Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

pub Security Advisories

Browse all Security Advisories for pub

Loading...
High
GSA_kwCzR0hTQS1mbWo3LTdnZnctNjRwZ84ABARb
Agent Dart is missing certificate verification checks
Ecosystems: pub
Packages: agent_dart
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS1yNzVtLTI2Y3EtbWp4Y84AA6ax
Serverpod improved security for stored password hashes
Ecosystems: pub
Packages: serverpod_auth_server
Source: GitHub Advisory Database
Blast Radius: 3.2
Published: 8 months ago
High
GSA_kwCzR0hTQS1oNng3LXI1cmcteDVmd84AA6aw
Serverpod client accepts any certificate
Ecosystems: pub
Packages: serverpod_client
Source: GitHub Advisory Database
Blast Radius: 9.3
Published: 8 months ago
Moderate
GSA_kwCzR0hTQS01ODQ0LXEzZmMtNTZyaM4AA3lZ
pubnub Insufficient Entropy vulnerability
Ecosystems: swift, pypi, pub, packagist, cargo, rubygems, nuget, go, maven, npm
Packages: github.com/pubnub/swift, pubnub, pubnub/pubnub, Pubnub, github.com/pubnub/go/v5, github.com/pubnub/go/v6, github.com/pubnub/go, github.com/pubnub/go/v7, com.pubnub:pubnub, com.pubnub:pubnub-kotlin
Source: GitHub Advisory Database
Blast Radius: 82.5
Published: 12 months ago
High
GSA_kwCzR0hTQS05djg1LXE4N3EtZzR2Z84AA1lV
Path traversal in Archive
Ecosystems: pub
Packages: archive
Source: GitHub Advisory Database
Blast Radius: 37.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS1yMjg1LXE3MzYtOXY5Nc4AA1lT
Filename spoofing in archive
Ecosystems: pub
Packages: archive
Source: GitHub Advisory Database
Blast Radius: 37.0
Published: about 1 year ago
High
GSA_kwCzR0hTQS05MzI0LWp2NTMtOWNjOM4AAyNs
dio vulnerable to CRLF injection with HTTP method string
Ecosystems: pub
Packages: dio
Source: GitHub Advisory Database
Blast Radius: 32.7
Published: over 1 year ago
Low
GSA_kwCzR0hTQS00eGg0LXYycHEtanZobc4AAu6V
personnummer/dart vulnerable to Improper Input Validation
Ecosystems: pub
Packages: personnummer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS00cmdoLWp4NGYtcWZjcc4AAm_b
http before 0.13.3 vulnerable to header injection
Ecosystems: pub
Packages: http
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: over 2 years ago
Statistics
Advisories: 20,668
Packages: 9,040
Repositories: 7
Ecosystems: 12
Filter by Severity
Moderate 8,836 High 7,269 Critical 3,070 Low 1,144
Filter by Ecosystem
maven 5,864 packagist 4,634 pypi 4,352 npm 3,812 go 2,295 nuget 1,552 cargo 882 rubygems 880 swift 33 hex 32 actions 20 pub 9
Filter by Package
archive 2 serverpod_auth_server 1 serverpod_client 1 http 1 github.com/pubnub/swift 1 pubnub 1 pubnub 1 pubnub/pubnub 1 pubnub 1 pubnub 1 Pubnub 1 github.com/pubnub/go/v5 1 github.com/pubnub/go/v6 1 github.com/pubnub/go 1 github.com/pubnub/go/v7 1 com.pubnub:pubnub 1 com.pubnub:pubnub-kotlin 1 pubnub 1 personnummer 1 dio 1 agent_dart 1
Filter by Repository
https://github.com/serverpod/serverpod 2 https://github.com/brendan-duncan/archive 2 https://github.com/pubnub/javascript 1 https://github.com/personnummer/dart 1 https://github.com/dart-lang/http 1 https://github.com/cfug/dio 1 https://github.com/AstroxNetwork/agent_dart 1