Vulnerability Database
Blog
FAQ
Docs
Vulnerabilities
search
All ecosystems
263511
AlmaLinux
3350
Alpine
3620
Android
2678
Bitnami
4876
Chainguard
16064
CRAN
10
crates.io
1570
Debian
43345
GIT
24551
GitHub Actions
21
Go
3810
Hackage
19
Hex
32
Linux
13574
Maven
5192
npm
22065
NuGet
1400
openSUSE
9096
OSS-Fuzz
3009
Packagist
4279
Pub
10
PyPI
15046
Red Hat
14983
Rocky Linux
1483
RubyGems
1647
SUSE
15349
SwiftURL
34
Ubuntu
42877
Wolfi
9521
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-pj33-75x5-32j4
Hex/rabbit_common
RabbitMQ HTTP API's queue deletion endpoint does not verify that the user has a required permission
06 Nov 2024
Fix available
Severity - 7.1 (High)
GHSA-hf59-7rwq-785m
Hex/ash_postgres
In AshPostgres, empty, atomic, non-bulk actions, policy bypass for side-effects vulnerability.
23 Oct 2024
Fix available
Severity - 5.3 (Medium)
GHSA-mj35-2rgf-cv8p
Hex/oidcc
OpenID Connect client Atom Exhaustion in provider configuration worker ets table location
03 Apr 2024
Fix available
Severity - 5.3 (Medium)
GHSA-9mg4-v392-8j68
Hex/jose
erlang-jose vulnerable to denial of service via large p2c value
19 Mar 2024
Fix available
Severity - 5.3 (Medium)
GHSA-h3rw-77w7-92gf
Hex/Samly
Samly access control vulnerability
11 Feb 2024
Fix available
Severity - 9.3 (Critical)
GHSA-2c28-m2m7-mf55
Hex/pleroma
Pleroma Path Traversal vulnerability
16 Oct 2023
Fix available
Severity - 2.6 (Low)
GHSA-738q-mc72-2q22
Hex/mtproto_proxy
MTProto proxy remote code execution vulnerability
10 Oct 2023
No fix available
Severity - 8.8 (High)
GHSA-3cjh-p6pw-jhv9
Hex/pow
Pow Mnesia cache doesn't invalidate all expired keys on startup
19 Sep 2023
Fix available
Severity - 6.5 (Medium)
GHSA-564w-97r7-c6p9
Hex/livebook
Livebook Desktop's protocol handler can be exploited to execute arbitrary command on Windows
21 Jun 2023
Fix available
Severity - 8.6 (High)
GHSA-4r2f-6fm9-2qgh
Hex/ecto
Ecto lacks a protection mechanism
10 Jan 2023
Fix available
Severity - 9.8 (Critical)
GHSA-5g2h-9x5v-5h3x
npm/phoenix_html
Hex/phoenix_html
phoenix_html allows Cross-site Scripting in HEEx class attributes
10 Jan 2023
Fix available
Severity - 6.1 (Medium)
GHSA-p8f7-22gq-m7j9
Hex/phoenix
Phoenix before 1.6.14 mishandles check_origin wildcarding
17 Oct 2022
Fix available
Severity - 7.5 (High)
GHSA-xx36-6rv4-gj8r
Hex/ecdsa-elixir
ecdsa-elixir fails to check signatures, vulnerable to message forging
24 May 2022
Fix available
Severity - 9.8 (Critical)
GHSA-9pf7-f47q-mwpq
Hex/rabbit_common
Cross-site Scripting in RabbitMQ
24 May 2022
Fix available
Severity - 3.5 (Low)
GHSA-hrfh-7j5f-8ccr
Hex/RabbitMQ
Pivotal RabbitMQ is vulnerable to a denial of service attack
24 May 2022
Fix available
Severity - 7.5 (High)
GHSA-2h3q-v47h-f4rc
Hex/ejabberd
Ejabberd DoS via malformed stanza
17 May 2022
Fix available
Load more...
(1 page left)
Hex - OSV