Vulnerability Database
Blog
FAQ
Docs
Vulnerabilities
search
All ecosystems
313594
AlmaLinux
3768
Alpine
3715
Android
2907
Bitnami
5637
Chainguard
27651
CRAN
10
crates.io
1724
Debian
46788
GHC
3
GIT
29488
GitHub Actions
28
Go
4338
Hackage
23
Hex
37
Linux
13573
Mageia
5637
Maven
5599
MinimOS
1700
npm
27047
NuGet
1446
openSUSE
10078
OSS-Fuzz
3622
Packagist
4729
Pub
10
PyPI
15961
Red Hat
16327
Rocky Linux
1758
RubyGems
1685
SUSE
16442
SwiftURL
35
Ubuntu
46770
Wolfi
15058
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-3w94-vq2x-v5wr
crates.io/ethereum
ethereum does not check transaction malleability for EIP-2930, EIP-1559 and EIP-7702 transactions
3 days ago
Fix available
Severity - 6.9 (Medium)
GHSA-gjv3-89hh-9xq2
crates.io/risc0-ethereum-contracts
RISC Zero Ethereum invalid commitment with digest value of zero accepted by Steel.validateCommitment
25 Jun
Fix available
Severity - 1.7 (Low)
GHSA-jpv7-p47h-f43j
crates.io/letmeind
crates.io/letmeinfwd
letmein connection limiter allows an arbitrary amount of simultaneous connections
23 Jun
Fix available
Severity - 4.6 (Medium)
GHSA-5p2p-6g2c-hf7m
crates.io/spytrap-adb
spytrap-adb Omission of Security-relevant Information
23 Jun
Fix available
Severity - 2.7 (Low)
GHSA-g3qg-6746-3mg9
crates.io/risc0-zkvm
crates.io/risc0-circuit-rv32im
zkVM Underconstrained Vulnerability
20 Jun
Fix available
Severity - 2.7 (Low)
GHSA-93c7-7xqw-w357
crates.io/pingora-core
Pingora has a Request Smuggling Vulnerability
20 Jun
Fix available
Severity - 7.4 (High)
GHSA-9ghp-w2hm-vfpf
crates.io/wasmtime-jit-debug
wasmtime_jit_debug Dumps Undefined Memory by `JitDumpFile`
17 Jun
Fix available
Severity - 5.5 (Medium)
GHSA-v33j-v3x4-42qg
crates.io/hurl
Regex literal in Hurl files are not escaped when exported to HTML, allowing injections
11 Jun
Fix available
RUSTSEC-2025-0041
crates.io/matrix-sdk-crypto
matrix-sdk-crypto vulnerable to encrypted event sender spoofing by homeserver administrator
11 Jun
Fix available
Severity - 4.9 (Medium)
GHSA-x958-rvg6-956w
crates.io/matrix-sdk-crypto
matrix-sdk-crypto vulnerable to sender of encrypted events being spoofed by homeserver administrator
10 Jun
Fix available
Severity - 4.9 (Medium)
GHSA-jv4x-jv3h-qff5
crates.io/deno
Deno vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
05 Jun
Fix available
Severity - 5.3 (Medium)
GHSA-m65q-v92h-cm7q
crates.io/users
users may append `root` to group listings
05 Jun
No fix available
Severity - 7.1 (High)
GHSA-pr59-jjr4-gcf6
crates.io/anon-vec
anon-vec lacks sufficient checks in public API
05 Jun
No fix available
GHSA-8vxj-4cph-c596
crates.io/deno
crates.io/deno_node
Deno has --allow-read / --allow-write permission bypass in `node:sqlite`
04 Jun
Fix available
Severity - 5.5 (Medium)
GHSA-7w8p-chxq-2789
crates.io/deno
crates.io/deno_runtime
Deno.env.toObject() ignores the variables listed in --deny-env and returns all environment variables
04 Jun
Fix available
Severity - 5.5 (Medium)
GHSA-xqxc-x6p3-w683
crates.io/deno
crates.io/deno_runtime
Deno run with --allow-read and --deny-read flags results in allowed
04 Jun
Fix available
Severity - 5.5 (Medium)
Load more...
crates.io - OSV