This block + 6,000 more — yours with Pro
shadcn.io
Dashboard Pen Test Results
121/200
shadcn.io
/
Dashboard Pen Test Results
Preview
Code
Install
Docs
121 of 200
Pen Test Results
Q1 2026 — External assessment
2 critical open
4 open
Critical
2
High
2
Medium
2
Low
1
SQL Injection in search endpoint
Injection
·
CVSS 9.8
In Progress
Broken authentication on password reset
Authentication
·
CVSS 9.1
Open
Stored XSS in comment rendering
Cross-Site Scripting
·
CVSS 8.2
Verified
IDOR on user profile API
Access Control
·
CVSS 7.5
In Progress
Missing rate limiting on login endpoint
Authentication
·
CVSS 5.3
Open
Sensitive data in error responses
Information Disclosure
·
CVSS 4.3
Verified
Cookie without Secure flag
Session Management
·
CVSS 3.1
Accepted