [6.0.0, 6.0.3) Maven 19 Jan, 2020
  • L
Information Disclosure
org.webjars.npm:kind-of [6.0.0, 6.0.3) Maven 19 Jan, 2020
  • L
Information Disclosure
kind-of >=6.0.0 <6.0.3 npm 19 Jan, 2020