Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-23081: Open Source Vulnerability Database | Mend

In openlibrary versions deploy-2016-07-0 through deploy-2021-12-22 are vulnerable to Reflected XSS.

CVE
#xss#vulnerability

Mend Vulnerability Database

Mend Vulnerability Lab is where you can find the information that you need about open source security vulnerabilities, aggregated by Mend’s comprehensive open source vulnerabilities database from hundreds of both popular and under-the-radar community resources.

The Mend open source vulnerabilities database covers over 200 programming languages and over 3 million open source components. It aggregates information from a variety of sources including the NVD, security advisories, and open source project issue trackers, multiple times a day.

We’re here to help you find and fix open source security vulnerabilities, and provide you with all of the data that you need in order to address open source vulnerabilities, including:

  • Programming language
  • CWE type
  • CVSS Severity scores, including CVSS v2.0 and v3.x
  • Exposure level (how many organizations have been impacted)
  • Verified suggested fixes
  • The low-down from the community
  • Additional info to help make informed remediation decisions

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907