logo

Database

Security

Vulnerabilities

Real-time alerts of vulnerabilities across monitored open-source ecosystems.

Ecosystems covered

4

Alpm, Debian, Maven & more

Total vulnerabilities tracked

40

From global vulnerability databases

Exclude malware
Package mercurial

FLAT-TTLIU (CVE-2017-1000115)

Insecure session management In mercurial

6.6

Medium

Ecosystem: Alpm

Package: mercurial

FLAT-Q0VN7 (CVE-2017-1000116)

OS Command Injection In mercurial

5.9

Medium

Ecosystem: Alpm

Package: mercurial

FLAT-YIT3K (DLA-4094-1)

Lack of data validation In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-4J8BL (DSA-5883-1)

Lack of data validation In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-JV55Y (CVE-2025-2361)

Server side cross-site scripting In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-E9BCG (CVE-2022-43410)

Business information leak In org.jenkins-ci.plugins:mercurial

2.7

Low

Ecosystem: Maven

Package: org.jenkins-ci.plugins:mercurial

FLAT-1WF9Q (CVE-2020-2306)

Improper authorization control for web services In org.jenkins-ci.plugins:mercurial

1.3

Low

Ecosystem: Maven

Package: org.jenkins-ci.plugins:mercurial

FLAT-TQXL8 (CVE-2020-2305)

XML injection (XXE) In org.jenkins-ci.plugins:mercurial

4.9

Medium

Ecosystem: Maven

Package: org.jenkins-ci.plugins:mercurial

FLAT-IXVA2 (CVE-2022-30948)

Lack of data validation - Path Traversal In org.jenkins-ci.plugins:mercurial

1.7

Low

Ecosystem: Maven

Package: org.jenkins-ci.plugins:mercurial

FLAT-HWLW4 (CVE-2016-3105)

Improper authorization control for web services In mercurial

6.3

Medium

Ecosystem: PyPI

Package: mercurial

FLAT-XIBAE (CVE-2016-3630)

Server side template injection In mercurial

6.3

Medium

Ecosystem: PyPI

Package: mercurial

FLAT-JDR76 (CVE-2016-3069)

Lack of data validation In mercurial

6.3

Medium

Ecosystem: PyPI

Package: mercurial

FLAT-TFATO (CVE-2016-3068)

Lack of data validation In mercurial

6.3

Medium

Ecosystem: PyPI

Package: mercurial

FLAT-33RIL (CVE-2014-9462)

Lack of data validation In mercurial

8.1

High

Ecosystem: PyPI

Package: mercurial

FLAT-743RS (CVE-2018-17983)

Out-of-bounds read In mercurial

6.8

Medium

Ecosystem: PyPI

Package: mercurial

FLAT-LJ1IE (CVE-2018-1000112)

Authentication mechanism absence or evasion In org.jenkins-ci.plugins:mercurial

2.7

Low

Ecosystem: Maven

Package: org.jenkins-ci.plugins:mercurial

FLAT-LIUG7 (CVE-2017-17458)

Remote command execution In mercurial

8.1

High

Ecosystem: PyPI

Package: mercurial

FLAT-EL81B (CVE-2018-1000132)

Improper authorization control for web services In mercurial

8.0

High

Ecosystem: PyPI

Package: mercurial

FLAT-WDR1I (CVE-2018-13346)

Lack of data validation In mercurial

6.6

Medium

Ecosystem: PyPI

Package: mercurial

FLAT-PI3ZM (CVE-2018-13348)

Lack of data validation In mercurial

6.6

Medium

Ecosystem: PyPI

Package: mercurial

FLAT-MHJDJ (CVE-2018-13347)

Out-of-bounds read In mercurial

8.1

High

Ecosystem: PyPI

Package: mercurial

FLAT-25F5K (CVE-2008-2942)

Lack of data validation - Path Traversal In mercurial

2.7

Low

Ecosystem: PyPI

Package: mercurial

FLAT-5L015 (CVE-2010-4237)

Insecure digital certificates In mercurial

4.6

Medium

Ecosystem: PyPI

Package: mercurial

FLAT-QBA9G (CVE-2019-3902)

Lack of data validation - Path Traversal In mercurial

4.6

Medium

Ecosystem: PyPI

Package: mercurial

FLAT-LTV37 (DLA-2293-1)

Lack of data validation In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-RBLTO (DLA-1764-1)

Lack of data validation In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-FPGV5 (DLA-1414-2)

Lack of data validation In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-3J7VY (CVE-2017-9462)

Improper authorization control for web services In mercurial

6.3

Medium

Ecosystem: PyPI

Package: mercurial

FLAT-R1DM2 (DLA-1414-1)

Lack of data validation In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-K3A03 (DLA-1331-1)

Lack of data validation In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-5YUFY (DLA-1224-1)

Lack of data validation In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-A4EQQ (DSA-3963-1)

Lack of data validation In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-7KSNT (DLA-1072-1)

Lack of data validation In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-LYIT2 (DLA-1005-1)

Lack of data validation In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-SFKT3 (DLA-459-1)

Lack of data validation In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-B5VOA (DSA-3570-1)

Lack of data validation In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-9PTEF (DSA-3542-1)

Lack of data validation In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-VVN01 (DLA-237-1)

Lack of data validation In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-89KTD (DSA-3257-1)

Lack of data validation In mercurial

1.3

Low

Ecosystem: Debian

Package: mercurial

FLAT-R1P1F (CVE-2008-4297)

Improper authorization control for web services In mercurial

2.7

Low

Ecosystem: Debian

Package: mercurial