[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Connect with sales  +1 877-586-1965

Vulnerability Directory

If you’re currently using these frameworks in your application’s tech stack, your application could be vulnerable.

Secure drop-in replacements for open source software from HeroDevs helps you stay secure, compliant, and compatible while you migrate.

Switch to Never-Ending Support (NES) from HeroDevs to immediately mitigate these vulnerabilities.
Talk to Our Experts
Get Pricing
Arrow down
Search here
Clear
Filter by Severity
Clear
Filter by Technology
Sign up for the latest vulnerability alerts
Rss feed icon
Subscribe via RSS
or
Thanks for signing up for our Newsletter! We look forward to connecting with you.
Oops! Something went wrong while submitting the form.
Severity
ID
Technology
Libraries Affected
Category
Version(s) Affected
Published Date
High
Open in new tab icon
CVE-2025-23089
Node.js
Node.js
Use of Unmaintained Third Party
<= 21.7.3
Jan 21, 2025
High
Open in new tab icon
CVE-2025-23088
Node.js
Node.js
Use of Unmaintained Third Party
<= 19.9.0
Jan 21, 2025
High
Open in new tab icon
CVE-2025-23087
Node.js
Node.js
Use of Unmaintained Third Party
<= 17.9.1
Jan 21, 2025
Critical
Open in new tab icon
CVE-2024-53677
Struts
Apache Struts
Remote Code Execution
>=2.0.0 <=2.3.37, >=2.5.0 <=2.5.33, >=6.0.0 <=6.3.0.2
Dec 17, 2024
Low
Open in new tab icon
CVE-2024-38829
Spring
Spring LDAP
Authorization Bypass
<=2.4.3, >=3.0.0 <=3.0.9, >=3.1.0 <=3.1.7, >=3.2.0 <3.2.7
Nov 20, 2024
Medium
Open in new tab icon
CVE-2024-38827
Spring
Spring Security
Authorization Bypass
<=5.7.13, >=5.8.0 <=5.8.15, >=6.0.0 <=6.0.13, >=6.1.0 <=6.1.11, >=6.2.0 <=6.2.7, >=6.3.0 <=6.3.4
Nov 19, 2024
Medium
Open in new tab icon
CVE-2024-38828
Spring
Spring Framework
Denial of Service
<5.3.42
Nov 15, 2024
High
Open in new tab icon
CVE-2024-38819
Spring
Spring Framework
Path Traversal
<5.3.41, >=6.0.0 <6.0.25, >=6.1.0 <6.1.14
Oct 30, 2024
Medium
Open in new tab icon
CVE-2024-10491
Express
Express
Resource Injection
>=3.0.0-alpha1 <=3.21.2
Oct 29, 2024
Critical
Open in new tab icon
CVE-2024-38821
Spring
Spring Security
Authorization Bypass
>=5.7.0 <5.7.13, >=5.8.0 <5.8.15, >=6.0.0 <6.0.13, >=6.1.0 <6.1.11, >=6.2.0 <6.2.7, >=6.3.0 <6.3.4
Oct 25, 2024
Low
Open in new tab icon
CVE-2024-38820
Spring
Spring Framework
Authorization Bypass
<5.3.41, >=6.0.0 <6.0.25, >=6.1.0 <6.1.14
Oct 23, 2024
Medium
Open in new tab icon
HD-2024-1410
Express
Express
Resource Injection
>=3.0.0-alpha1 <=3.21.2, >=4.0.0-rc1 <4.21.1, >=5.0.0-alpha.1 <5.0.1
Oct 17, 2024
High
Open in new tab icon
HD-2024-1407
Node.js
Node.js
HTTP Request Smuggling
>=16.0.0 <16.20.1, >=18.0.0 <18.16.1, >=20.0.0 <20.3.1
Oct 16, 2024
Low
Open in new tab icon
HD-2024-1408
Node.js
Node.js
Information Exposure
>=16.0.0 <=16.20.2
Oct 15, 2024
Medium
Open in new tab icon
HD-2024-1409
Node.js
Node.js
Denial of Service
>=14.0.0 <=14.21.3, >=16.0.0 <=16.20.2
Oct 15, 2024
Exclamation icon
No results found

Please enter a valid Vulnerability ID number or Technology name.

By clicking "Accept", you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.

PreferencesRejectAccept
Manage Consent Preferences by Category
Essentials
Always active

Necessary for the site to function. Always On.

Used for targeted advertising.

Remembers your preferences and provides enhanced features.

Measures usage and improves your experience.

Reject AllAccept All
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.