[go: up one dir, main page]
Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • C
Improper Control of Dynamically-Managed Code ResourcesCVE-2026-34156
Affects @nocobase/plugin-workflow-javascript | Versions <2.0.28
Has fix
npmPublished 6 Apr 2026
  • H
Improper Authorization in Handler for Custom URL SchemeCVE-2026-35394
Affects @mobilenext/mobile-mcp | Versions <0.0.50
Has fix
npmPublished 6 Apr 2026
  • H
Command InjectionCVE-2026-25044
Affects @budibase/types | Versions <3.33.4
Has fix
npmPublished 6 Apr 2026
  • H
Command InjectionCVE-2026-25044
Affects @budibase/shared-core | Versions <3.33.4
Has fix
npmPublished 6 Apr 2026
  • H
Command InjectionCVE-2026-25044
Affects @budibase/server | Versions <3.33.4
Has fix
npmPublished 6 Apr 2026
  • C
Command InjectionCVE-2026-35216
Affects @budibase/shared-core | Versions <3.33.4
Has fix
npmPublished 6 Apr 2026
  • C
Command InjectionCVE-2026-35216
Affects @budibase/types | Versions <3.33.4
Has fix
npmPublished 6 Apr 2026
  • C
Command InjectionCVE-2026-35216
Affects @budibase/server | Versions <3.33.4
Has fix
npmPublished 6 Apr 2026
  • H
Directory TraversalCVE-2026-35214
Affects @budibase/types | Versions <3.33.4
Has fix
npmPublished 6 Apr 2026
  • H
Directory TraversalCVE-2026-35214
Affects @budibase/server | Versions <3.33.4
Has fix
npmPublished 6 Apr 2026
  • C
Insecure Default Initialization of ResourceCVE-2026-31818
Affects @budibase/backend-core | Versions <3.33.4
Has fix
npmPublished 6 Apr 2026
  • H
Prototype PollutionCVE-2026-34221
Affects @mikro-orm/core | Versions <6.6.10-dev.1>=7.0.0-dev.0 <7.0.6-dev.8
Has fix
npmPublished 6 Apr 2026
  • C
SQL InjectionCVE-2026-34220
Affects @mikro-orm/mariadb | Versions <6.6.10-dev.1
Has fix
npmPublished 6 Apr 2026
  • C
SQL InjectionCVE-2026-34220
Affects @mikro-orm/core | Versions <6.6.10-dev.1>=7.0.0-dev.0 <7.0.6-dev.8
Has fix
npmPublished 6 Apr 2026
  • M
Out-of-bounds ReadCVE-2026-35038
Affects signalk-server | Versions <2.24.0
Has fix
npmPublished 6 Apr 2026
  • H
Arbitrary Code InjectionCVE-2026-34725
Affects dbgate-web | Versions >=7.0.0-alpha.10 <7.1.5
Has fix
npmPublished 6 Apr 2026
  • H
Prototype PollutionCVE-2026-35209
Affects defu | Versions <6.1.5
Has fix
npmPublished 6 Apr 2026
  • M
Missing Authentication for Critical FunctionCVE-2026-33951
Affects signalk-server | Versions <2.24.0-beta.3
Has fix
npmPublished 6 Apr 2026
  • C
Improper Verification of Cryptographic Signature
Affects @stablelib/cbor | Versions <2.0.3
Has fix
npmPublished 6 Apr 2026
  • C
Improper Verification of Cryptographic Signature
Affects @stablelib/ed25519 | Versions <2.1.0
Has fix
npmPublished 6 Apr 2026
  • H
Prototype Pollution
Affects @stablelib/cbor | Versions <2.0.3
Has fix
npmPublished 6 Apr 2026
  • M
Use of GET Request Method With Sensitive Query StringsCVE-2026-25118
Affects @immich/sdk | Versions <2.6.0
Has fix
npmPublished 6 Apr 2026
  • M
Server-side Request Forgery (SSRF)
Affects nuxt-og-image | Versions <6.2.5
Has fix
npmPublished 6 Apr 2026
  • M
Exposure of Resource to Wrong SphereCVE-2026-34217
Affects @nyariv/sandboxjs | Versions <0.8.36
Has fix
npmPublished 5 Apr 2026
  • C
Improperly Controlled Modification of Dynamically-Determined Object AttributesCVE-2026-34208
Affects @nyariv/sandboxjs | Versions <0.8.36
Has fix
npmPublished 5 Apr 2026
  • M
Uncontrolled RecursionCVE-2026-34211
Affects @nyariv/sandboxjs | Versions <0.8.36
Has fix
npmPublished 5 Apr 2026
  • M
Directory TraversalCVE-2026-34523
Affects sillytavern | Versions <1.17.0
Has fix
npmPublished 5 Apr 2026
  • H
External Control of File Name or PathCVE-2026-34522
Affects sillytavern | Versions <1.17.0
Has fix
npmPublished 5 Apr 2026
  • H
Directory TraversalCVE-2026-34524
Affects sillytavern | Versions <1.17.0
Has fix
npmPublished 5 Apr 2026
  • M
Server-side Request Forgery (SSRF)CVE-2026-34526
Affects sillytavern | Versions <1.17.0
Has fix
npmPublished 5 Apr 2026