Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
CVE-2025-62517
  • github.com/rollbar/rollbar.js
 Rollbar.js Prototype Pollution Vulnerability in merge() 20 hours ago
  • Fix available
  • Severity - 5.9 (Medium)
CVE-2025-62169
  • github.com/wildrikku/octoprint-spoolmanager
 OctoPrint-SpoolManager Plugin APIs do not enforce authentication yesterday
  • Fix available
  • Severity - 8.1 (High)
CVE-2025-59048
  • github.com/openbao/openbao-plugins
 OpenBao AWS Plugin Vulnerable to Cross-Account IAM Role Impersonation in AWS Auth Method yesterday
  • Fix available
  • Severity - 8.1 (High)
CVE-2025-62820
  • github.com/slackhq/nebula
 See record for full details yesterday
  • Fix available
  • Severity - 4.9 (Medium)
CVE-2025-62813
  • github.com/lz4/lz4
 See record for full details yesterday
  • Fix available
  • Severity - 5.9 (Medium)
OSV-2025-852
  • OSS-Fuzz/arrow
  • github.com/apache/arrow.git
 Heap-buffer-overflow in std::__1::pair<int, arrow::util::RleBitPackedParser::ControlFlow> arrow::util::R yesterday
  • Fix available
CVE-2025-62710
  • github.com/sakaiproject/sakai
 Sakai kernel-impl: predictable PRNG used to generate server‑side encryption key in EncryptionUtilityServiceImpl yesterday
  • Fix available
  • Severity - 2.6 (Low)
CVE-2025-62708
  • github.com/py-pdf/pypdf
 pypdf manipulated LZWDecode streams can exhaust RAM yesterday
  • Fix available
  • Severity - 6.6 (Medium)
CVE-2025-62707
  • github.com/py-pdf/pypdf
 pypdf affected by possible infinite loop when reading DCT inline images without EOF marker yesterday
  • Fix available
  • Severity - 6.6 (Medium)
CVE-2025-62706
  • github.com/authlib/authlib
 Authlib : JWE zip=DEF decompression bomb enables DoS yesterday
  • Fix available
  • Severity - 6.5 (Medium)
CVE-2025-62705
  • github.com/openbao/openbao
 OpenBao and Vault Leak []byte Fields in Audit Logs yesterday
  • Fix available
  • Severity - 5.7 (Medium)
CVE-2025-62617
  • github.com/admidio/admidio
 Admidio Vulnerable to Authenticated SQL Injection in Member Assignment Functionality yesterday
  • Fix available
  • Severity - 7.2 (High)
CVE-2025-62614
  • github.com/booklore-app/booklore
 BookLore Media API Authentication Bypass yesterday
  • Fix available
  • Severity - 8.7 (High)
CVE-2025-62613
  • github.com/steveseguin/vdo.ninja
 VDO.Ninja Reflected XSS Vulnerability in control.html yesterday
  • Fix available
  • Severity - 6.9 (Medium)
CVE-2025-62612
  • github.com/labring/fastgpt
 FastGPT File Reading Node SSRF Vulnerability yesterday
  • Fix available
  • Severity - 6.9 (Medium)
CVE-2025-62611
  • github.com/aio-libs/aiomysql
 aiomysql allows arbitrary access to client files through vulnerability of a malicious MySQL server yesterday
  • Fix available
  • Severity - 8.2 (High)
Load more...