idno/known vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-28507Highidno/known: Idno Vulnerable to Remote Code Execution via Chained Import File Write and Template Path TraversalCVE-2026-28508Criticalidno/known: Idno Vulnerable to Unauthenticated SSRF via URL Unfurl EndpointCVE-2026-26273Criticalidno/known: Known affected by Account Takeover via Password Reset Token LeakageCVE-2022-32115Mediumidno/known: Known vulnerable to code execution via SVG file in v1.3.1CVE-2022-33011Highidno/known: Known vulnerable to account takeover via host header injection attack in v1.3.1CVE-2022-31290Mediumidno/known: Known v1.3.1 Cross-site ScriptingCVE-2022-30852Mediumidno/known: Known v1.3.1 contains Insecure Direct Object Reference

Stop the waste.
Protect your environment with Kodem.