Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Show:
Report a new vulnerability
Vulnerability Affects Type Published
  • M
Cross-site Scripting (XSS) 		apexcharts <3.27.0 npm 08 Jun, 2021
  • M
Prototype Pollution 		nestie <1.0.2 npm 07 Jun, 2021
  • H
Arbitrary File Write via Archive Extraction (Zip Slip) 		calipso * npm 07 Jun, 2021
  • L
Regular Expression Denial of Service (ReDoS) 		polished <3.7.2,>=4.0.0-beta.1 <4.1.3 npm 07 Jun, 2021
  • H
Cross-site Scripting (XSS) 		auth0-lock <11.30.1 npm 06 Jun, 2021
  • M
Regular Expression Denial of Service (ReDoS) 		locutus <2.0.15 npm 06 Jun, 2021
  • M
Prototype Pollution 		nestie <1.0.1 npm 04 Jun, 2021
  • M
Directory Traversal 		@backstage/techdocs-common <0.6.3 npm 04 Jun, 2021
  • M
Cross-site Scripting (XSS) 		@backstage/plugin-techdocs <0.9.5 npm 04 Jun, 2021
  • M
Cross-site Scripting (XSS) 		@backstage/techdocs-common <0.6.4 npm 04 Jun, 2021
  • H
Heap-based Buffer Overflow 		electron >=12.0.0-beta.1 <12.0.10,>=11.0.0-beta.1 <11.4.8,<10.4.7 npm 04 Jun, 2021
  • H
Race Condition 		electron >=12.0.0-beta.1 <12.0.10,>=11.0.0-beta.1 <11.4.8,<10.4.7 npm 04 Jun, 2021
  • H
Use After Free 		electron >=12.0.0-beta.1 <12.0.10,>=11.0.0-beta.1 <11.4.8,<10.4.7 npm 04 Jun, 2021
  • H
Type Confusion 		electron >=12.0.0-beta.1 <12.0.10,>=11.0.0-beta.1 <11.4.8,<10.4.7 npm 04 Jun, 2021
  • H
Use After Free 		electron >=12.0.0-beta.1 <12.0.10,>=11.0.0-beta.1 <11.4.8,<10.4.7 npm 04 Jun, 2021
  • H
Heap-based Buffer Overflow 		electron >=12.0.0-beta.1 <12.0.10,>=11.0.0-beta.1 <11.4.8,<10.4.7 npm 04 Jun, 2021
  • H
Heap-based Buffer Overflow 		electron >=12.0.0-beta.1 <12.0.10,>=11.0.0-beta.1 <11.4.8,<10.4.7 npm 04 Jun, 2021
  • M
Improper Verification of Cryptographic Signature 		@aws-crypto/decrypt-node >=2.0.0 <2.2.0,<1.9.0 npm 02 Jun, 2021
  • M
Improper Verification of Cryptographic Signature 		@aws-crypto/decrypt-browser >=2.0.0 <2.2.0,<1.9.0 npm 02 Jun, 2021
  • H
Regular Expression Denial of Service (ReDoS) 		react-native >=0.63.0-rc.0 <0.64.1,>=0.59.0-rc.0 <0.62.3 npm 02 Jun, 2021
  • M
Cross-site Scripting (XSS) 		layui-src <2.6.8 npm 01 Jun, 2021
  • M
Cross-site Scripting (XSS) 		layui <2.6.8 npm 01 Jun, 2021
  • M
Regular Expression Denial of Service (ReDoS) 		forms <1.2.1,>=1.3.0 <1.3.2 npm 31 May, 2021
  • H
Denial of Service (DoS) 		trim-newlines <3.0.1,>=4.0.0 <4.0.1 npm 30 May, 2021
  • M
Cross-site Scripting (XSS) 		tinymce <5.7.1 npm 30 May, 2021
  • M
Regular Expression Denial of Service (ReDoS) 		css-what <5.0.1 npm 30 May, 2021
  • M
Command Injection 		@floffah/build <1.0.0 npm 30 May, 2021
  • H
Denial of Service (DoS) 		node-static * npm 28 May, 2021
  • M
Open Redirect 		node-static * npm 28 May, 2021
  • H
Arbitrary Code Execution 		json-ptr <2.1.0 npm 27 May, 2021