Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • L
Improper Input Validation
github.com/helm/helm/pkg/chartutil <2.16.11,<3.3.2 Go 18 Sep, 2020
  • L
Improper Input Validation
github.com/helm/helm/pkg/repo <2.16.11,<3.3.2 Go 18 Sep, 2020
  • L
Arbitrary Code Execution
github.com/helm/helm/pkg/plugin <2.16.11,<3.3.2 Go 18 Sep, 2020
  • L
Improper Input Validation
github.com/helm/helm/pkg/plugin <2.16.11,<3.3.2 Go 18 Sep, 2020
  • H
Deserialization of Untrusted Data
com.fasterxml.jackson.core:jackson-databind [,2.9.10.6) Maven 18 Sep, 2020
  • M
Buffer Overflow
py-mini-racer [,0.3.0) pip 18 Sep, 2020
  • H
Remote Code Execution (RCE)
apache-superset [,0.37.1) pip 18 Sep, 2020
  • H
Improper Input Validation
org.springframework:spring-web [,4.3.29.RELEASE),[5.0.0.RELEASE, 5.0.18.RELEASE),[5.1.0.RELEASE, 5.1.17.RELEASE),[5.2.0.RELEASE, 5.2.8.RELEASE) Maven 18 Sep, 2020
  • M
Arbitrary Command Execution
@knutkirkhorn/free-space <1.3.0 npm 18 Sep, 2020
  • M
Access Restriction Bypass
drupal/drupal >=8.0.0, <8.1.0,>=8.1.0, <8.2.0,>=8.2.0, <8.3.0,>=8.3.0, <8.4.0,>=8.4.0, <8.5.0,>=8.5.0, <8.6.0,>=8.6.0, <8.7.0,>=8.7.0, <8.8.0,>=8.8.0, <8.8.10,>=8.9.0, <8.9.6,>=9.0.0, <9.0.6 Composer 18 Sep, 2020
  • M
Information Disclosure
drupal/drupal >=8.0.0, <8.1.0,>=8.1.0, <8.2.0,>=8.2.0, <8.3.0,>=8.3.0, <8.4.0,>=8.4.0, <8.5.0,>=8.5.0, <8.6.0,>=8.6.0, <8.7.0,>=8.7.0, <8.8.0,>=8.8.0, <8.8.10,>=8.9.0, <8.9.6,>=9.0.0, <9.0.6 Composer 18 Sep, 2020
  • H
Cross-site Scripting (XSS)
drupal/drupal >=8.0.0, <8.1.0,>=8.1.0, <8.2.0,>=8.2.0, <8.3.0,>=8.3.0, <8.4.0,>=8.4.0, <8.5.0,>=8.5.0, <8.6.0,>=8.6.0, <8.7.0,>=8.7.0, <8.8.0,>=8.8.0, <8.8.10,>=8.9.0, <8.9.6,>=9.0.0, <9.0.6 Composer 18 Sep, 2020
  • H
Cross-site Scripting (XSS)
drupal/drupal >=8.0.0, <8.1.0,>=8.1.0, <8.2.0,>=8.2.0, <8.3.0,>=8.3.0, <8.4.0,>=8.4.0, <8.5.0,>=8.5.0, <8.6.0,>=8.6.0, <8.7.0,>=8.7.0, <8.8.0,>=8.8.0, <8.8.10,>=8.9.0, <8.9.6,>=9.0.0, <9.0.6 Composer 18 Sep, 2020
  • M
Cross-site Scripting (XSS)
drupal/drupal >=7.0.0, <7.73,>=8.0.0, <8.1.0,>=8.1.0, <8.2.0,>=8.2.0, <8.3.0,>=8.3.0, <8.4.0,>=8.4.0, <8.5.0,>=8.5.0, <8.6.0,>=8.6.0, <8.7.0,>=8.7.0, <8.8.0,>=8.8.0, <8.8.10,>=8.9.0, <8.9.6,>=9.0.0, <9.0.6 Composer 18 Sep, 2020
  • H
Cross-site Scripting (XSS)
github.com/grafana/grafana <7.2.0-beta2 Go 17 Sep, 2020
  • H
Denial of Service (DoS)
org.keycloak:keycloak-wildfly-server-subsystem [, 11.0.1) Maven 17 Sep, 2020
  • M
Access Restriction Bypass
org.wildfly.security:wildfly-elytron [, 1.6.8.Final) Maven 17 Sep, 2020
  • H
Cross-site Scripting (XSS)
apache-airflow [,1.10.12) pip 17 Sep, 2020
  • M
Information Exposure
org.wildfly.core:wildfly-embedded [, 13.0.0.Final) Maven 17 Sep, 2020
  • M
Command Injection
node-idevice * npm 17 Sep, 2020
  • H
Cross-site Scripting (XSS)
org.jenkins-ci.plugins:radiatorviewplugin [0,] Maven 17 Sep, 2020
  • M
Insecure Permissions
io.jenkins.blueocean:blueocean-parent [,1.23.3) Maven 17 Sep, 2020
  • H
Cross-site Scripting (XSS)
org.jenkins-ci.plugins:validating-string-parameter [,2.5) Maven 17 Sep, 2020
  • H
Cross-site Scripting (XSS)
org.jenkins-ci.plugins:pipeline-maven-parent [,3.9.3) Maven 17 Sep, 2020
  • M
Directory Traversal
io.jenkins.blueocean:blueocean-parent [,1.23.3) Maven 17 Sep, 2020
  • M
Improper Input Validation
org.jenkins-ci.plugins:email-ext [,2.76) Maven 17 Sep, 2020
  • H
Cross-site Scripting (XSS)
org.jenkins-ci.plugins:computer-queue-plugin [,1.6) Maven 17 Sep, 2020
  • M
Insecure Permissions
org.jenkins-ci.plugins:cloudbees-jenkins-advisor [,3.2.1) Maven 17 Sep, 2020
  • M
Improper Input Validation
org.jenkins-ci.plugins:mailer [,1.32.1) Maven 17 Sep, 2020
  • M
Insecure Permissions
org.jenkins-ci.plugins:perfecto [,1.18) Maven 17 Sep, 2020