Search 861,558+ security vulnerabilities and malicious packages across npm, PyPI, Go, GitHub Actions, VS Code, and 50+ ecosystems.
Track vulnerabilities across npm, PyPI, Go, Maven, NuGet, RubyGems, and more.
Updated continuously with the latest security advisories from trusted sources.
Share vulnerability details with AI assistants using optimized markdown export.
(GNU GRUB (aka GRUB2) through 2.12 does not use a constant-time algorit ...)
(A use-after-free vulnerability in BusyBox v.1.36.1 allows attackers to ...)
(A flaw was found in glib-networking. A remote attacker can exploit thi ...)
(sysstat through 12.7.2 allows a multiplication integer overflow in che ...)
(Issue summary: The POLY1305 MAC (message authentication code) implemen ...)
(In Apache PDFBox, a carefully crafted PDF file can trigger an infinite ...)
(NATS nats-server before 2.9.23 and 2.10.x before 2.10.2 has an authent ...)
(When the ngx_mail_auth_http_modulemodule is enabled on NGINX Plus or N ...)
(Gitk is a Tcl/Tk based Git history browser. Starting with 1.7.0, when ...)