Vulnerability Database
Blog
FAQ
Docs
Vulnerabilities
search
All ecosystems
303200
AlmaLinux
3524
Alpine
3673
Android
2865
Bitnami
5373
Chainguard
26343
CRAN
10
crates.io
1696
Debian
46032
GHC
3
GIT
28094
GitHub Actions
27
Go
4200
Hackage
23
Hex
35
Linux
13573
Mageia
5595
Maven
5496
npm
25356
NuGet
1434
openSUSE
9947
OSS-Fuzz
3594
Packagist
4634
Pub
10
PyPI
15720
Red Hat
15853
Rocky Linux
1757
RubyGems
1681
SUSE
16155
SwiftURL
35
Ubuntu
46094
Wolfi
14368
ID
Packages
Summary
Published
arrow_upward
Attributes
MAL-2025-3864
npm/yamoney-guidelines
Malicious code in yamoney-guidelines (npm)
2 hours ago
No fix available
MGASA-2025-0157
Mageia:9/openssh
Updated openssh packages fix security vulnerability
4 hours ago
Fix available
MGASA-2025-0158
Mageia:9/dropbear
Updated dropbear packages fix security vulnerability
4 hours ago
Fix available
GHSA-g98g-r7gf-2r25
Packagist/auth0/auth0-php
Forgeable Encrypted Session Cookie in Apps Using Auth0-PHP SDK
6 hours ago
Fix available
Severity - 9.1 (Critical)
GHSA-99pm-ch96-ccp2
PyPI/flask-appbuilder
Flask-AppBuilder open redirect vulnerability using HTTP host injection
7 hours ago
Fix available
Severity - 4.3 (Medium)
CGA-wfj8-cr4x-8f6c
Chainguard/dataplaneapi
Wolfi/dataplaneapi
See record for full details
7 hours ago
Fix available
CGA-8whh-h694-wcjr
Chainguard/grafana-11.2
Chainguard/grafana-11.2-oci-compat
See record for full details
7 hours ago
Fix available
CGA-m2q3-jw38-78pr
Chainguard/grafana-11.4
Chainguard/grafana-11.4-oci-compat
See record for full details
7 hours ago
Fix available
GHSA-q97m-8853-pq76
Go/github.com/seaweedfs/seaweedfs
SeaweedFS Vulnerable to SQL Injection
9 hours ago
Fix available
Severity - 6.5 (Medium)
CGA-rprf-m72h-pcfg
Chainguard/grafana-oncall
Wolfi/grafana-oncall
Chainguard/grafana-oncall-compat
Wolfi/grafana-oncall-compat
See record for full details
9 hours ago
Fix available
CGA-3h8c-6h59-gffq
Chainguard/kubevela-fips
Chainguard/kubevela-fips-vela-cli
Chainguard/kubevela-fips-vela-core
See record for full details
9 hours ago
Fix available
GHSA-3vcg-j39x-cwfm
PyPI/vyper
Vyper's `slice()` may elide side-effects when output length is 0
10 hours ago
No fix available
Severity - 2.9 (Low)
GHSA-7cx3-6m66-7c5m
PyPI/tornado
Tornado vulnerable to excessive logging caused by malformed multipart form data
10 hours ago
Fix available
Severity - 7.5 (High)
GHSA-qhr6-mgqr-mchm
PyPI/vyper
Vyper's `concat()` builtin may elide side-effects for zero-length arguments
10 hours ago
No fix available
Severity - 2.9 (Low)
CVE-2025-37890
Debian:11/linux
Debian:12/linux
Debian:13/linux
See record for full details
11 hours ago
No fix available
CVE-2025-40907
Debian:11/libfcgi-perl
Debian:12/libfcgi-perl
Debian:13/libfcgi-perl
See record for full details
11 hours ago
Fix available
Load more...
Vulnerability Database - OSV