Vulnerability Library

ID
Packages
Summary
Affected versions
Published
Fix
MAL-2024-1051
Malicious code in build-benchmarks (npm)
  • 15.2.4
2024-03-02T12:56:12Z No fix available
MAL-2024-1050
Malicious code in pyalicet (PyPI)
  • 0.0.3
  • 0.0.4
2024-03-02T07:24:49Z No fix available
GHSA-h3m7-rqc4-7h9p
  • Go/github.com/authzed/spicedb
Integer overflow in chunking helper causes dispatching to miss elements or panic
  • See details.
2024-03-01T23:32:10Z Fix available
CVE-2024-27354
  • github.com/phpseclib/phpseclib
See record for full details
  • 0.1.0
  • 0.1.1
  • 0.1.2
  • 0.1.5
  • 0.2.0
  • 0.2.1
  • 0.2.2
  • ...
2024-03-01T23:15:08Z Fix available
CVE-2024-27355
  • github.com/phpseclib/phpseclib
See record for full details
  • 0.1.0
  • 0.1.1
  • 0.1.2
  • 0.1.5
  • 0.2.0
  • 0.2.1
  • 0.2.2
  • ...
2024-03-01T23:15:08Z Fix available
CVE-2024-27101
  • github.com/authzed/spicedb
See record for full details
  • v0.0.1
  • v0.0.2
  • v0.0.3
  • v1.0.0
  • v1.1.0
  • v1.10.0
  • v1.11.0
  • ...
2024-03-01T21:15:08Z Fix available
GHSA-5mhg-wv8w-p59j
  • npm/directus
Directus version number disclosure
  • See details.
2024-03-01T20:11:05Z Fix available
GHSA-8p25-3q46-8q2p
  • PyPI/esphome
ESPHome vulnerable to remote code execution via arbitrary file write
  • 2023.12.9
  • 2024.2.0
  • 2024.2.0b1
  • 2024.2.0b2
  • 2024.2.0b3
2024-03-01T20:09:19Z Fix available
GHSA-4g2x-vq5p-5vj6
  • npm/@budibase/server
Budibase affected by VM2 Constructor Escape Vulnerability
  • See details.
2024-03-01T20:09:00Z Fix available
GHSA-6927-3vr9-fxf2
  • npm/parse-server
ZDI-CAN-19105: Parse Server literalizeRegexPart SQL Injection
  • See details.
2024-03-01T20:08:23Z Fix available
GHSA-h595-vwhc-3xwx
  • Maven/org.apache.archiva:archiva
Apache Archiva Incorrect Authorization vulnerability
  • 2.0.0
  • 2.0.1
  • 2.1.0
  • 2.1.1
  • 2.2.0
  • 2.2.1
  • 2.2.10
  • ...
2024-03-01T18:30:23Z No fix available
GHSA-hp2x-6vrm-7j7v
  • Maven/org.apache.archiva:archiva-common
Apache Archiva Reflected Cross-site Scripting vulnerability
  • 2.0.0
  • 2.0.1
  • 2.1.0
  • 2.1.1
  • 2.2.0
  • 2.2.1
  • 2.2.10
  • ...
2024-03-01T18:30:23Z No fix available
GHSA-rv4h-m4wc-v99w
  • Maven/org.apache.archiva:archiva
Apache Archiva Incorrect Authorization vulnerability
  • 1.1
  • 1.1.1
  • 1.1.2
  • 1.1.3
  • 1.1.4
  • 1.2
  • 1.2-M1
  • ...
2024-03-01T18:30:23Z No fix available
GHSA-w5mx-334j-6fwv
  • Packagist/bagisto/bagisto
Bagist Cross-site Scripting vulnerability
  • v0.1.0
  • v0.1.1
  • v0.1.2
  • v0.1.3
  • v0.1.4
  • v0.1.4-BETA1
  • v0.1.4-BETA2
  • ...
2024-03-01T18:30:23Z Fix available
CVE-2024-27298
  • github.com/parse-community/parse-server
See record for full details
  • 2.0.0
  • 2.0.1
  • 2.0.2
  • 2.0.3
  • 2.0.4
  • 2.0.5
  • 2.0.6
  • ...
2024-03-01T18:15:28Z Fix available
MAL-2024-1049
Malicious code in sdge-it-tdg-dynamicloadprofiles (npm)
  • 1.0.1
2024-03-01T18:01:24Z No fix available