Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-cq3j-qj2h-6rv3
  • SwiftURL/github.com/apple/container
  • SwiftURL/github.com/apple/containerization
 Container and Containerization archive extraction does not guard against escapes from extraction base directory. 57 minutes ago
  • Fix available
  • Severity - 1.9 (Low)
GHSA-jp3q-wwp3-pwv9
  • Packagist/solspace/craft-freeform
 Freeform Craft Plugin CP UI (builder/integrations) has Stored Cross-Site Scripting (XSS) issue 1 hour ago
  • Fix available
  • Severity - 2.1 (Low)
MAL-2026-470
  • PyPI/urlsssser
 Malicious code in urlsssser (PyPI) 1 hour ago
  • No fix available
GHSA-vqxh-445g-37fc
  • Maven/org.springframework.security:spring-security-core
 Spring Security has a broken timing attack mitigation implemented in DaoAuthenticationProvide 1 hour ago
  • Fix available
  • Severity - 5.3 (Medium)
CGA-j5r9-cgjp-w62q
  • Chainguard/pulumi-language-nodejs
  • Wolfi/pulumi-language-nodejs
 See record for full details 2 hours ago
  • Fix available
CGA-hgjv-8vrq-5jv9
  • Chainguard/busybox
  • Wolfi/busybox
 See record for full details 2 hours ago
  • Fix available
CGA-4chh-8c7h-pcpx
  • Chainguard/jitsucom-jitsu-console
  • Wolfi/jitsucom-jitsu-console
 See record for full details 2 hours ago
  • Fix available
MAL-2026-469
  • PyPI/cflashfiles
 Malicious code in cflashfiles (PyPI) 2 hours ago
  • No fix available
MINI-3r45-9w57-g7fq
  • MinimOS/libauth-samba
  • MinimOS/libsmbclient
  • MinimOS/libwbclient
  • MinimOS/py3.13-samba
  • MinimOS/samba
  • ... 16 more
 See record for full details 2 hours ago
  • Fix available
MINI-pv52-h7c3-ghxg
  • MinimOS/libauth-samba
  • MinimOS/libsmbclient
  • MinimOS/libwbclient
  • MinimOS/py3.13-samba
  • MinimOS/samba
  • ... 16 more
 See record for full details 2 hours ago
  • Fix available
MINI-cfrw-2485-q2m3
  • MinimOS/libpulse
  • MinimOS/libpulse-mainloop-glib
  • MinimOS/pulseaudio
  • MinimOS/pulseaudio-alsa
  • MinimOS/pulseaudio-bluez
  • ... 6 more
 See record for full details 2 hours ago
  • Fix available
ECHO-7075-ddfd-72a9
  • Echo/python3.13
 See record for full details 2 hours ago
  • No fix available
ECHO-a3ad-1e4f-ac31
  • Echo/python3.13
 See record for full details 2 hours ago
  • No fix available
ECHO-c06a-d4e1-7228
  • Echo/python3.13
 See record for full details 2 hours ago
  • No fix available
ECHO-077b-81db-c985
  • Echo/python3.13
 See record for full details 2 hours ago
  • No fix available
GHSA-fcv2-xgw5-pqxf
  • Go/github.com/sigstore/sigstore
 sigstore legacy TUF client allows for arbitrary file writes with target cache path traversal 2 hours ago
  • Fix available
  • Severity - 5.8 (Medium)
Load more...