Security Vulnerabilities Database

HIGH 7.5

NuGet

CVE-2026-45591

Microsoft Security Advisory CVE-2026-45591 – ASP.NET Core Denial of Service Vulnerability

Jun 15, 2026

HIGH 7.4

PyPI

CVE-2026-48526

PyJWT: Public-key JWK accepted as HMAC secret enables forged HS256 tokens when mixed families are allowed

Jun 15, 2026

HIGH 7.8

PyPI

CVE-2020-29367

Nov 27, 2020

HIGH 7.5

PyPI

CVE-2026-46373

SQLFluff: Recursive Stack Overflow in Parser

May 19, 2026

HIGH 7.5

PyPI

CVE-2026-46374

SQLFluff: Uncontrolled Resource Consumption in SQLFluff Parser

May 19, 2026

HIGH 8.0

Maven

CVE-2026-53441

Jenkins: Stored XSS vulnerability in node offline cause description

Jun 10, 2026

HIGH 8.1

npm

CVE-2026-45013

Apostrophe has a Weak Password Recovery Mechanism for Forgotten Password and Improper Input Validation

May 14, 2026

HIGH 7.3

npm

CVE-2026-45011

Apostrophe has stored XSS via javascript: URL in Image Widget Link

May 14, 2026

HIGH 7.2

Go

CVE-2026-42306

Docker: Race condition in docker cp allows bind mount redirection to host path

May 18, 2026

HIGH 7.6

npm

CVE-2026-45012

Apostrophe has authenticated SSRF in rich-text widget import via @apostrophecms/area/validate-widget

May 14, 2026

HIGH 8.1

Maven

CVE-2026-41731

In Spring for Apache Kafka, overly broad trusted-package matching in header mappers exposes JDK classes to deserialization

Jun 10, 2026

HIGH 7.5

Go

CVE-2026-54091

File Browser has incorrect access control for public directory shares via rule path rebasing

Jun 12, 2026

HIGH 7.7

Go

CVE-2026-53999

Radius Controller May Delete a Container Resource via an Injected Deployment Annotation (Multi-Tenant Installs)

Jun 12, 2026

HIGH 8.1

npm

GHSA-gv7w-rqvm-qjhr

esbuild: Missing binary integrity verification in Deno module enables remote code execution via NPM_CONFIG_REGISTRY

Jun 12, 2026

HIGH 7.5

Maven

CVE-2026-45416

Netty: SNI handler pre-allocates up to 16 MiB from nine attacker bytes

Jun 8, 2026

HIGH 7.5

Maven

CVE-2026-44893

Netty: HAProxy SSL TLV parsing leaks retained slice on invalid TLV length

Jun 8, 2026

HIGH 7.5

Maven

CVE-2026-44894

Netty's Default QUIC token handler accepts any client-supplied token

Jun 8, 2026

HIGH 7.5

Maven

CVE-2026-46340

Netty: SCTP reassembly nests buffers without bound

Jun 8, 2026

HIGH 8.7

Maven

CVE-2026-45674

Netty Vulnerable to DNS Cache Poisoning via Missing Bailiwick Checks in CNAME Records

Jun 8, 2026

HIGH 8.7

Maven

CVE-2026-47691

Netty has Insufficient Bailiwick Validation for NS Records

Jun 8, 2026

HIGH 8.8

npm

CVE-2026-46475

FlowiseAI: Assistant create+update mass-assignment allows cross-workspace assistant takeover

May 14, 2026

HIGH 8.6

npm

CVE-2026-47209

vm2's Bridge Proxy set trap ignores receiver parameter, enabling host object property injection via prototype chain

May 29, 2026

HIGH 8.7

npm

CVE-2026-47135

vm2 has a sandbox escape via unblocked cross-realm Symbol.for keys + missing bridge write-trap symbol checks

May 29, 2026

HIGH 8.6

npm

CVE-2026-47139

NodeVM network builtin exclusions bypass via internal _http_client and _http_server

May 29, 2026

HIGH 8.8

npm

CVE-2026-46519

MCP Server Kubernetes: Tool Access Control Bypass via Presentation-Layer Filtering Without Execution-Layer Enforcement

May 21, 2026

HIGH 7.0

npm

CVE-2026-44495

axios Vulnerable to Credential Theft and Response Hijacking via Prototype Pollution Gadget in Config Merge

May 29, 2026

HIGH 8.7

npm

CVE-2026-44494

axios Vulnerable to Full Man-in-the-Middle via Prototype Pollution Gadget in `config.proxy`

May 29, 2026

HIGH 7.5

Go

CVE-2026-32936

CoreDNS DoH GET oversized dns= query parameter causes pre-validation CPU and memory amplification

Apr 28, 2026

HIGH 7.5

npm

CVE-2026-44486

Axios: Proxy-Authorization header leaks to redirect target when proxy is re-evaluated to direct connection

Jun 4, 2026

HIGH 7.5

Maven

CVE-2026-44892

Netty has a Vulnerable Default Configuration Which Leads to Denial of Service via Unbounded HTTP/3 Header Size

Jun 8, 2026

HIGH 7.5

Maven

CVE-2026-44250

Netty: Memory Exhaustion in RedisArrayAggregator due to Deeply Nested Arrays

Jun 8, 2026

HIGH 7.5

Maven

CVE-2026-44890

Netty has Unbounded Direct Memory Consumption in its RedisDecoder

Jun 8, 2026

HIGH 8.1

Maven

CVE-2026-44249

Netty has an IPv6 Subnet Filter Bypass via Incorrect Comparator Masking

Jun 8, 2026

HIGH 7.5

npm

CVE-2026-44488

Allocation of Resources Without Limits or Throttling in Axios

Jun 4, 2026

HIGH 8.1

Maven

GHSA-j9gf-vw2f-9hrw

Appsmith: Configuration-dependent origin validation bypass in password reset and email verification link generation

Jun 12, 2026

HIGH 8.1

Maven

GHSA-9wcp-79g5-5c3c

Appsmith Super User Creation Race Condition Allows Multiple Instance Administrators

Jun 12, 2026

HIGH 7.5

npm

CVE-2026-48151

Budibase: Webhook schema endpoint authorization bypass allows unauthenticated mutation of webhook and automation schema

Jun 12, 2026

HIGH 8.1

npm

CVE-2026-48152

Budibase: Basic app users can exfiltrate stored REST datasource auth by rewriting datasource base URL

Jun 12, 2026

HIGH 7.2

Maven

CVE-2025-52465

GeoServer has an arbitrary file write vulnerability in its Master Password Dump Page

Jun 12, 2026

HIGH 7.7

npm

CVE-2026-48146

Budibase: SSRF via OAuth2 Config Validation — Missing fetchWithBlacklist Protection

Jun 12, 2026

HIGH 7.0

PyPI

CVE-2026-25087

Apache Arrow: Potential use-after-free when reading IPC file with pre-buffering

Feb 17, 2026

HIGH 7.7

Go

CVE-2026-47701

OpenTelemetry Operator for Kubernetes's ServiceMonitor bearerTokenFile reads arbitrary local file and sends contents as bearer auth

Jun 10, 2026

HIGH 7.5

npm

CVE-2026-48069

@grpc/grpc-js: An incoming malformed compressed message can cause a client or server crash

Jun 11, 2026

HIGH 7.5

npm

CVE-2026-48068

@grpc/grpc-js: A malformed request can cause a server crash

Jun 11, 2026

HIGH 7.1

PyPI

CVE-2026-48099

WsgiDAV encoded dot segments can escape filesystem share roots

Jun 11, 2026

HIGH 8.0

Go

CVE-2026-11401

AWS Advanced Go Wrapper has Privilege Escalation in Aurora PostgreSQL instance

Jun 11, 2026

HIGH 8.2

NuGet

CVE-2026-48109

MessagePack's LZ4 decompression may fail with AccessViolationException after dereferencing memory from bad input

Jun 11, 2026

HIGH 7.2

Maven

CVE-2025-27511

GeoServer DB2 DataStore Extension has a JNDI Vulnerability via Store Connection

Jun 11, 2026

HIGH 7.5

Maven

CVE-2026-40981

Spring Cloud Config has an Authorization Bypass Through User-Controlled Key

May 7, 2026

HIGH 7.5

Maven

CVE-2020-13935

Infinite Loop in Apache Tomcat

Feb 8, 2022

HIGH 7.5

Maven

CVE-2020-11996

Uncontrolled Resource Consumption in Apache Tomcat

Feb 9, 2022

HIGH 7.5

npm

CVE-2023-2968

proxy denial of service vulnerability

May 30, 2023

HIGH 7.5

NuGet

CVE-2026-46520

ImageMagick: Heap Buffer Over-Write in IPL decoder when reading multiple images of different dimensions

May 18, 2026

HIGH 7.5

npm

CVE-2026-46679

js-libp2p: Memory DoS via subscription flood of unique topics

May 21, 2026

HIGH 7.5

NuGet

CVE-2026-46522

ImageMagick: Infinite Loop in the MIFF decoder can lead to CPU exhaustion

May 18, 2026

HIGH 8.8

PyPI

CVE-2026-42305

Dulwich has an arbitrary file write via NTFS-hostile tree entries on Windows

May 28, 2026

HIGH 7.5

npm

CVE-2026-46625

JavaScript Cookie: Per-instance prototype hijack in assign() enables cookie-attribute injection

May 21, 2026

HIGH 8.8

npm

CVE-2026-46444

FlowiseAI: Vector Store No Permission Checks

May 14, 2026

Know every threat before it ships

Microsoft Security Advisory CVE-2026-45591 – ASP.NET Core Denial of Service Vulnerability

PyJWT: Public-key JWK accepted as HMAC secret enables forged HS256 tokens when mixed families are allowed

CVE-2020-29367

SQLFluff: Recursive Stack Overflow in Parser

SQLFluff: Uncontrolled Resource Consumption in SQLFluff Parser

Jenkins: Stored XSS vulnerability in node offline cause description

Apostrophe has a Weak Password Recovery Mechanism for Forgotten Password and Improper Input Validation

Apostrophe has stored XSS via javascript: URL in Image Widget Link

Docker: Race condition in docker cp allows bind mount redirection to host path

Apostrophe has authenticated SSRF in rich-text widget import via @apostrophecms/area/validate-widget

In Spring for Apache Kafka, overly broad trusted-package matching in header mappers exposes JDK classes to deserialization

File Browser has incorrect access control for public directory shares via rule path rebasing

Radius Controller May Delete a Container Resource via an Injected Deployment Annotation (Multi-Tenant Installs)

esbuild: Missing binary integrity verification in Deno module enables remote code execution via NPM_CONFIG_REGISTRY

Netty: SNI handler pre-allocates up to 16 MiB from nine attacker bytes

Netty: HAProxy SSL TLV parsing leaks retained slice on invalid TLV length

Netty's Default QUIC token handler accepts any client-supplied token

Netty: SCTP reassembly nests buffers without bound

Netty Vulnerable to DNS Cache Poisoning via Missing Bailiwick Checks in CNAME Records

Netty has Insufficient Bailiwick Validation for NS Records

FlowiseAI: Assistant create+update mass-assignment allows cross-workspace assistant takeover

vm2's Bridge Proxy set trap ignores receiver parameter, enabling host object property injection via prototype chain

vm2 has a sandbox escape via unblocked cross-realm Symbol.for keys + missing bridge write-trap symbol checks

NodeVM network builtin exclusions bypass via internal _http_client and _http_server

MCP Server Kubernetes: Tool Access Control Bypass via Presentation-Layer Filtering Without Execution-Layer Enforcement

axios Vulnerable to Credential Theft and Response Hijacking via Prototype Pollution Gadget in Config Merge

axios Vulnerable to Full Man-in-the-Middle via Prototype Pollution Gadget in `config.proxy`

CoreDNS DoH GET oversized dns= query parameter causes pre-validation CPU and memory amplification

Axios: Proxy-Authorization header leaks to redirect target when proxy is re-evaluated to direct connection

Netty has a Vulnerable Default Configuration Which Leads to Denial of Service via Unbounded HTTP/3 Header Size

Netty: Memory Exhaustion in RedisArrayAggregator due to Deeply Nested Arrays

Netty has Unbounded Direct Memory Consumption in its RedisDecoder

Netty has an IPv6 Subnet Filter Bypass via Incorrect Comparator Masking

Allocation of Resources Without Limits or Throttling in Axios

Appsmith: Configuration-dependent origin validation bypass in password reset and email verification link generation

Appsmith Super User Creation Race Condition Allows Multiple Instance Administrators

Budibase: Webhook schema endpoint authorization bypass allows unauthenticated mutation of webhook and automation schema

Budibase: Basic app users can exfiltrate stored REST datasource auth by rewriting datasource base URL

GeoServer has an arbitrary file write vulnerability in its Master Password Dump Page

Budibase: SSRF via OAuth2 Config Validation — Missing fetchWithBlacklist Protection

Apache Arrow: Potential use-after-free when reading IPC file with pre-buffering

OpenTelemetry Operator for Kubernetes's ServiceMonitor bearerTokenFile reads arbitrary local file and sends contents as bearer auth

@grpc/grpc-js: An incoming malformed compressed message can cause a client or server crash

@grpc/grpc-js: A malformed request can cause a server crash

WsgiDAV encoded dot segments can escape filesystem share roots

AWS Advanced Go Wrapper has Privilege Escalation in Aurora PostgreSQL instance

MessagePack's LZ4 decompression may fail with AccessViolationException after dereferencing memory from bad input

GeoServer DB2 DataStore Extension has a JNDI Vulnerability via Store Connection

Spring Cloud Config has an Authorization Bypass Through User-Controlled Key

Infinite Loop in Apache Tomcat

Uncontrolled Resource Consumption in Apache Tomcat

proxy denial of service vulnerability

ImageMagick: Heap Buffer Over-Write in IPL decoder when reading multiple images of different dimensions

js-libp2p: Memory DoS via subscription flood of unique topics

ImageMagick: Infinite Loop in the MIFF decoder can lead to CPU exhaustion

Dulwich has an arbitrary file write via NTFS-hostile tree entries on Windows

JavaScript Cookie: Per-instance prototype hijack in assign() enables cookie-attribute injection

FlowiseAI: Vector Store No Permission Checks

Start Securing