Aikido Vulnerability Database

winglang is vulnerable to Cross-site Scripting in versions 0.22.0 - 0.76.8.

weaviate-client is vulnerable to SQL Injection in versions 1.0.0 - 3.26.4.

putyourlightson/craft-blitz is vulnerable to Malicious Code in versions 3.11.1 - 3.14.0 and 4.0.0 - 4.11.2.

cog is vulnerable to Race Condition in versions 0.5.0 - 0.9.11.

aws/aws-sdk-php is vulnerable to Insertion of Sensitive Information into Log File in versions 3.272.0 - 3.315.2.

botocore is vulnerable to Insertion of Sensitive Information into Log File in versions 1.29.150 - 1.34.136.

@aws-sdk/client-payment-cryptography-data is vulnerable to Insertion of Sensitive Information into Log File in versions 3.349.0 - 3.607.0.

openssh-server is vulnerable to RCE in versions 0.1 - 4.4 and 8.5 - 9.7.

openssh is vulnerable to RCE in versions 0.1 - 4.4 and 8.5 - 9.7.

clickhouse-connect is vulnerable to Exposure of Sensitive System Information in versions 0.4.0 - 0.7.13.

parse-server is vulnerable to SQL injection in versions 2.2.14 - 6.5.6 and 7.0.0 - 7.0.0.

pybind11 is vulnerable to Use After Free in versions 0.1.0 - 2.12.0.

echarts is vulnerable to Cross-site Scripting in versions 2.2.8 - 5.5.0.

pdoc is vulnerable to Malicious Code in versions 0.0.1 - 14.5.0.

statsig is vulnerable to Information Disclosure in versions 0.1.0 - 0.33.0.

prefect is vulnerable to Path Traversal in versions 0.5.0 - 3.0.0rc8.

@pulumi/okta is vulnerable to Information Disclosure in versions 1.0.0 - 4.9.0.

unstructured is vulnerable to Information Disclosure in versions 0.6.7 - 0.14.7.