aikido intel logo

Powered by AI + Aikido Research team

Aikido Intel

We track 5 million open-source packages, exposing vulnerabilities before they get CVE numbers. Many never do.

Human verified threat feed
444 vulnerabilities exposed
Detect blind spots in NVD & Github Advisory DB
Medium Risk
AIKIDO-2024-10436
django-allauth is vulnerable to Improper Restriction of Excessive Authentication Attempts in versions 0.63.0 - 65.1.0.
November 8, 2024
Critical
AIKIDO-2024-10435
electron is vulnerable to Out-of-bounds Write in versions 32.2.0 - 32.2.2.
November 8, 2024
Medium Risk
AIKIDO-2024-10434
github.com/cosnicolaou/pbzip2 is vulnerable to Integer Overflow in versions 1.0.0 - 1.0.3.
November 8, 2024
Critical
AIKIDO-2024-10433
@grafana/ui is vulnerable to Code Injection in versions 11.0.0 - 11.0.4, 11.1.0 - 11.1.5 and 11.2.0 - 11.2.0.
November 8, 2024
Critical
AIKIDO-2024-10432
@grafana/data is vulnerable to Code Injection in versions 11.0.0 - 11.0.4, 11.1.0 - 11.1.5 and 11.2.0 - 11.2.0.
November 8, 2024
Critical
AIKIDO-2024-10431
@grafana/runtime is vulnerable to Code Injection in versions 11.0.0 - 11.0.4, 11.1.0 - 11.1.5 and 11.2.0 - 11.2.0.
November 8, 2024
Medium Risk
AIKIDO-2024-10430
twig/twig is vulnerable to Exposed Dangerous Method or Function in versions 1.38.0 - 3.14.1.
November 8, 2024
Low Risk
AIKIDO-2024-10429
github.com/elastic/go-libaudit/v2 is vulnerable to Missing Release of File Descriptor or Handle after Effective Lifetime in versions 0.0.1 - 2.5.0.
November 7, 2024
High Risk
AIKIDO-2024-10428
stringio is vulnerable to Out-of-bounds Write in versions 0.0.2 - 3.1.1.
November 7, 2024
Low Risk
AIKIDO-2024-10427
openai is vulnerable to Insertion of Sensitive Information into Log File in versions 1.0.0 - 3.1.1.
November 7, 2024
Critical
AIKIDO-2024-10426
happy-dom is vulnerable to Remote Code Execution (RCE) in versions 13.0.0 - 15.10.1.
November 6, 2024
High Risk
AIKIDO-2024-10425
fluent.fluent-bit is vulnerable to Improper Authentication in versions 3.0.0 - 3.1.9.
November 6, 2024
Low Risk
AIKIDO-2024-10424
express-zod-api is vulnerable to Generation of Error Message Containing Sensitive Information in versions 1.0.0 - 20.17.0.
November 6, 2024
High Risk
AIKIDO-2024-10423
chriskohlhoff.asio is vulnerable to Missing Standardized Error Handling Mechanism in versions 1.0.0 - 1.12.2.
November 5, 2024
Critical
AIKIDO-2024-10422
fastapi-sso is vulnerable to Improper Authentication in versions 0.2.3 - 0.15.0.
November 5, 2024
Medium Risk
AIKIDO-2024-10421
rspec-its is vulnerable to Access to Critical Private Variable via Public Method in versions 1.0.0 - 1.3.1.
November 5, 2024
Medium Risk
AIKIDO-2024-10420
mpg123 is vulnerable to Out-of-bounds Write in versions 0.61 - 1.32.7.
November 5, 2024
Medium Risk
AIKIDO-2024-10418
mysql-connector-python is vulnerable to SQL Injection in versions 8.0.4 - 8.0.10.
November 5, 2024
Logo
© 2024 Aikido Security BV | BE0792914919
🇪🇺 Grauwpoort 1, 9000 Ghent, Belgium
🇺🇸 95 Third St, 2nd Fl, San Francisco, CA 94103, US