Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Cross-site Scripting (XSS)
apexcharts <3.27.0 npm 08 Jun, 2021
  • M
Prototype Pollution
nestie <1.0.2 npm 07 Jun, 2021
  • H
Arbitrary File Write via Archive Extraction (Zip Slip)
calipso * npm 07 Jun, 2021
  • L
Regular Expression Denial of Service (ReDoS)
polished <3.7.2,>=4.0.0-beta.1 <4.1.3 npm 07 Jun, 2021
  • H
Cross-site Scripting (XSS)
auth0-lock <11.30.1 npm 06 Jun, 2021
  • M
Regular Expression Denial of Service (ReDoS)
locutus <2.0.15 npm 06 Jun, 2021
  • M
Prototype Pollution
nestie <1.0.1 npm 04 Jun, 2021
  • M
Directory Traversal
@backstage/techdocs-common <0.6.3 npm 04 Jun, 2021
  • M
Cross-site Scripting (XSS)
@backstage/plugin-techdocs <0.9.5 npm 04 Jun, 2021
  • M
Cross-site Scripting (XSS)
@backstage/techdocs-common <0.6.4 npm 04 Jun, 2021
  • H
Heap-based Buffer Overflow
electron >=12.0.0-beta.1 <12.0.10,>=11.0.0-beta.1 <11.4.8,<10.4.7 npm 04 Jun, 2021
  • H
Race Condition
electron >=12.0.0-beta.1 <12.0.10,>=11.0.0-beta.1 <11.4.8,<10.4.7 npm 04 Jun, 2021
  • H
Use After Free
electron >=12.0.0-beta.1 <12.0.10,>=11.0.0-beta.1 <11.4.8,<10.4.7 npm 04 Jun, 2021
  • H
Type Confusion
electron >=12.0.0-beta.1 <12.0.10,>=11.0.0-beta.1 <11.4.8,<10.4.7 npm 04 Jun, 2021
  • H
Use After Free
electron >=12.0.0-beta.1 <12.0.10,>=11.0.0-beta.1 <11.4.8,<10.4.7 npm 04 Jun, 2021
  • H
Heap-based Buffer Overflow
electron >=12.0.0-beta.1 <12.0.10,>=11.0.0-beta.1 <11.4.8,<10.4.7 npm 04 Jun, 2021
  • H
Heap-based Buffer Overflow
electron >=12.0.0-beta.1 <12.0.10,>=11.0.0-beta.1 <11.4.8,<10.4.7 npm 04 Jun, 2021
  • M
Improper Verification of Cryptographic Signature
@aws-crypto/decrypt-node >=2.0.0 <2.2.0,<1.9.0 npm 02 Jun, 2021
  • M
Improper Verification of Cryptographic Signature
@aws-crypto/decrypt-browser >=2.0.0 <2.2.0,<1.9.0 npm 02 Jun, 2021
  • H
Regular Expression Denial of Service (ReDoS)
react-native >=0.63.0-rc.0 <0.64.1,>=0.59.0-rc.0 <0.62.3 npm 02 Jun, 2021
  • M
Cross-site Scripting (XSS)
layui-src <2.6.8 npm 01 Jun, 2021
  • M
Cross-site Scripting (XSS)
layui <2.6.8 npm 01 Jun, 2021
  • M
Regular Expression Denial of Service (ReDoS)
forms <1.2.1,>=1.3.0 <1.3.2 npm 31 May, 2021
  • H
Denial of Service (DoS)
trim-newlines <3.0.1,>=4.0.0 <4.0.1 npm 30 May, 2021
  • M
Cross-site Scripting (XSS)
tinymce <5.7.1 npm 30 May, 2021
  • M
Regular Expression Denial of Service (ReDoS)
css-what <5.0.1 npm 30 May, 2021
  • M
Command Injection
@floffah/build <1.0.0 npm 30 May, 2021
  • H
Denial of Service (DoS)
node-static * npm 28 May, 2021
  • M
Open Redirect
node-static * npm 28 May, 2021
  • H
Arbitrary Code Execution
json-ptr <2.1.0 npm 27 May, 2021