Vulnerability Database
Blog
FAQ
Docs
arrow_forward
search
Vulnerabilities
search
All ecosystems
606147
AlmaLinux
4572
Alpaquita
8683
Alpine
4028
Android
2912
Azure Linux
12016
BellSoft Hardened Containers
402
Bitnami
6835
Chainguard
5409
CleanStart
679
CRAN
14
crates.io
2167
Debian
45190
Echo
3105
GHC
3
GIT
81788
GitHub Actions
49
Go
6427
Hackage
29
Hex
57
Julia
391
Linux
15485
Mageia
5859
Maven
6264
MinimOS
18258
npm
216875
NuGet
1620
opam
11
openEuler
6227
openSUSE
12334
OSS-Fuzz
3826
Packagist
5992
Pub
11
PyPI
18449
Red Hat
19039
Rocky Linux
2851
Root
11642
RubyGems
1922
SUSE
20061
SwiftURL
50
Ubuntu
51188
VSCode
18
Wolfi
3409
ID
Packages
Summary
Published
arrow_upward
Attributes
ECHO-6fc6-4872-7ea8
Echo/openssl
See record for full details
30 minutes ago
Fix available
ECHO-f779-bf6a-ba8e
Echo/openssl
See record for full details
30 minutes ago
Fix available
ECHO-4471-00bd-faf3
Echo/openssl
See record for full details
30 minutes ago
Fix available
ECHO-ba3d-b3f7-03e8
Echo/openssl
See record for full details
30 minutes ago
Fix available
ECHO-cd1b-a137-2e06
Echo/openssl
See record for full details
30 minutes ago
Fix available
ECHO-9d88-691e-4e0f
Echo/openssl
See record for full details
30 minutes ago
Fix available
CGA-q985-v7px-cj5w
Chainguard/grafana-12.0
Chainguard/grafana-12.2
Chainguard/grafana-12.3
Chainguard/grafana-fips-11.6
Chainguard/grafana-fips-12.0
... 3 more
See record for full details
1 hour ago
Fix available
GHSA-xmrv-pmrh-hhx2
Go/github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream
Go/github.com/aws/aws-sdk-go-v2/service/bedrockagentcore
Go/github.com/aws/aws-sdk-go-v2/service/bedrockagentruntime
Go/github.com/aws/aws-sdk-go-v2/service/bedrockruntime
Go/github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs
... 7 more
Denial of Service due to Panic in AWS SDK for Go v2 SDK EventStream Decoder
1 hour ago
Fix available
Severity - 5.9 (Medium)
GHSA-pr46-2v3c-5356
PyPI/emmett
Emmett has a path traversal in internal assets handler
1 hour ago
Fix available
Severity - 9.1 (Critical)
GHSA-rfgh-63mg-8pwm
PyPI/pyload-ng
pyload-ng has a WebUI JSON permission mismatch that lets ADD/DELETE users invoke MODIFY-only actions
1 hour ago
No fix available
Severity - 5.4 (Medium)
GHSA-8ffj-4hx4-9pgf
PyPI/lightrag-hku
lightrag-hku: JWT Algorithm Confusion Vulnerability
1 hour ago
Fix available
Severity - 4.2 (Medium)
GHSA-r5rp-j6wh-rvv4
npm/hono
Hono: Non-breaking space prefix bypass in cookie name handling in getCookie()
1 hour ago
Fix available
Severity - 4.8 (Medium)
GHSA-xpcf-pg52-r92g
npm/hono
Hono has incorrect IP matching in ipRestriction() for IPv4-mapped IPv6 addresses
1 hour ago
Fix available
Severity - 6.3 (Medium)
GHSA-26pp-8wgv-hjvm
npm/hono
Hono missing validation of cookie name on write path in setCookie()
1 hour ago
Fix available
Severity - 5.3 (Medium)
GHSA-xf4j-xp2r-rqqx
npm/hono
Hono: Path traversal in toSSG() allows writing files outside the output directory
2 hours ago
Fix available
Severity - 5.9 (Medium)
GHSA-wmmm-f939-6g9c
npm/hono
Hono: Middleware bypass via repeated slashes in serveStatic
2 hours ago
Fix available
Severity - 5.3 (Medium)
Load more...
Vulnerability Database - OSV