Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
GHSA-rr33-j5p5-ppf8
  • Maven/org.geoserver:gs-main
  • Maven/org.geoserver:gs-main
GeoServer allows SSRF via the option for setting a proxy host
  • See details.
2022-05-18T19:10:33Z No fix available
PYSEC-2021-126
  • PyPI/ansible
  • 1.0
  • 1.1
  • 1.2
  • 1.2.1
  • 1.2.2
  • 1.2.3
  • 1.3.0
  • ...
2022-05-18T17:37:44.915234Z No fix available
PYSEC-2021-125
  • PyPI/ansible
  • 1.0
  • 1.1
  • 1.2
  • 1.2.1
  • 1.2.2
  • 1.2.3
  • 1.3.0
  • ...
2022-05-18T17:37:44.797338Z No fix available
PYSEC-2020-221
  • PyPI/ansible
  • 1.0
  • 1.1
  • 1.2
  • 1.2.1
  • 1.2.2
  • 1.2.3
  • 1.3.0
  • ...
2022-05-18T17:37:44.697195Z No fix available
PYSEC-2020-220
  • PyPI/ansible
  • 1.0
  • 1.1
  • 1.2
  • 1.2.1
  • 1.2.2
  • 1.2.3
  • 1.3.0
  • ...
2022-05-18T17:37:44.594250Z No fix available
GHSA-5mc7-m686-p6jg
  • Maven/org.apache.dubbo:dubbo
  • Maven/com.alibaba:dubbo
Deserialization of Untrusted Data in Apache Dubbo
  • 2.7.0
  • 2.7.1
  • 2.7.2
  • 2.7.3
  • 2.7.4
  • 2.7.4.1
  • 2.7.5
  • ...
2022-05-18T04:30:42.069082Z Fix available
GHSA-cr5j-953j-xw5p
  • RubyGems/nokogiri
  • RubyGems/rexical
Arbitrary execution of code in Nokogiri
  • 1.0.0
  • 1.0.1
  • 1.0.2
  • 1.0.3
  • 1.0.4
  • 1.0.5
  • 1.0.6
  • ...
2022-05-18T04:26:38.437169Z Fix available
GHSA-hj2j-77xm-mc5v
  • PyPI/Jinja2
High severity vulnerability that affects Jinja2
  • 2.0
  • 2.0rc1
  • 2.1
  • 2.1.1
  • 2.2
  • 2.2.1
  • 2.3
  • ...
2022-05-18T04:26:19.933855Z Fix available
GHSA-xp5j-wj4h-2jq9
  • Maven/org.apache.unomi:unomi
Injection and Improper Input Validation in Apache Unomi
  • 1.0.0-incubating
  • 1.1.0-incubating
  • 1.2.0-incubating
  • 1.3.0-incubating
  • 1.5.0
  • 1.5.1
2022-05-18T04:26:18.348868Z Fix available
GHSA-8c89-2vwr-chcq
  • PyPI/tensorflow
  • PyPI/tensorflow
  • PyPI/tensorflow
  • PyPI/tensorflow
  • PyPI/tensorflow-cpu
  • PyPI/tensorflow-cpu
  • PyPI/tensorflow-cpu
  • PyPI/tensorflow-cpu
  • PyPI/tensorflow-gpu
  • PyPI/tensorflow-gpu
  • PyPI/tensorflow-gpu
  • PyPI/tensorflow-gpu
Heap buffer overflow in `QuantizedResizeBilinear`
  • 0.12.0
  • 0.12.1
  • 1.0.0
  • 1.0.1
  • 1.1.0
  • 1.10.0
  • 1.10.1
  • ...
2022-05-18T04:26:08.632119Z Fix available
GHSA-63xm-rx5p-xvqr
  • PyPI/tensorflow
  • PyPI/tensorflow
  • PyPI/tensorflow
  • PyPI/tensorflow
  • PyPI/tensorflow
  • PyPI/tensorflow-cpu
  • PyPI/tensorflow-cpu
  • PyPI/tensorflow-cpu
  • PyPI/tensorflow-cpu
  • PyPI/tensorflow-cpu
  • PyPI/tensorflow-gpu
  • PyPI/tensorflow-gpu
  • PyPI/tensorflow-gpu
  • PyPI/tensorflow-gpu
  • PyPI/tensorflow-gpu
Heap buffer overflow in Tensorflow
  • 0.12.0
  • 0.12.1
  • 1.0.0
  • 1.0.1
  • 1.1.0
  • 1.10.0
  • 1.10.1
  • ...
2022-05-18T04:26:01.309641Z Fix available
GHSA-j7xg-5549-jr3j
  • Maven/org.zaproxy:zap
Improper Certificate Validation in OWASP ZAP
  • 2.10.0
  • 2.11.0
  • 2.11.1
  • 2.5.0
  • 2.6.0
  • 2.7.0
  • 2.8.0
  • ...
2022-05-18T04:25:57.275347Z No fix available
GHSA-74qp-233x-p5j8
  • Maven/org.apache.livy:livy-main
Cross-site scripting (XSS) in Apache Livy
  • 0.7.0
  • 0.7.0-incubating
2022-05-18T04:25:57.206533Z Fix available
GHSA-pghf-347x-c2gj
  • PyPI/django-debug-toolbar
  • PyPI/django-debug-toolbar
  • PyPI/django-debug-toolbar
SQL Injection via in django-debug-toolbar
  • 0.10.0
  • 0.10.1
  • 0.10.2
  • 0.11
  • 0.11.0
  • 1.0
  • 1.0.1
  • ...
2022-05-18T04:25:55.738961Z Fix available
GHSA-hwcx-9p4j-7hwj
  • Maven/ro.pippo:pippo-jaxb
XML Entity Expansion in Pippo
  • 0.10.0
  • 0.6.0
  • 0.6.1
  • 0.7.0
  • 0.8.0
  • 0.9.0
  • 0.9.1
  • ...
2022-05-18T04:25:52.822351Z No fix available
GHSA-mh37-8c3g-3fgc
  • RubyGems/rubygems-update
  • RubyGems/rubygems-update
Escape sequence injection in RubyGems
  • 2.6.0
  • 2.6.1
  • 2.6.10
  • 2.6.11
  • 2.6.12
  • 2.6.13
  • 2.6.14
  • ...
2022-05-18T04:25:52.214214Z Fix available