Early Access — Mondoo Vulnerability Intelligence is currently in preview.
Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Mass Assignment in AdonisJS Lucid Allows Overwriting Internal ORM State
Iris Allows Arbitrary File Deletion via Mass Assignment in Datastore File Management
Titra API Contains Mass Assignment Vulnerability
GraphQL IDOR allows authenticated user to delete workspace content of other users
ChurchCRM vulnerable to RCE with database restore functionality
LibreChat's Improper Input Validation in Prompt Creation API Enables Unauthorized Permission Changes
Unauthenticated Device Registration Vulnerability in MXsecurity Series
mdast-util-to-hast unsanitized class attribute
Drupal core - Moderately critical - Gadget chain - SA-CORE-2025-006
HCL MyXalytics product is affected by Mass Assignment vulnerability
Mass Assignment in danny-avila/librechat
DeepDiff is vulnerable to DoS and Remote Code Execution via Delta class pollution
comfyanonymous comfyui utils.py set_attr dynamically-determined object attributes
handcraftedinthealps goodby-csv Potential Gadget Chain allowing Remote Code Execution
Drupal core - Moderately critical - Gadget Chain - SA-CORE-2025-003
Mesop Class Pollution vulnerability leads to DoS and Jailbreak attacks
Mass Assignment in Preset Creation Allows User ID Manipulation in danny-avila/librechat
Camaleon CMS Privilege Escalation
Django-Unicorn Class Pollution Vulnerability, Leading to XSS, DoS and Authentication Bypass
Drupal core - Moderately critical - Gadget chain - SA-CORE-2024-008
Showing 1 - 20 of 1,000+ results