VulnScope — package-centric CVE lookup

Search

616 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

LOW3.9CVE-2023-46126EPSS 0.16%Fides JavaScript Injection Vulnerability in Privacy Center URL10/24/2023
LOW3.9EPSS 0.03%sbt vulnerable to arbitrary file write via archive extraction (Zip Slip)10/24/2023
LOW2.7EPSS 0.23%Wagtail vulnerable to disclosure of user names via admin bulk action views10/19/2023
LOW3.6EPSS 0.58%Redis Unix-domain socket may have be exposed with the wrong permissions for a short time window.10/18/2023
LOW3.7EPSS 0.44%This flaw allows an attacker to insert cookies at will into a running program using libcurl, if the specific series of conditions are met.10/18/2023
LOW3.7EPSS 0.09%vantage6 does not properly delete linked resources when deleting a collaboration10/16/2023
LOW3.9EPSS 0.12%Undici's cookie header not cleared on cross-origin redirect in fetch10/16/2023
LOW3.1EPSS 0.37%Zope management interface vulnerable to stored cross site scripting via the title property10/4/2023
LOW3.1EPSS 0.13%matrix-synapse vulnerable to improper validation of receipts allows forged read receipts9/26/2023
LOW3.7EPSS 0.11%matrix-synapse vulnerable to temporary storage of plaintext passwords during password changes9/26/2023
LOW3.7EPSS 0.50%plone.namedfile vulnerable to Stored Cross Site Scripting with SVG images9/21/2023
LOW3.7EPSS 0.32%Zope vulnerable to Stored Cross Site Scripting with SVG images9/21/2023
LOW3.6EPSS 0.14%Jenkins temporary uploaded file created with insecure permissions9/20/2023
LOW3.6EPSS 0.09%Jenkins temporary uploaded file created with insecure permissions9/20/2023
LOW3.1EPSS 0.47%Spring for GraphQL may be exposed to GraphQL context with values from a different session9/20/2023
LOW3.5EPSS 0.14%Jetty's OpenId Revoked authentication allows one request9/15/2023
LOW3.5EPSS 1.4%Jetty vulnerable to errant command quoting in CGI Servlet9/14/2023
LOW3.9EPSS 0.49%Domain restrictions bypass via DNS Rebinding in WireMock and WireMock Studio9/8/2023
LOW3.3EPSS 0.82%Redis SORT_RO may bypass ACL configuration9/6/2023
LOW3.5EPSS 0.09%CSRF vulnerability in Jenkins Frugal Testing Plugin9/6/2023
LOW3.3EPSS 0.07%Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in hyper-bump-it9/4/2023
LOW3.7EPSS 0.13%Jenkins Tuleap Authentication Plugin non-constant time token comparison8/16/2023
LOW3.3EPSS 0.01%Under some circumstances, this weakness allows a user who has access to run the “ps” utility on a machine, the ability to write almost unli…8/2/2023
LOW3.5EPSS 12.0%Cross-site Scripting in Mingsoft MCMS7/28/2023
LOW3.1EPSS 0.20%Secret displayed without masking by Chef Identity Plugin7/26/2023

← PrevPage 10 of 25Next →