Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
VULNERABILITYAFFECTSTYPEPUBLISHED
  • C
Command Injection
@sunwood-ai-labs/github-kanban-mcp-server>=0.0.0npm20 Jul 2025
  • H
Regular Expression Denial of Service (ReDoS)
@eslint/plugin-kit>=0.0.0npm20 Jul 2025
  • C
Predictable Value Range from Previous Values
form-data<2.5.4>=3.0.0 <3.0.4>=4.0.0 <4.0.4npm20 Jul 2025
  • C
Improper Verification of Cryptographic Signature
tiny-secp256k1<1.1.7npm18 Jul 2025
  • C
Insufficiently Protected Credentials
tiny-secp256k1<1.1.7npm18 Jul 2025
  • C
Malicious Package
public-tools-and-demos*npm18 Jul 2025
  • C
Malicious Package
@jssrv/template*npm18 Jul 2025
  • C
Malicious Package
@lensapp/eslint-config*npm18 Jul 2025
  • C
Malicious Package
jenkins-for-jira-ui*npm18 Jul 2025
  • C
Malicious Package
eth-multisig-v4*npm18 Jul 2025
  • C
Malicious Package
eth-validator*npm18 Jul 2025
  • C
Malicious Package
glean-mcp-server*npm18 Jul 2025
  • C
Malicious Package
dex-sample-app*npm18 Jul 2025
  • C
Malicious Package
rtp-rapyd*npm18 Jul 2025
  • C
Malicious Package
print-vault-node*npm18 Jul 2025
  • C
Malicious Package
lunasec*npm18 Jul 2025
  • C
Malicious Package
winston-compose*npm18 Jul 2025
  • C
Malicious Package
canonical-bridge-ui*npm18 Jul 2025
  • C
Malicious Package
iwf-typescript-sdk*npm18 Jul 2025
  • C
Malicious Package
sol-validator*npm18 Jul 2025
  • C
Malicious Package
notificationsandbox*npm18 Jul 2025
  • C
Malicious Package
react-hook-form-ui*npm18 Jul 2025
  • C
Malicious Package
mttdocs*npm18 Jul 2025
  • C
Malicious Package
nodemailer-helper*npm18 Jul 2025
  • M
Out-of-bounds Read
@openzeppelin/contracts>=5.2.0 <5.4.0npm18 Jul 2025
  • M
Out-of-bounds Read
@openzeppelin/contracts-upgradeable>=5.2.0 <5.4.0npm18 Jul 2025
  • H
Uncaught Exception
multer>=1.4.4-lts.1 <2.0.2npm18 Jul 2025
  • M
Improper Handling of Unexpected Data Type
on-headers<1.1.0npm18 Jul 2025
  • M
Cross-site Scripting (XSS)
vue-i18n<9.14.5>=10.0.0-alpha.1 <10.0.8>=11.0.0-beta.0 <11.1.10npm17 Jul 2025
  • M
Cross-site Scripting (XSS)
@intlify/core<9.14.5>=10.0.0-alpha.1 <10.0.8>=11.0.0-beta.0 <11.1.10npm17 Jul 2025