Lucene search
K

5 matches found

vulnersOsv
vulnersOsv
added 2026/04/13 9:30 p.m.7 views

dbgate (>=3.9.6 <=4.7.4-alpha.12), dbgate-serve (>=4.1.1 <=7.1.13) +1 more potentially affected by CVE-2026-6216 via dbgate-web (>=3.9.6 <=7.1.4)

dbgate-web NPM version =3.9.6, =3.9.6, =4.1.1, =5.2.2, =7.1.13 Source cves: CVE-2026-6216 Source advisory: OSV:GHSA-J8J5-7R4H-VJ2G...

5.1CVSS5.4AI score0.00191EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/04/13 9:11 p.m.6 views

dbgate-serve (>=7.1.3-alpha.3 <=7.1.13), dbmodel (>=7.1.3-alpha.3 <=7.1.13) potentially affected by CVE-2026-6216 via dbgate-web (>=7.1.10 <=7.1.4)

dbgate-web NPM version =7.1.10, =7.1.3-alpha.3, =7.1.3-alpha.3, =7.1.13 Source cves: CVE-2026-6216 Source advisory: SNYK:JS-DBGATEWEB-16083995...

5.1CVSS5.7AI score0.00191EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/04/02 7:26 p.m.8 views

dbgate-serve (>=7.1.3-alpha.3 <=7.1.13), dbmodel (>=7.1.3-alpha.3 <=7.1.13) potentially affected by CVE-2026-34725 via dbgate-web (>=7.1.10 <=7.1.4)

dbgate-web NPM version =7.1.10, =7.1.3-alpha.3, =7.1.3-alpha.3, =7.1.13 Source cves: CVE-2026-34725 Source advisory: SNYK:JS-DBGATEWEB-15915631...

8.2CVSS5.7AI score0.00168EPSS
Exploits0
Snyk
Snyk
added 2026/04/02 7:26 p.m.4 views

Arbitrary Code Injection

Overview dbgate-web is a This package is used internally by DbGate Affected versions of this package are vulnerable to Arbitrary Code Injection through the FontIcon rendering path in packages/web/src/icons/FontIcon.svelte. An attacker can execute arbitrary JavaScript in a victim’s browser, or...

8.2CVSS6.5AI score0.00168EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2026/04/01 10:19 p.m.6 views

dbgate-serve (>=7.1.3-alpha.3 <=7.1.13), dbmodel (>=7.1.3-alpha.3 <=7.1.13) potentially affected by CVE-2026-34725 via dbgate-web (>=7.1.10 <=7.1.4)

dbgate-web NPM version =7.1.10, =7.1.3-alpha.3, =7.1.3-alpha.3, =7.1.13 Source cves: CVE-2026-34725 Source advisory: OSV:GHSA-35XM-QVJG-8M42...

8.2CVSS5.7AI score0.00168EPSS
Exploits0
Rows per page
Query Builder