Know every threat before it ships
200K+ vulnerabilities, malicious packages, and supply chain threats enriched with Corgea's research.
UNKNOWN
CVE-2026-47425
rattler has an entry-point path traversal in noarch:python install (arbitrary file write)
HIGH 7.4
CVE-2026-45310
DeepSeek TUI has SSRF via HTTP Redirect Bypass in fetch_url Tool
CRITICAL 9.6
CVE-2026-45311
DeepSeek TUI: run_tests Tool Enables RCE via Malicious Repository Without Approval
HIGH 7.5
CVE-2026-42559
dynoxide: DNS rebinding and cross-origin CSRF via MCP HTTP transport
MEDIUM 5.9
CVE-2023-48795
Prefix Truncation Attack against ChaCha20-Poly1305 and Encrypt-then-MAC aka Terrapin
MEDIUM 4.3
GHSA-88q9-cmp2-c2vq
oxidize-pdf: NaN/inf bypass in colour content-stream emission causes PDF rejection (DoS)
MEDIUM 6.3
CVE-2021-39216
Out-of-bounds read/write and invalid free with `externref`s and GC safepoints in Wasmtime
HIGH 7.2
CVE-2021-32629
Memory access due to code generation flaw in Cranelift module
CRITICAL 9.8
CVE-2022-31053
Signature forgery in Biscuit
HIGH 8.8
CVE-2023-4863
libwebp: OOB write in BuildHuffmanTable
MEDIUM 6.5
CVE-2020-36846
Integer overflow in the bundled Brotli C library
UNKNOWN
CVE-2026-22696
dcap-qvl has Missing Verification for QE Identity
MEDIUM 5.3
GO-2024-3101
CWA-2023-004: Excessive number of function parameters in compiled Wasm
UNKNOWN
GO-2025-3449
wasmvm: Malicious smart contract can slow down block production
UNKNOWN
CVE-2025-31477
Improper Scope Validation in the `open` Endpoint of `tauri-plugin-shell`
UNKNOWN
CVE-2024-29640
aliyundrive-webdav vulnerable to Command Injection
HIGH 7.5
CVE-2024-43414
Apollo Query Planner and Apollo Gateway may infinitely loop on sufficiently complex queries
CRITICAL 9.8
CVE-2018-20998
Potential memory corruption in arrayfire
MEDIUM 4.3
RUSTSEC-2024-0361
Gas mispricing in cosmwasm-vm
HIGH 8.4
CVE-2023-46115
Tauri's Updater Private Keys Possibly Leaked via Vite Environment Variables
Ready to move
Start Securing
Free, no credit card | First findings in minutes