Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
npm Security Advisories
Loading...
Moderate
Ecosystems: npm
Packages: vue-moment
Source: GitHub Advisory Database
Blast Radius: 19.9
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhycHAtZjg0dy14aGZn
Outdated Static Dependency in vue-momentEcosystems: npm
Packages: vue-moment
Source: GitHub Advisory Database
Blast Radius: 19.9
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: public
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR2dnAteDloMi14MnZm
Path Traversal in publicEcosystems: npm
Packages: public
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: node-static
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
GSA_kwCzR0hTQS04cjRnLWNnNG0teDIzY80V8Q
Denial of Service in node-staticEcosystems: npm
Packages: node-static
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: ckeditor4
Source: GitHub Advisory Database
Blast Radius: 17.8
Published: over 2 years ago
GSA_kwCzR0hTQS13cHZtLXdxcjQtcDdjd80WSA
Inclusion of Functionality from Untrusted Control Sphere in CKEditor 4Ecosystems: npm
Packages: ckeditor4
Source: GitHub Advisory Database
Blast Radius: 17.8
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: jsoneditor
Source: GitHub Advisory Database
Blast Radius: 20.3
Published: over 2 years ago
GSA_kwCzR0hTQS1xODU0LWozNjItY2ZxOc0WZg
Cross-site Scripting in jsoneditorEcosystems: npm
Packages: jsoneditor
Source: GitHub Advisory Database
Blast Radius: 20.3
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: bootbox
Source: GitHub Advisory Database
Blast Radius: 19.4
Published: 6 months ago
GSA_kwCzR0hTQS1tNGNoLTRtNWYtMmdwNs4AA3GR
Bootbox.js Cross Site Scripting vulnerabilityEcosystems: npm
Packages: bootbox
Source: GitHub Advisory Database
Blast Radius: 19.4
Published: 6 months ago
Moderate
Ecosystems: npm
Packages: froala-editor
Source: GitHub Advisory Database
Blast Radius: 19.3
Published: over 2 years ago
GSA_kwCzR0hTQS05N3g1LWNjNTMtY3Y0ds0Wvw
Cross site scripting in froala-editorEcosystems: npm
Packages: froala-editor
Source: GitHub Advisory Database
Blast Radius: 19.3
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: validator
Source: GitHub Advisory Database
Blast Radius: 30.2
Published: over 2 years ago
GSA_kwCzR0hTQS1xZ21nLWdwcGctNzZnNc0W1g
Inefficient Regular Expression Complexity in validator.jsEcosystems: npm
Packages: validator
Source: GitHub Advisory Database
Blast Radius: 30.2
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: dotty
Source: GitHub Advisory Database
Blast Radius: 19.6
Published: over 2 years ago
GSA_kwCzR0hTQS02ZzQ3LTYzbXYtcXBnaM0W5g
Prototype Pollution in dottyEcosystems: npm
Packages: dotty
Source: GitHub Advisory Database
Blast Radius: 19.6
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: tempura
Source: GitHub Advisory Database
Blast Radius: 7.3
Published: over 2 years ago
GSA_kwCzR0hTQS13NHY3LWh3eDctOTkyOc0W5A
Cross-site Scripting in tempuraEcosystems: npm
Packages: tempura
Source: GitHub Advisory Database
Blast Radius: 7.3
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: mqtt
Source: GitHub Advisory Database
Blast Radius: 26.3
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg5bWotZmdoYy02NjR3
Denial of Service in mqttEcosystems: npm
Packages: mqtt
Source: GitHub Advisory Database
Blast Radius: 26.3
Published: over 6 years ago
Moderate
Ecosystems: npm
Packages: editor.md
Source: GitHub Advisory Database
Blast Radius: 12.7
Published: about 1 year ago
GSA_kwCzR0hTQS13OTc0LXJxOXgtbWgzds4AAyhu
Pandao Editor.md vulnerable to cross-site scripting (XSS) in iframe src parameterEcosystems: npm
Packages: editor.md
Source: GitHub Advisory Database
Blast Radius: 12.7
Published: about 1 year ago
Moderate
Ecosystems: npm
Packages: ssri
Source: GitHub Advisory Database
Blast Radius: 35.3
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTMyNWotMjRmNC1xdjV4
Regular Expression Denial of Service in ssriEcosystems: npm
Packages: ssri
Source: GitHub Advisory Database
Blast Radius: 35.3
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: @openzeppelin/contracts-upgradeable, @openzeppelin/contracts
Source: GitHub Advisory Database
Blast Radius: 24.1
Published: about 1 year ago
GSA_kwCzR0hTQS1teDJxLTM1bTIteDJyaM4AAy0V
OpenZeppelin Contracts TransparentUpgradeableProxy clashing selector calls may not be delegatedEcosystems: npm
Packages: @openzeppelin/contracts-upgradeable, @openzeppelin/contracts
Source: GitHub Advisory Database
Blast Radius: 24.1
Published: about 1 year ago
Moderate
Ecosystems: npm
Packages: kurwov
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 16 days ago
GSA_kwCzR0hTQS1oZnJ2LWgzcTgtOWpwcs4AA7v7
kurwov vulnerable to Denial of Service due to improper data sanitizationEcosystems: npm
Packages: kurwov
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 16 days ago
Moderate
Ecosystems: npm
Packages: mavon-editor
Source: GitHub Advisory Database
Blast Radius: 22.9
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpmY2Mtcm03Zi14Z2Y4
Cross-Site Scripting in mavon-editorEcosystems: npm
Packages: mavon-editor
Source: GitHub Advisory Database
Blast Radius: 22.9
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: angular
Source: GitHub Advisory Database
Blast Radius: 25.2
Published: about 1 year ago
GSA_kwCzR0hTQS0ycXF4LXc5aHItcTVneM4AAydS
angular vulnerable to regular expression denial of service via the $resource serviceEcosystems: npm
Packages: angular
Source: GitHub Advisory Database
Blast Radius: 25.2
Published: about 1 year ago
Moderate
Ecosystems: npm
Packages: angular
Source: GitHub Advisory Database
Blast Radius: 29.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1wcmMzLXZqZngtdmhtOc4AAtaT
Angular (deprecated package) Cross-site ScriptingEcosystems: npm
Packages: angular
Source: GitHub Advisory Database
Blast Radius: 29.0
Published: almost 2 years ago
Moderate
Ecosystems: npm
Packages: simditor
Source: GitHub Advisory Database
Blast Radius: 14.2
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTh2NjcteDhxNS0zeDNn
Cross-Site Scripting in simditorEcosystems: npm
Packages: simditor
Source: GitHub Advisory Database
Blast Radius: 14.2
Published: about 5 years ago
Moderate
Ecosystems: npm
Packages: validator
Source: GitHub Advisory Database
Blast Radius: 34.7
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc5bXgtODh3Ny04Zjdx
XSS Filter Bypass via Encoded URL in validatorEcosystems: npm
Packages: validator
Source: GitHub Advisory Database
Blast Radius: 34.7
Published: over 5 years ago
Moderate
Ecosystems: npm
Packages: nhouston
Source: GitHub Advisory Database
Blast Radius: 3.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ0ZzktdzIzYy01cnc3
Directory Traversal in nhoustonEcosystems: npm
Packages: nhouston
Source: GitHub Advisory Database
Blast Radius: 3.2
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: @builder.io/qwik
Source: GitHub Advisory Database
Blast Radius: 17.6
Published: over 1 year ago
GSA_kwCzR0hTQS1obTdmLXJxN3Etajl4cM4AAxFC
@builder.io/qwik vulnerable to Cross-site ScriptingEcosystems: npm
Packages: @builder.io/qwik
Source: GitHub Advisory Database
Blast Radius: 17.6
Published: over 1 year ago
Moderate
Ecosystems: npm
Packages: pekeupload
Source: GitHub Advisory Database
Blast Radius: 1.8
Published: over 2 years ago
GSA_kwCzR0hTQS04OXE1LW1qNzgtcHc1d80X1g
Cross-site Scripting in pekeuploadEcosystems: npm
Packages: pekeupload
Source: GitHub Advisory Database
Blast Radius: 1.8
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: aedes
Source: GitHub Advisory Database
Blast Radius: 16.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRjbXgtaHJxOS1jMjNw
Improper Authorization in aedesEcosystems: npm
Packages: aedes
Source: GitHub Advisory Database
Blast Radius: 16.0
Published: almost 6 years ago
Moderate
Ecosystems: npm
Packages: @braintree/sanitize-url
Source: GitHub Advisory Database
Blast Radius: 22.4
Published: about 2 years ago
GSA_kwCzR0hTQS1ocXE3LTJxMnYtODJ4cc0zPQ
Cross-site Scripting in sanitize-urlEcosystems: npm
Packages: @braintree/sanitize-url
Source: GitHub Advisory Database
Blast Radius: 22.4
Published: about 2 years ago
Moderate
Ecosystems: npm
Packages: hapi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWozZzItbTVqai02MzM2
Unsafe Merging of CORS Configuration Conflict in hapiEcosystems: npm
Packages: hapi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: matrix-react-sdk
Source: GitHub Advisory Database
Blast Radius: 11.5
Published: 10 months ago
GSA_kwCzR0hTQS1jOXZ4LTJnN3ctcnA2Nc4AA0xY
matrix-react-sdk vulnerable to XSS in Export Chat featureEcosystems: npm
Packages: matrix-react-sdk
Source: GitHub Advisory Database
Blast Radius: 11.5
Published: 10 months ago
Moderate
Ecosystems: npm
Packages: nodebb
Source: GitHub Advisory Database
Blast Radius: 2.4
Published: over 2 years ago
GSA_kwCzR0hTQS1wZmo3LTJxZnctdndnbc0Ydg
NodeBB vulnerable to path traversal in translator moduleEcosystems: npm
Packages: nodebb
Source: GitHub Advisory Database
Blast Radius: 2.4
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: @auth0/nextjs-auth0
Source: GitHub Advisory Database
Blast Radius: 20.4
Published: over 2 years ago
GSA_kwCzR0hTQS0ybXF2LTRqM3Itdmp2cM0cpg
Open redirect in @auth0/nextjs-auth0Ecosystems: npm
Packages: @auth0/nextjs-auth0
Source: GitHub Advisory Database
Blast Radius: 20.4
Published: over 2 years ago
Moderate
Ecosystems: swift, pypi, pub, packagist, cargo, rubygems, nuget, go, maven, npm
Packages: github.com/pubnub/swift, pubnub, pubnub/pubnub, Pubnub, github.com/pubnub/go/v5, github.com/pubnub/go/v6, github.com/pubnub/go, github.com/pubnub/go/v7, com.pubnub:pubnub, com.pubnub:pubnub-kotlin
Source: GitHub Advisory Database
Blast Radius: 82.5
Published: 6 months ago
GSA_kwCzR0hTQS01ODQ0LXEzZmMtNTZyaM4AA3lZ
pubnub Insufficient Entropy vulnerabilityEcosystems: swift, pypi, pub, packagist, cargo, rubygems, nuget, go, maven, npm
Packages: github.com/pubnub/swift, pubnub, pubnub/pubnub, Pubnub, github.com/pubnub/go/v5, github.com/pubnub/go/v6, github.com/pubnub/go, github.com/pubnub/go/v7, com.pubnub:pubnub, com.pubnub:pubnub-kotlin
Source: GitHub Advisory Database
Blast Radius: 82.5
Published: 6 months ago
Moderate
Ecosystems: npm
Packages: ejs
Source: GitHub Advisory Database
Blast Radius: 37.7
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh3Y2YtcHA4Ny03eDZw
mde ejs vulnerable to XSSEcosystems: npm
Packages: ejs
Source: GitHub Advisory Database
Blast Radius: 37.7
Published: over 6 years ago
Moderate
Ecosystems: npm
Packages: mysql
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVmN20tbW1wYy1xaGg0
mysql Node.JS Module Vulnerable to Remote Memory ExposureEcosystems: npm
Packages: mysql
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
Moderate
Ecosystems: npm
Packages: marked
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNmamgtcDNnNC0zcTJm
VBScript Content Injection in markedEcosystems: npm
Packages: marked
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 6 years ago
Moderate
Ecosystems: npm
Packages: nunjucks
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY3cGgtcDVydi1waHcy
Cross-Site Scripting in nunjucksEcosystems: npm
Packages: nunjucks
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 5 years ago
Moderate
Ecosystems: npm
Packages: grapesjs
Source: GitHub Advisory Database
Blast Radius: 15.6
Published: almost 2 years ago
GSA_kwCzR0hTQS01ODlmLWM2NnAtaHhyNM4AAtpP
grapesjs before 0.19.5 vulnerable to Cross-site ScriptingEcosystems: npm
Packages: grapesjs
Source: GitHub Advisory Database
Blast Radius: 15.6
Published: almost 2 years ago
Moderate
Ecosystems: npm
Packages: hapi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZ3cmYtcjVyNC03Nzc1
Incorrect handling of CORS preflight request headers in hapiEcosystems: npm
Packages: hapi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Moderate
Ecosystems: npm
Packages: angular-redactor
Source: GitHub Advisory Database
Blast Radius: 1.8
Published: about 2 years ago
GSA_kwCzR0hTQS04OGZoLTg5NzktcTJycs4AAWaW
Angular Redactor XSS VulnerabilityEcosystems: npm
Packages: angular-redactor
Source: GitHub Advisory Database
Blast Radius: 1.8
Published: about 2 years ago
Moderate
Ecosystems: npm
Packages: crud-file-server
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWgyNGYtOW1tNC13MzM2
Cross-site Scripting (XSS) - Stored in crud-file-serverEcosystems: npm
Packages: crud-file-server
Source: GitHub Advisory Database
Blast Radius: 2.9
Published: almost 6 years ago
Moderate
Ecosystems: npm
Packages: handlebars
Source: GitHub Advisory Database
Blast Radius: 37.2
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlwcmgtMjU3dy05Mjc3
Cross-Site Scripting in handlebarsEcosystems: npm
Packages: handlebars
Source: GitHub Advisory Database
Blast Radius: 37.2
Published: over 5 years ago
Moderate
Ecosystems: npm
Packages: bootstrap
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBoNTgtNHZyai13Nmhy
bootstrap Cross-site Scripting vulnerabilityEcosystems: npm
Packages: bootstrap
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: over 5 years ago
Moderate
Ecosystems: npm
Packages: electron
Source: GitHub Advisory Database
Blast Radius: 30.3
Published: 6 months ago
GSA_kwCzR0hTQS03bTQ4LXdjOTMtOWc4Nc4AA3e-
ASAR Integrity bypass via filetype confusion in electronEcosystems: npm
Packages: electron
Source: GitHub Advisory Database
Blast Radius: 30.3
Published: 6 months ago
Moderate
Ecosystems: npm
Packages: uap-core
Source: GitHub Advisory Database
Blast Radius: 7.7
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ4N20tajcyOC1tancz
uap-core Regular Expression Denial of Service issueEcosystems: npm
Packages: uap-core
Source: GitHub Advisory Database
Blast Radius: 7.7
Published: about 5 years ago
Moderate
Ecosystems: npm
Packages: blinksocks
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 5 months ago
GSA_kwCzR0hTQS1wcWo1LTM3eGYteDVnY84AA39f
blinksocks has weak encryption algorithmsEcosystems: npm
Packages: blinksocks
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 5 months ago
Moderate
Ecosystems: npm
Packages: generate-password
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZxcWYtdnZjci03cXJ2
Cryptographically Weak PRNG in generate-passwordEcosystems: npm
Packages: generate-password
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
Moderate
Ecosystems: npm
Packages: jquery.terminal
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJod3AtZzRnNy1td3dq
Reflected Cross-Site Scripting in jquery.terminalEcosystems: npm
Packages: jquery.terminal
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
Moderate
Ecosystems: npm
Packages: scratch-svg-renderer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
GSA_kwCzR0hTQS1oM3ZxLXd2OGotMzZnd80hOQ
Cross-site Scripting in Scratch-Svg-RendererEcosystems: npm
Packages: scratch-svg-renderer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: floody
Source: GitHub Advisory Database
Blast Radius: 3.1
Published: almost 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNwOTItODg2Zy1xeHBx
Remote Memory Exposure in floodyEcosystems: npm
Packages: floody
Source: GitHub Advisory Database
Blast Radius: 3.1
Published: almost 5 years ago
Moderate
Ecosystems: npm
Packages: shelljs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
GSA_kwCzR0hTQS02NGc3LW12dzYtdjlxas0jWA
Improper Privilege Management in shelljsEcosystems: npm
Packages: shelljs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: redbird
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: almost 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg5NDgtZmZjNi1qZzUy
Insecure Default Configuration in redbirdEcosystems: npm
Packages: redbird
Source: GitHub Advisory Database
Blast Radius: 8.6
Published: almost 5 years ago
Moderate
Ecosystems: npm
Packages: request
Source: GitHub Advisory Database
Blast Radius: 35.0
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTd4ZnAtOWM1NS01dnFq
Remote Memory Exposure in requestEcosystems: npm
Packages: request
Source: GitHub Advisory Database
Blast Radius: 35.0
Published: over 5 years ago
Moderate
Ecosystems: npm
Packages: snyk-broker
Source: GitHub Advisory Database
Blast Radius: 1.5
Published: almost 2 years ago
GSA_kwCzR0hTQS1ncTc1LTVnYzMtcmZ3Z84AAto_
snyk-broker Path Traversal before v4.73.0Ecosystems: npm
Packages: snyk-broker
Source: GitHub Advisory Database
Blast Radius: 1.5
Published: almost 2 years ago
Moderate
Ecosystems: npm
Packages: markdown-it-toc
Source: GitHub Advisory Database
Blast Radius: 15.6
Published: almost 2 years ago
GSA_kwCzR0hTQS13ZnZ4LWZ4NzMtM3Jmas4AAtob
markdown-it-toc Cross-site Scripting due to title of generated toc and contents of header not being escapedEcosystems: npm
Packages: markdown-it-toc
Source: GitHub Advisory Database
Blast Radius: 15.6
Published: almost 2 years ago
Moderate
Ecosystems: npm
Packages: bodymen
Source: GitHub Advisory Database
Blast Radius: 14.6
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThoODQtOGo0Zi1wOTdx
Injection in bodymenEcosystems: npm
Packages: bodymen
Source: GitHub Advisory Database
Blast Radius: 14.6
Published: about 3 years ago
Moderate
Ecosystems: npm
Packages: @berslucas/liljs
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM1M3gtd3d4Mi1wZzk2
Cross-Site Scripting in @berslucas/liljsEcosystems: npm
Packages: @berslucas/liljs
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: mysql
Source: GitHub Advisory Database
Blast Radius: 29.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1mOTgyLW14d2MtM21yeM4AAhqL
MySQL for Node.js Unsafe OptionsEcosystems: npm
Packages: mysql
Source: GitHub Advisory Database
Blast Radius: 29.0
Published: almost 2 years ago
Moderate
Ecosystems: npm
Packages: serve
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNwZ3Itd21yOS1xeHY0
Cross-Site Scripting in serveEcosystems: npm
Packages: serve
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: notevil
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlneHItcmh4Ni00amd2
Sandbox Breakout / Prototype Pollution in notevilEcosystems: npm
Packages: notevil
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: nwmatcher
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTYzOTQtNmg5aC1jZmpn
Regular Expression Denial of ServiceEcosystems: npm
Packages: nwmatcher
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
Moderate
Ecosystems: npm
Packages: wizard-syncronizer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdndzMtZ2Y0cC02Mnhj
Command Injection in wizard-syncronizerEcosystems: npm
Packages: wizard-syncronizer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: bootstrap-sass, bootstrap
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdoNzctM3g0bS00cTln
Moderate severity vulnerability that affects bootstrap and bootstrap-sassEcosystems: npm
Packages: bootstrap-sass, bootstrap
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
Moderate
Ecosystems: npm
Packages: express-mock-middleware
Source: GitHub Advisory Database
Blast Radius: 5.3
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXYzOWgtcW0zMi04Z3dx
Improperly Controlled Modification of Dynamically-Determined Object Attributes in express-mock-middlewareEcosystems: npm
Packages: express-mock-middleware
Source: GitHub Advisory Database
Blast Radius: 5.3
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: file-upload-with-preview
Source: GitHub Advisory Database
Blast Radius: 8.1
Published: over 2 years ago
GSA_kwCzR0hTQS05N3B2LTQzMzgtcjV2cM0Vnw
Cross-site Scripting in file-upload-with-previewEcosystems: npm
Packages: file-upload-with-preview
Source: GitHub Advisory Database
Blast Radius: 8.1
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: survey-creator
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 months ago
GSA_kwCzR0hTQS14Z2o0LTJocmYtajR4Z84AA6Mj
Cross-site scripting in Survey CreatorEcosystems: npm
Packages: survey-creator
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 months ago
Moderate
Ecosystems: npm
Packages: m-server
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZjNnItNHg2Zy1tbXFj
Path Traversal in m-serverEcosystems: npm
Packages: m-server
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
Moderate
Ecosystems: npm
Packages: svg2png
Source: GitHub Advisory Database
Blast Radius: 21.6
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1wcDUtMng1NS00OXh3
XSS in svg2png (NPM package)Ecosystems: npm
Packages: svg2png
Source: GitHub Advisory Database
Blast Radius: 21.6
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: markdown-it-decorate
Source: GitHub Advisory Database
Blast Radius: 13.6
Published: almost 2 years ago
GSA_kwCzR0hTQS1yaGY1LTIzNzgtM3czd84AAtea
markdown-it-decorate vulnerable to cross-site scripting (XSS)Ecosystems: npm
Packages: markdown-it-decorate
Source: GitHub Advisory Database
Blast Radius: 13.6
Published: almost 2 years ago
Moderate
Ecosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV2bTgtaGhnci1qY2pw
Cross-site scripting vulnerability in TinyMCEEcosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Moderate
Ecosystems: npm
Packages: swagger-ui
Source: GitHub Advisory Database
Blast Radius: 16.9
Published: almost 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg5cDItZnhxNi0ybTVm
Reverse Tabnapping in swagger-uiEcosystems: npm
Packages: swagger-ui
Source: GitHub Advisory Database
Blast Radius: 16.9
Published: almost 5 years ago
Moderate
Ecosystems: npm
Packages: stringstream
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1mNngtN21tNC14Mmc3
Out-of-bounds Read in stringstreamEcosystems: npm
Packages: stringstream
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
Moderate
Ecosystems: npm
Packages: @backstage/techdocs-common
Source: GitHub Advisory Database
Blast Radius: 12.3
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBnZjgtMjhnZy12cHI2
Path traversalEcosystems: npm
Packages: @backstage/techdocs-common
Source: GitHub Advisory Database
Blast Radius: 12.3
Published: almost 3 years ago
Moderate
Ecosystems: npm
Packages: openpgp
Source: GitHub Advisory Database
Blast Radius: 18.3
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc3amYtZmpqZi14Y3d3
Invalid Curve Attack in openpgpEcosystems: npm
Packages: openpgp
Source: GitHub Advisory Database
Blast Radius: 18.3
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: dojo
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTUzNnEtOGd4eC1tNzgy
Cross-Site Scripting in dojoEcosystems: npm
Packages: dojo
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: keyget
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
GSA_kwCzR0hTQS05ZnA3LTRmam0tcTNtZs0nnQ
Prototype Pollution in keygetEcosystems: npm
Packages: keyget
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: karma
Source: GitHub Advisory Database
Blast Radius: 36.6
Published: over 2 years ago
GSA_kwCzR0hTQS03eDdjLXFtNDgtcHE5Y80pMQ
Cross-site Scripting in karmaEcosystems: npm
Packages: karma
Source: GitHub Advisory Database
Blast Radius: 36.6
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: jsrsasign
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg4N3EtZzJ3cC00N3Bq
Signatures are mistakenly recognized to be valid in jsrsasignEcosystems: npm
Packages: jsrsasign
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: @peertube/embed-api
Source: GitHub Advisory Database
Blast Radius: 4.5
Published: over 2 years ago
GSA_kwCzR0hTQS1tdjI2LWN4MjMtdnJmZ80p0A
Server-Side Request Forgery in @peertube/embed-apiEcosystems: npm
Packages: @peertube/embed-api
Source: GitHub Advisory Database
Blast Radius: 4.5
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: dompurify
Source: GitHub Advisory Database
Blast Radius: 29.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTYzcTctaDg5NS1tOTgy
Cross-site Scripting in dompurifyEcosystems: npm
Packages: dompurify
Source: GitHub Advisory Database
Blast Radius: 29.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: @evershop/evershop
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: 5 months ago
GSA_kwCzR0hTQS1tNnZtLWZmOXYtanAzcs4AA3pZ
Cross Site Scripting in evershopEcosystems: npm
Packages: @evershop/evershop
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: 5 months ago
Moderate
Ecosystems: npm
Packages: url-parse
Source: GitHub Advisory Database
Blast Radius: 34.0
Published: over 2 years ago
GSA_kwCzR0hTQS1ycWZmLTgzN2gtbW01Ms0rxw
Authorization bypass in url-parseEcosystems: npm
Packages: url-parse
Source: GitHub Advisory Database
Blast Radius: 34.0
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: gladys
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 5 months ago
GSA_kwCzR0hTQS1jNzlmLXBxZ2YtZmhwM84AA3n1
Directory Traversal in Gladys AssistantEcosystems: npm
Packages: gladys
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 5 months ago
Moderate
Ecosystems: npm
Packages: @actions/http-client
Source: GitHub Advisory Database
Blast Radius: 31.6
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl3NnYtbTd3cC1qd2c0
Http request which redirect to another hostname do not strip authorization header in @actions/http-clientEcosystems: npm
Packages: @actions/http-client
Source: GitHub Advisory Database
Blast Radius: 31.6
Published: about 4 years ago
Moderate
Ecosystems: npm
Packages: karma
Source: GitHub Advisory Database
Blast Radius: 32.4
Published: about 2 years ago
GSA_kwCzR0hTQS1yYzN4LWpmNWcteHZjNc0u4Q
Open redirect in karmaEcosystems: npm
Packages: karma
Source: GitHub Advisory Database
Blast Radius: 32.4
Published: about 2 years ago
Moderate
Ecosystems: npm
Packages: @evershop/evershop
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: 5 months ago
GSA_kwCzR0hTQS1namo4LW04M2MtcXY5aM4AA3pY
Cross-site Scripting in evershopEcosystems: npm
Packages: @evershop/evershop
Source: GitHub Advisory Database
Blast Radius: 6.1
Published: 5 months ago
Moderate
Ecosystems: npm
Packages: url-parse
Source: GitHub Advisory Database
Blast Radius: 41.7
Published: about 2 years ago
GSA_kwCzR0hTQS04djM4LXB3NjItOWN3Ms0s1g
url-parse Incorrectly parses URLs that include an '@'Ecosystems: npm
Packages: url-parse
Source: GitHub Advisory Database
Blast Radius: 41.7
Published: about 2 years ago
Moderate
Ecosystems: npm
Packages: apollo-server-micro, apollo-server-lambda, apollo-server-koa, apollo-server-hapi, apollo-server-fastify, apollo-server-express, apollo-server-cloudflare, apollo-server-cloud-functions, apollo-server-core, apollo-server-cache-memcached, apollo-server-azure-functions, apollo-server
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc0MmctN3ZmYy14ZjM3
Introspection in schema validation in Apollo ServerEcosystems: npm
Packages: apollo-server-micro, apollo-server-lambda, apollo-server-koa, apollo-server-hapi, apollo-server-fastify, apollo-server-express, apollo-server-cloudflare, apollo-server-cloud-functions, apollo-server-core, apollo-server-cache-memcached, apollo-server-azure-functions, apollo-server
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 4 years ago
Moderate
Ecosystems: npm
Packages: status-board
Source: GitHub Advisory Database
Blast Radius: 6.4
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZtNHItY2dtMy02cTdx
Cross-Site Scripting in status-boardEcosystems: npm
Packages: status-board
Source: GitHub Advisory Database
Blast Radius: 6.4
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: @firebase/util
Source: GitHub Advisory Database
Blast Radius: 28.9
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZwbTUtdnY5Ny1qZndn
Uncontrolled Resource Consumption in firebaseEcosystems: npm
Packages: @firebase/util
Source: GitHub Advisory Database
Blast Radius: 28.9
Published: about 3 years ago
Moderate
Ecosystems: npm
Packages: urijs
Source: GitHub Advisory Database
Blast Radius: 32.2
Published: about 2 years ago
GSA_kwCzR0hTQS04aDJmLTdqYzQtN20zbc0wiw
Open Redirect in urijsEcosystems: npm
Packages: urijs
Source: GitHub Advisory Database
Blast Radius: 32.2
Published: about 2 years ago
Moderate
Ecosystems: npm
Packages: hono
Source: GitHub Advisory Database
Blast Radius: 15.0
Published: 26 days ago
GSA_kwCzR0hTQS0zbXBmLXJjYzctNTM0N84AA7QJ
Hono vulnerable to Restricted Directory Traversal in serveStatic with denoEcosystems: npm
Packages: hono
Source: GitHub Advisory Database
Blast Radius: 15.0
Published: 26 days ago
Moderate
Ecosystems: swift, npm, packagist
Packages: github.com/mongodb/mongo-swift-driver, mongodb, mongodb/mongodb
Source: GitHub Advisory Database
Blast Radius: 47.0
Published: 9 months ago
GSA_kwCzR0hTQS12eHZtLXF3dzMtMmZoN84AA1jJ
MongoDB Driver may publish events containing authentication-related dataEcosystems: swift, npm, packagist
Packages: github.com/mongodb/mongo-swift-driver, mongodb, mongodb/mongodb
Source: GitHub Advisory Database
Blast Radius: 47.0
Published: 9 months ago
Moderate
Ecosystems: npm
Packages: generator-jhipster-kotlin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBmeGYtd2g5Ni1mdmpj
Log Forging in generator-jhipster-kotlinEcosystems: npm
Packages: generator-jhipster-kotlin
Source: GitHub Advisory Database
Blast Radius: 8.7
Published: almost 4 years ago
Moderate
Ecosystems: npm
Packages: mongodb-client-encryption
Source: GitHub Advisory Database
Blast Radius: 18.2
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJqbWYtcDg4Mi02NDVt
mongodb-client-encryption vulnerable to Improper Certificate ValidationEcosystems: npm
Packages: mongodb-client-encryption
Source: GitHub Advisory Database
Blast Radius: 18.2
Published: about 3 years ago
Moderate
Ecosystems: npm
Packages: swagger-ui
Source: GitHub Advisory Database
Blast Radius: 16.9
Published: about 2 years ago
GSA_kwCzR0hTQS1jcjNxLXBxZ3EtbThjMs0yWA
Spoofing attack in swagger-uiEcosystems: npm
Packages: swagger-ui
Source: GitHub Advisory Database
Blast Radius: 16.9
Published: about 2 years ago
Moderate
Ecosystems: npm
Packages: value-censorship
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhycjYtNnd3My1mM3Ft
Sandbox Breakout / Arbitrary Code Execution in value-censorshipEcosystems: npm
Packages: value-censorship
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: ms
Source: GitHub Advisory Database
Blast Radius: 33.7
Published: over 1 year ago
GSA_kwCzR0hTQS13OW1yLTRtZnItNDk5Zs4AAwww
Vercel ms Inefficient Regular Expression Complexity vulnerabilityEcosystems: npm
Packages: ms
Source: GitHub Advisory Database
Blast Radius: 33.7
Published: over 1 year ago
Moderate
Ecosystems: npm
Packages: swagger-ui-dist
Source: GitHub Advisory Database
Blast Radius: 29.2
Published: about 2 years ago
GSA_kwCzR0hTQS02Yzl4LW1qM2ctaDQ3eM0ybQ
Spoofing attack in swagger-ui-distEcosystems: npm
Packages: swagger-ui-dist
Source: GitHub Advisory Database
Blast Radius: 29.2
Published: about 2 years ago
Moderate
Ecosystems: npm
Packages: twitter-fetcher-js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
GSA_kwCzR0hTQS1tNjg4LWN4MnAtcmdxOc4AAwp5
Twitter-Post-Fetcher vulnerable to Use of Web Link to Untrusted Target with window.opener AccessEcosystems: npm
Packages: twitter-fetcher-js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 1 year ago
Moderate
Ecosystems: npm
Packages: jsrsasign
Source: GitHub Advisory Database
Blast Radius: 23.0
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc3NTMtangzNy03eHdo
ECDSA signature vulnerability of Minerva timing attack in jsrsasignEcosystems: npm
Packages: jsrsasign
Source: GitHub Advisory Database
Blast Radius: 23.0
Published: almost 4 years ago
Moderate
Ecosystems: npm
Packages: buttle
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBxcHAtMjM2My02NDl2
Cross-Site Scripting in buttleEcosystems: npm
Packages: buttle
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: semver
Source: GitHub Advisory Database
Blast Radius: 32.4
Published: 11 months ago
GSA_kwCzR0hTQS1jMnFmLXJ4amotcXFnd84AAz95
semver vulnerable to Regular Expression Denial of ServiceEcosystems: npm
Packages: semver
Source: GitHub Advisory Database
Blast Radius: 32.4
Published: 11 months ago
Statistics
Advisories: 18,774
Packages: 8,381
Repositories: 1,400
Ecosystems: 12
Packages: 8,381
Repositories: 1,400
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
parse-server
29
electron
26
@openzeppelin/contracts-upgradeable
21
@openzeppelin/contracts
20
directus
18
sequelize
16
next
15
swagger-ui
14
tinymce
14
ghost
14
strapi
13
joplin
13
ckeditor4
13
undici
12
vm2
12
nodebb
11
handlebars
11
marked
11
angular
11
nocodb
10
@evershop/evershop
9
serve
9
next-auth
9
TinyMCE
9
tinymce/tinymce
9
node-forge
8
urijs
8
jsrsasign
8
express-cart
8
editor.md
8
validator
8
npm
8
@strapi/strapi
8
url-parse
8
tar
8
steal
8
systeminformation
8
bootstrap
8
matrix-js-sdk
8
org.webjars.npm:jquery
8
jquery
8
jquery-rails
8
total.js
7
sanitize-html
7
uptime-kuma
7
jquery-ui
7
jquery-ui-rails
7
matrix-appservice-irc
7
org.webjars.npm:jquery-ui
7
jQuery.UI.Combined
7
snyk-broker
7
jQuery
7
shescape
7
lodash
7
matrix-react-sdk
7
hermes-engine
7
hapi
7
safe-eval
6
aaptjs
6
rsshub
6
parse-url
6
lodash-es
5
total4
5
openpgp
5
sweetalert2
5
public
5
ejs
5
prismjs
5
vite
5
mongoose
5
dojo
5
yarn
5
vditor
5
ua-parser-js
5
@strapi/plugin-users-permissions
5
rendertron
5
xlsx
5
keystone
5
safer-eval
4
muhammara
4
remarkable
4
convert-svg-core
4
axios
4
hummus
4
simple-git
4
engine.io
4
jsonwebtoken
4
realms-shim
4
ws
4
fastify
4
katex
4
dompurify
4
apostrophe
4
vega
4
auth0-js
4
@keystone-6/core
4
materialize-css
4
moment
4
mongo-express
4
valine
4
mermaid
4
auth0-lock
4
@backstage/plugin-scaffolder-backend
4
qs
4
ecstatic
4
simple-markdown
4
generator-jhipster
4
mysql2
4
meshcentral
4
aws-iot-device-sdk-v2
4
glance
4
apollo-server-core
4
awsiotsdk
4
follow-redirects
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
ses
3
loader-utils
3
org.webjars.npm:xlsx
3
node-red-dashboard
3
notevil
3
object-path
3
passport-wsfed-saml2
3
js-yaml
3
grunt
3
jspdf
3
n8n
3
locutus
3
jointjs
3
codecov
3
feathers-sequelize
3
mysql
3
wrangler
3
yapi-vendor
3
@frangoteam/fuxa
3
ftp-srv
3
renovate
3
blamer
3
bootstrap
3
@ckeditor/ckeditor5-markdown-gfm
3
raneto
3
tough-cookie
3
froala-editor
3
highcharts
3
localhost-now
3
mixme
3
connect
3
jose
3
socket.io-file
3
fast-xml-parser
3
browserify-shim
3
slpjs
3
dns-sync
3
protobufjs
3
http-live-simulator
3
uap-core
3
xmldom
3
m-server
3
keycloak-connect
3
@strapi/utils
3
@cubejs-backend/api-gateway
3
nodemailer
3
slp-validate
3
apollo-server
3
node-opcua
3
postcss
3
jquery-validation
3
socket.io-parser
3
@backstage/techdocs-common
3
node-ipc
3
mathjs
3
node-jose
3
parsel
3
@uppy/companion
3
nadesiko3
3
convict
3
dojox
3
simplehttpserver
3
fuxa-server
3
mxgraph
3
statics-server
3
stimulsoft-dashboards-js
3
express-fileupload
3
node-fetch
3
xdLocalStorage
3
@hapi/subtext
3
subtext
3
@apollo/server
3
json-pointer
3
immer
3
serialize-to-js
3
buttle
3
typeorm
3
lodash.defaultsdeep
3
@vrite/sdk
3
@commercial/subtext
3
json-ptr
3
@sveltejs/kit
3
snyk
3
@soketi/soketi
3
ids-enterprise
3
Filter by Repository
https://github.com/parse-community/parse-server
29
https://github.com/electron/electron
25
https://github.com/strapi/strapi
21
https://github.com/OpenZeppelin/openzeppelin-contracts
20
https://github.com/directus/directus
17
https://github.com/sequelize/sequelize
16
https://github.com/tinymce/tinymce
14
https://github.com/swagger-api/swagger-ui
13
https://github.com/TryGhost/Ghost
12
https://github.com/backstage/backstage
12
https://github.com/laurent22/joplin
12
https://github.com/ckeditor/ckeditor4
12
https://github.com/patriksimek/vm2
12
https://github.com/nodejs/undici
12
https://github.com/NodeBB/NodeBB
11
https://github.com/vercel/next.js
11
https://github.com/jquery/jquery
10
https://github.com/nextauthjs/next-auth
10
https://github.com/keystonejs/keystone
10
https://github.com/nocodb/nocodb
10
https://github.com/evershopcommerce/evershop
9
https://github.com/stealjs/steal
8
https://github.com/kjur/jsrsasign
8
https://github.com/apollographql/apollo-server
8
https://github.com/pandao/editor.md
8
https://github.com/matrix-org/matrix-js-sdk
8
https://github.com/sebhildebrandt/systeminformation
8
https://github.com/digitalbazaar/forge
8
https://github.com/twbs/bootstrap
7
https://github.com/unshiftio/url-parse
7
https://github.com/lodash/lodash
7
https://github.com/louislam/uptime-kuma
7
https://github.com/matrix-org/matrix-appservice-irc
7
https://github.com/matrix-org/matrix-react-sdk
7
https://github.com/ericcornelissen/shescape
7
https://github.com/jquery/jquery-ui
6
https://github.com/facebook/hermes
6
https://github.com/DIYgod/RSSHub
6
https://github.com/npm/node-tar
6
https://github.com/panva/jose
6
https://github.com/totaljs/framework
6
https://github.com/shenzhim/aaptjs
6
https://github.com/ionicabizau/parse-url
6
https://github.com/eclipse-theia/theia
6
https://github.com/vitejs/vite
5
https://github.com/openpgpjs/openpgpjs
5
https://github.com/markedjs/marked
5
https://github.com/BlackFan/client-side-prototype-pollution
5
https://github.com/npm/cli
5
https://github.com/sweetalert2/sweetalert2
5
https://github.com/faisalman/ua-parser-js
5
https://github.com/handlebars-lang/handlebars.js
5
https://github.com/GoogleChrome/rendertron
5
https://github.com/apostrophecms/sanitize-html
5
https://github.com/gatsbyjs/gatsby
5
https://github.com/hacksparrow/safe-eval
5
https://github.com/vega/vega
5
https://github.com/follow-redirects/follow-redirects
4
https://github.com/jhipster/generator-jhipster
4
https://github.com/xCss/Valine
4
https://github.com/jonschlinkert/remarkable
4
https://github.com/mrvautin/expressCart
4
https://github.com/hapijs/hapi
4
https://github.com/aws/aws-iot-device-sdk-java-v2
4
https://github.com/PrismJS/prism
4
https://github.com/sidorares/node-mysql2
4
https://github.com/steveukx/git-js
4
https://github.com/cloudflare/workers-sdk
4
https://github.com/ofirdagan/cross-domain-local-storage
4
https://github.com/axios/axios
4
https://github.com/KaTeX/KaTeX
4
https://github.com/auth0/lock
4
https://github.com/Ylianst/MeshCentral
4
https://github.com/socketio/engine.io
4
https://github.com/balderdashy/sails
4
https://github.com/medialize/URI.js
4
https://github.com/medialize/uri.js
4
https://github.com/yarnpkg/yarn
4
https://github.com/auth0/node-jsonwebtoken
4
https://github.com/angular/angular.js
4
https://github.com/mde/ejs
4
https://github.com/fastify/fastify
4
https://github.com/npm/npm
4
https://github.com/Dogfalo/materialize
4
https://github.com/nodejs/llhttp
3
https://github.com/OpenZeppelin/openzeppelin-contracts-upgradeable
3
https://github.com/highcharts/highcharts
3
https://github.com/neocotic/convert-svg
3
https://github.com/sveltejs/kit
3
https://github.com/node-fetch/node-fetch
3
https://github.com/libxmljs/libxmljs
3
https://github.com/thlorenz/browserify-shim
3
https://github.com/kujirahand/nadesiko3
3
https://github.com/beerpwn/CVE
3
https://github.com/immerjs/immer
3
https://github.com/node-opcua/node-opcua
3
https://github.com/infor-design/enterprise-ng
3
https://github.com/transloadit/uppy
3
https://github.com/feathersjs-ecosystem/feathers-sequelize
3
https://github.com/nodemailer/nodemailer
3
https://github.com/n8n-io/n8n
3
https://github.com/postcss/postcss
3
https://github.com/MrRio/jsPDF
3
https://github.com/dwisiswant0/advisory
3
https://github.com/mozilla/node-convict
3
https://github.com/mongo-express/mongo-express
3
https://github.com/dojo/dojox
3
https://github.com/dojo/dojo
3
https://github.com/docsifyjs/docsify
3
https://github.com/mongodb/js-bson
3
https://github.com/facebook/react
3
https://github.com/moment/moment
3
https://github.com/nasa/openmct
3
https://github.com/renovatebot/renovate
3
https://github.com/RIAEvangelist/node-ipc
3
https://github.com/mermaid-js/mermaid
3
https://github.com/salesforce/tough-cookie
3
https://github.com/cure53/DOMPurify
3
https://github.com/gruntjs/grunt
3
https://github.com/NaturalIntelligence/fast-xml-parser
3
https://github.com/clientIO/joint
3
https://github.com/simpleledger/slpjs
3
https://github.com/mariocasciaro/object-path
3
https://github.com/ckeditor/ckeditor5
3
https://github.com/cisco/node-jose
3
https://github.com/chjj/marked
3
https://github.com/skoranga/node-dns-sync
3
https://github.com/Marak/colors.js
3
https://github.com/manuelstofer/json-pointer
3
https://github.com/socketio/socket.io-parser
3
https://github.com/soketi/soketi
3
https://github.com/hapijs/subtext
3
https://github.com/jfhbrook/node-ecstatic
3
https://github.com/webpack/loader-utils
3
https://github.com/ua-parser/uap-core
3
https://github.com/adaltas/node-mixme
3
https://github.com/typeorm/typeorm
3
https://github.com/zeit/next.js
3
https://github.com/websockets/ws
3
https://github.com/vriteio/vrite
3
https://github.com/xmldom/xmldom
3
https://github.com/jarofghosts/glance
3
https://github.com/apostrophecms/apostrophe
3
https://github.com/auth0/passport-wsfed-saml2
3
https://github.com/jquery-validation/jquery-validation
3
https://github.com/josdejong/mathjs
3
https://github.com/zestedesavoir/zmarkdown
3
https://github.com/Automattic/mongoose
3
https://github.com/vanessa219/vditor
3
https://github.com/vendure-ecommerce/vendure
3
https://github.com/YMFE/yapi
3
https://github.com/matrix-org/matrix-appservice-bridge
2
https://github.com/jsuites/jsuites
2
https://github.com/mathjax/MathJax
2
https://github.com/codecov/codecov-node
2
https://github.com/cloudhead/node-static
2
https://github.com/jameswlane/status-board
2
https://github.com/shelljs/shelljs
2
https://github.com/commenthol/safer-eval
2
https://github.com/commenthol/serialize-to-js
2
https://github.com/vvakame/fs-git
2
https://github.com/senchalabs/connect
2
https://github.com/semantic-release/semantic-release
2
https://github.com/peerigon/angular-expressions
2
https://github.com/peterbraden/node-opencv
2
https://github.com/ahdinosaur/set-in
2
https://github.com/josdejong/jsoneditor
2
https://github.com/cronvel/tree-kit
2
https://github.com/karma-runner/karma
2
https://github.com/snyk/cli
2
https://github.com/Finastra/ssr-pages
2
https://github.com/manvel-khnkoyan/jpv
2
https://github.com/jonschlinkert/mixin-deep
2
https://github.com/jwadhams/json-logic-js
2
https://github.com/justmoon/node-bignum
2
https://github.com/chocobozzz/peertube
2
https://github.com/chriso/validator.js
2
https://github.com/christian-bromann/rgb2hex
2
https://github.com/sindresorhus/semver-regex
2
https://github.com/sindresorhus/is-svg
2
https://github.com/yahoo/serialize-javascript
2
https://github.com/aFarkas/lazysizes
2
https://github.com/jonschlinkert/set-value
2
https://github.com/markdown-it/markdown-it
2
https://github.com/simpleledger/slp-validate.js
2
https://github.com/julianhille/MuhammaraJS
2
https://github.com/marudor/libxmljs2
2
https://github.com/simonh1000/angular-http-server
2
https://github.com/jcubic/jquery.terminal
2
https://github.com/endojs/endo
2
https://github.com/vivaxy/here
2
https://github.com/Agoric/realms-shim
2
https://github.com/payloadcms/payload
2
https://github.com/guardian/html-janitor
2
https://github.com/mysqljs/mysql
2
https://github.com/froala/wysiwyg-editor
2
https://github.com/mithunsatheesh/node-rules
2
https://github.com/dfinity/agent-js
2
https://github.com/mozilla/pdf.js
2