VulnScope — package-centric CVE lookup

Search

525 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

LOW3.7CVE-2025-10939EPSS 0.01%Keycloak unable to restrict access to the admin console12/2/2025
LOW3.6EPSS 0.02%Spotipy has a XSS vulnerability in its OAuth callback server12/1/2025
LOW3.7EPSS 0.05%NutzBoot vulnerable to deserialization12/1/2025
LOW2.8EPSS 0.01%Mustangproject allows exfiltrating files via XXE attacks11/28/2025
LOW3.3EPSS 0.01%Overhang Tutor Discloses Sensitive Information due to Improper Cache-Control11/26/2025
LOW3.5EPSS 0.08%changedetection.io: Stored XSS in Watch update via API11/12/2025
LOW3.3EPSS 0.03%An issue was discovered in PyTorch v2.5 and v2.7.1.11/12/2025
LOW2.6EPSS 0.03%Weblate leaks the IP of project member inviting user to be reviewer in Audit log11/5/2025
LOW3.1EPSS 0.06%reflex-dev/reflex has an Open Redirect vulnerability10/15/2025
LOW2.5EPSS 0.12%DataChain Vulnerable to Deserialization of Untrusted Data from Environment Variables10/2/2025
LOW3.1EPSS 0.02%Django vulnerable to partial directory traversal via archives10/1/2025
LOW3.7EPSS 0.03%WSO2's Input Validation Management Service contains Observable Discrepancy when Multi-Attribute Login is enabled9/26/2025
LOW3.7EPSS 0.13%xxl-job has Inadequate Encryption Strength7/18/2025
LOW3.3EPSS 0.14%Jenkins User1st uTester Plugin vulnerability exposes unencrypted token to authenticated users7/9/2025
LOW3.1EPSS 0.12%Jenkins Testsigma Test Plan vulnerability exposes API keys via job configuration form7/9/2025
LOW3.5EPSS 0.06%Transformers's Improper Input Validation vulnerability can be exploited through username injection7/7/2025
LOW3.5EPSS 0.15%XXL SSO is vulnerable to an Open Redirect through malicious manipulation of the redirect_url argument6/26/2025
LOW3.3EPSS 0.15%pywasm3 has Improper Restriction of Operations within the Bounds of a Memory Buffer6/19/2025
LOW3.7EPSS 0.11%Gradio CORS Origin Validation Bypass Vulnerability5/29/2025
LOW2.6EPSS 0.18%Potential Timing Side-Channel Vulnerability in vLLM’s Chunk-Based Prefix Caching5/28/2025
LOW3.1EPSS 0.08%Spring Framework DataBinder Case Sensitive Match Exception5/16/2025
LOW2.8EPSS 0.06%OpenStack Ironic fails to restrict paths used for file:// image URLs5/8/2025
LOW2.7EPSS 0.12%The lesscss script service allows cache clearing without programming right4/29/2025
LOW3.8EPSS 0.09%Solr script service doesn't take dropped programming right into account4/29/2025
LOW2.7EPSS 0.50%Apereo CAS has inefficient regular expression complexity4/27/2025

← PrevPage 4 of 21Next →