VulnScope — package-centric CVE lookup

Search

616 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

LOW2.6CVE-2024-38364EPSS 0.11%DSpace Cross Site Scripting (XSS) via a deposited HTML/XML document6/25/2024
LOW2.7EPSS 0.09%Keycloak leaks configured LDAP bind credentials through the Keycloak admin console6/21/2024
LOW3.7EPSS 0.20%Keycloak Denial of Service via account lockout6/12/2024
LOW3.7EPSS 12.3%Keycloak's improper input validation allows using email as username6/12/2024
LOW3.9EPSS 0.08%zenml-io/zenml does not expire the session after password reset6/8/2024
LOW3.3EPSS 0.01%Improper authentication in zenml6/6/2024
LOW3.4EPSS 0.06%Cross site scripting in zenml6/6/2024
LOW3.1EPSS 0.04%Race condition in zenml6/6/2024
LOW2.0EPSS 0.09%Slack integration leaks sensitive information in logs6/2/2024
LOW2.3EPSS 0.10%Fides Webserver Logs Hosted Database Password Partial Exposure Vulnerability5/29/2024
LOW2.7EPSS 0.20%vantage6 collaboration admins can extend their influence by expanding the collaboration5/22/2024
LOW2.8EPSS 0.03%Hardware logic contains race conditions in some Intel(R) Processors may allow an authenticated user to potentially enable partial informati…5/16/2024
LOW3.3EPSS 0.18%Cloning local Git repository by untrusted user allows the untrusted user to modify objects in the cloned repository at will5/14/2024
LOW3.9EPSS 0.11%tqdm CLI arguments injection attack5/3/2024
LOW3.9EPSS 0.10%LIEF obtain sensitive information via the name parameter5/3/2024
LOW3.3EPSS 0.10%Jenkins Telegram Bot Plugin stores the Telegram Bot token in plaintext5/2/2024
LOW2.7EPSS 0.08%Wagtail has permission check bypass when editing a model with per-field restrictions through `wagtail.contrib.settings` or `ModelViewSet`5/1/2024
LOW2.7EPSS 0.11%Improper Certificate Validation vulnerability in Apache Airflow FTP Provider4/21/2024
LOW3.4EPSS 0.05%Keycloak vulnerable to impersonation via logout token exchange4/17/2024
LOW3.4EPSS 24.4%Transformers Deserialization of Untrusted Data vulnerability4/10/2024
LOW3.5EPSS 0.20%Xuxueli xxl-job template injection vulnerability4/6/2024
LOW3.3EPSS 10.9%util-linux - security update3/27/2024
LOW3.5EPSS 0.91%When a protocol selection parameter option disables all protocols without adding any then the default set of protocols would remain in the…3/27/2024
LOW3.7EPSS 0.17%Unauthenticated views may expose information to anonymous users3/26/2024
LOW3.5EPSS 0.12%In Quarkus, git credentials could be inadvertently published3/13/2024

← PrevPage 8 of 25Next →