Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
BIT-gitlab-2025-9222
  • Bitnami/gitlab
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab 34 minutes ago
  • Fix available
  • Severity - 8.7 (High)
BIT-gitlab-2025-3950
  • Bitnami/gitlab
Exposure of Private Personal Information to an Unauthorized Actor in GitLab 35 minutes ago
  • Fix available
  • Severity - 3.5 (Low)
BIT-gitlab-2025-13781
  • Bitnami/gitlab
Missing Authorization in GitLab 36 minutes ago
  • Fix available
  • Severity - 6.5 (Medium)
BIT-gitlab-2025-13772
  • Bitnami/gitlab
Missing Authorization in GitLab 36 minutes ago
  • Fix available
  • Severity - 7.1 (High)
BIT-gitlab-2025-13761
  • Bitnami/gitlab
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab 36 minutes ago
  • Fix available
  • Severity - 8.0 (High)
BIT-gitlab-2025-11246
  • Bitnami/gitlab
Insufficient Granularity of Access Control in GitLab 37 minutes ago
  • Fix available
  • Severity - 5.4 (Medium)
BIT-gitlab-2025-10569
  • Bitnami/gitlab
Allocation of Resources Without Limits or Throttling in GitLab 37 minutes ago
  • Fix available
  • Severity - 6.5 (Medium)
BIT-virtualenv-2026-22702
  • Bitnami/virtualenv
virtualenv Has TOCTOU Vulnerabilities in Directory Creation 50 minutes ago
  • Fix available
  • Severity - 4.5 (Medium)
BIT-ghost-2026-22597
  • Bitnami/ghost
Ghost has SSRF via External Media Inliner 1 hour ago
  • Fix available
  • Severity - 5.1 (Medium)
BIT-ghost-2026-22596
  • Bitnami/ghost
Ghost has SQL Injection in Members Activity Feed 1 hour ago
  • Fix available
  • Severity - 6.7 (Medium)
BIT-ghost-2026-22595
  • Bitnami/ghost
Ghost has Staff Token permission bypass 1 hour ago
  • Fix available
  • Severity - 8.1 (High)
BIT-ghost-2026-22594
  • Bitnami/ghost
Ghost has Staff 2FA bypass 1 hour ago
  • Fix available
  • Severity - 8.1 (High)
BIT-cosign-2026-22703
  • Bitnami/cosign
Cosign verification accepts any valid Rekor entry under certain conditions 1 hour ago
  • Fix available
  • Severity - 5.5 (Medium)
MAL-2026-245
  • npm/cnamts-captcha-component
Malicious code in cnamts-captcha-component (npm) 4 hours ago
  • No fix available
MAL-2026-244
  • npm/helium-module
Malicious code in helium-module (npm) 5 hours ago
  • No fix available
MAL-2026-241
  • npm/francium-ui
Malicious code in francium-ui (npm) 5 hours ago
  • No fix available