Npm

3,213 tracked vulnerabilities.

CVE-2026-30863
Parse Server <8.6.10/9.5.0-alpha.11 - Auth Bypass
Mar 07, 2026
EPSS 0.00
CVE-2026-30854
Parse Server 9.3.1-alpha.3-9.5.0-alpha.10 - Info Disclosure
Mar 07, 2026
EPSS 0.00
CVE-2026-30850
Parse Server <8.6.9/9.5.0-alpha.9 - Auth Bypass
Mar 07, 2026
EPSS 0.00
CVE-2026-30848
Parse Server <8.6.8/9.5.0-alpha.8 - Path Traversal
Mar 07, 2026
EPSS 0.00
CVE-2026-29786
node-tar <7.5.10 - Path Traversal
Mar 07, 2026
EPSS 0.00
CVE-2026-29784 HIGH
Ghost 5.101.6-6.19.2 - CSRF
Mar 07, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-30830
Defuddle <0.9.0 - XSS
Mar 07, 2026
EPSS 0.00
CVE-2026-30827 HIGH
express-rate-limit 8.0.0-8.0.1 - DoS
Mar 07, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-30824
Flowise <3.0.13 - Auth Bypass
Mar 07, 2026
EPSS 0.00
CVE-2026-30823 HIGH
Flowise <3.0.13 - IDOR
Mar 07, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-30822 HIGH
Flowise <3.0.13 - Code Injection
Mar 07, 2026
CVSS 7.7
EPSS 0.00
CVE-2026-30821
Flowise <3.0.13 - Auth Bypass
Mar 07, 2026
EPSS 0.00
CVE-2026-30820
Flowise <3.0.13 - Privilege Escalation
Mar 07, 2026
EPSS 0.00
CVE-2026-30241
Mercurius <16.8.0 - DoS
Mar 06, 2026
EPSS 0.00
CVE-2026-29074 HIGH
SVGO 2.1.0-2.8.0/3.0.0-3.3.2/4.0.0 - DoS
Mar 06, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-29613 MEDIUM
OpenClaw <2026.2.12 - Auth Bypass
Mar 05, 2026
CVSS 5.9
EPSS 0.00
CVE-2026-29612 MEDIUM
OpenClaw <2026.2.14 - DoS
Mar 05, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-29610 HIGH
OpenClaw <2026.2.14 - Command Injection
Mar 05, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-29606 MEDIUM
OpenClaw <2026.2.14 - Auth Bypass
Mar 05, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-28486 MEDIUM
OpenClaw 2026.1.16-2 - Path Traversal
Mar 05, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-28482 HIGH
OpenClaw <2026.2.12 - Path Traversal
Mar 05, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-28481 MEDIUM
OpenClaw <2026.1.30 - Info Disclosure
Mar 05, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-28480 MEDIUM
OpenClaw <2026.2.14 - Auth Bypass
Mar 05, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-28479 HIGH
OpenClaw <2026.2.15 - Cache Poisoning
Mar 05, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-28477 HIGH
OpenClaw <2026.2.14 - Auth Bypass
Mar 05, 2026
CVSS 7.1
EPSS 0.00
Products
openclaw 64 directus 43 parse-server 41 n8n 39 electron 30 next 30 flowise 27 nocodb 25 ghost 21 hono 17 vite 16 undici 16 fuxa-server 15 ckeditor4 15 nodebb 14 tinymce 14 joplin 14 tar 14 astro 14 jspdf 13 sequelize 13 vm2 13 pnpm 12 strapi 12 matrix-js-sdk 12 angular 12 bootstrap 11 marked 11 jquery 10 systeminformation 10
Quick Filters
Critical CVEs With Exploits In CISA KEV