Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
MINI-cw7g-3vff-xqh2
  • MinimOS/harbor-registry-fips
 See record for full details 36 minutes ago
  • Fix available
MINI-hrw6-m85g-2c7p
  • MinimOS/harbor-registry-fips
 See record for full details 36 minutes ago
  • Fix available
MINI-pf9p-6g82-75vq
  • MinimOS/harbor-registry
 See record for full details 50 minutes ago
  • Fix available
MINI-6cq5-w435-cxc9
  • MinimOS/harbor-registry
 See record for full details 50 minutes ago
  • Fix available
CGA-j4q7-xpg8-q233
  • Chainguard/renovate
  • Wolfi/renovate
 See record for full details 51 minutes ago
  • Fix available
MINI-3pq4-3wq9-67fq
  • MinimOS/python-3.14
  • MinimOS/python-3.14-base
  • MinimOS/python-3.14-base-dev
  • MinimOS/python-3.14-dev
  • MinimOS/python-3.14-doc
  • ... 1 more
 See record for full details 2 hours ago
  • No fix available
GHSA-4w7w-66w2-5vf9
  • npm/vite
 Vite Vulnerable to Path Traversal in Optimized Deps `.map` Handling 3 hours ago
  • Fix available
  • Severity - 6.3 (Medium)
GHSA-v2wj-q39q-566r
  • npm/vite
 Vite: `server.fs.deny` bypassed with queries 3 hours ago
  • Fix available
  • Severity - 8.2 (High)
GHSA-p9ff-h696-f583
  • npm/vite
 Vite Vulnerable to Arbitrary File Read via Vite Dev Server WebSocket 3 hours ago
  • Fix available
  • Severity - 8.2 (High)
GHSA-hv3w-m4g2-5x77
  • PyPI/strawberry-graphql
 strawberry-graphql: Denial of Service via unbounded WebSocket subscriptions 3 hours ago
  • Fix available
  • Severity - 7.5 (High)
GHSA-vpwc-v33q-mq89
  • PyPI/strawberry-graphql
 strawberry-graphql: Authentication bypass via legacy graphql-ws WebSocket subprotocol 3 hours ago
  • Fix available
  • Severity - 7.5 (High)
GHSA-jmrh-xmgh-x9j4
  • PyPI/changedetection-io
 changedetection.io Vulnerable to Authentication Bypass via Decorator Ordering 3 hours ago
  • Fix available
  • Severity - 9.8 (Critical)
GHSA-36xv-jgw5-4q75
  • npm/@nestjs/core
 @nestjs/core Improperly Neutralizes Special Elements in Output Used by a Downstream Component ('Injection') 3 hours ago
  • Fix available
  • Severity - 6.3 (Medium)
GHSA-x3f4-v83f-7wp2
  • Go/github.com/authorizerdev/authorizer
 Authorizer: Password reset token theft and full auth token redirect via unvalidated redirect_uri 3 hours ago
  • Fix available
  • Severity - 8.6 (High)
GHSA-jfwg-rxf3-p7r9
  • Go/github.com/authorizerdev/authorizer
 Authorizer: CQL/N1QL Injection in Cassandra and Couchbase Backends via fmt.Sprintf String Interpolation 3 hours ago
  • Fix available
  • Severity - 7.3 (High)
GHSA-cjg8-h5qc-hrjv
  • PyPI/kedro-datasets
 kedro-datasets has a path traversal vulnerability in PartitionedDataset that allows arbitrary file write 3 hours ago
  • Fix available
  • Severity - 6.5 (Medium)
Load more...