Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
npm Security Advisories
Loading...
Critical
Ecosystems: npm
Packages: macaddress
Source: GitHub Advisory Database
Blast Radius: 51.7
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBwNTctbXFtaC00NGg3
Command Injection in macaddressEcosystems: npm
Packages: macaddress
Source: GitHub Advisory Database
Blast Radius: 51.7
Published: over 5 years ago
High
Ecosystems: npm
Packages: hoek, @hapi/hoek
Source: GitHub Advisory Database
Blast Radius: 51.1
Published: over 1 year ago
GSA_kwCzR0hTQS1jNDI5LTVwN3YtdmdqcM4AAvB6
hoek subject to prototype pollution via the clone function.Ecosystems: npm
Packages: hoek, @hapi/hoek
Source: GitHub Advisory Database
Blast Radius: 51.1
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: grunt-karma
Source: GitHub Advisory Database
Blast Radius: 51.0
Published: over 1 year ago
GSA_kwCzR0hTQS1oY2o0LXhmNngtNjN3as4AAvUC
Grunt-karma vulnerable to prototype pollutionEcosystems: npm
Packages: grunt-karma
Source: GitHub Advisory Database
Blast Radius: 51.0
Published: over 1 year ago
High
Ecosystems: npm
Packages: jws
Source: GitHub Advisory Database
Blast Radius: 51.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdqY3ctdjQ0Ny0ydzdx
Forgeable Public/Private Tokens in jwsEcosystems: npm
Packages: jws
Source: GitHub Advisory Database
Blast Radius: 51.0
Published: over 3 years ago
Moderate
Ecosystems: hex, npm
Packages: phoenix_html
Source: GitHub Advisory Database
Blast Radius: 50.9
Published: over 1 year ago
GSA_kwCzR0hTQS01ZzJoLTl4NXYtNWgzeM4AAw18
phoenix_html allows Cross-site Scripting in HEEx class attributesEcosystems: hex, npm
Packages: phoenix_html
Source: GitHub Advisory Database
Blast Radius: 50.9
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: property-expr
Source: GitHub Advisory Database
Blast Radius: 50.9
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZmdzQtaHI2OS1nM3J2
Prototype Pollution in property-exprEcosystems: npm
Packages: property-expr
Source: GitHub Advisory Database
Blast Radius: 50.9
Published: almost 3 years ago
High
Ecosystems: npm
Packages: follow-redirects
Source: GitHub Advisory Database
Blast Radius: 50.4
Published: over 2 years ago
GSA_kwCzR0hTQS03NGZqLTJqMmgtYzQycc0hVA
Exposure of sensitive information in follow-redirectsEcosystems: npm
Packages: follow-redirects
Source: GitHub Advisory Database
Blast Radius: 50.4
Published: over 2 years ago
High
Ecosystems: npm
Packages: fresh
Source: GitHub Advisory Database
Blast Radius: 50.3
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlxajktMzZqbS1wcnB2
Regular Expression Denial of Service in freshEcosystems: npm
Packages: fresh
Source: GitHub Advisory Database
Blast Radius: 50.3
Published: almost 6 years ago
Critical
Ecosystems: npm
Packages: getobject
Source: GitHub Advisory Database
Blast Radius: 50.2
Published: over 2 years ago
GSA_kwCzR0hTQS05NTdqLTU5YzItajY5Ms0WaA
Prototype pollution in getobjectEcosystems: npm
Packages: getobject
Source: GitHub Advisory Database
Blast Radius: 50.2
Published: over 2 years ago
High
Ecosystems: npm
Packages: hoek
Source: GitHub Advisory Database
Blast Radius: 50.1
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpwNHgtdzYzbS03d2dt
Prototype Pollution in hoekEcosystems: npm
Packages: hoek
Source: GitHub Advisory Database
Blast Radius: 50.1
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: mysql2
Source: GitHub Advisory Database
Blast Radius: 50.0
Published: 11 days ago
GSA_kwCzR0hTQS00cmNoLTJmaDgtOTR2d84AA7Pp
MySQL2 for Node Arbitrary Code InjectionEcosystems: npm
Packages: mysql2
Source: GitHub Advisory Database
Blast Radius: 50.0
Published: 11 days ago
Critical
Ecosystems: npm
Packages: mysql2
Source: GitHub Advisory Database
Blast Radius: 50.0
Published: 23 days ago
GSA_kwCzR0hTQS1mcHc3LWoyaGctNjl2Nc4AA66u
mysql2 Remote Code Execution (RCE) via the readCodeFor functionEcosystems: npm
Packages: mysql2
Source: GitHub Advisory Database
Blast Radius: 50.0
Published: 23 days ago
High
Ecosystems: npm
Packages: dns-packet
Source: GitHub Advisory Database
Blast Radius: 49.8
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTN3Y3EteDNtcS02cjlw
Potential memory exposure in dns-packetEcosystems: npm
Packages: dns-packet
Source: GitHub Advisory Database
Blast Radius: 49.8
Published: almost 3 years ago
High
Ecosystems: npm
Packages: forwarded
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1wY2YtNGdtaC0yM3c4
Regular Expression Denial of Service in forwardedEcosystems: npm
Packages: forwarded
Source: GitHub Advisory Database
Blast Radius: 49.6
Published: almost 6 years ago
Critical
Ecosystems: npm
Packages: just-extend
Source: GitHub Advisory Database
Blast Radius: 49.5
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY3NW0tODVydy1qM3c0
Prototype Pollution in just-extendEcosystems: npm
Packages: just-extend
Source: GitHub Advisory Database
Blast Radius: 49.5
Published: about 5 years ago
High
Ecosystems: npm
Packages: decamelize
Source: GitHub Advisory Database
Blast Radius: 49.4
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE1YzQtMzlmNS1tNjhq
Regular Expression Denial of Service in decamelizeEcosystems: npm
Packages: decamelize
Source: GitHub Advisory Database
Blast Radius: 49.4
Published: almost 6 years ago
High
Ecosystems: npm
Packages: handlebars
Source: GitHub Advisory Database
Blast Radius: 49.4
Published: about 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNjcXItNThybS01N2Y4
Arbitrary Code Execution in HandlebarsEcosystems: npm
Packages: handlebars
Source: GitHub Advisory Database
Blast Radius: 49.4
Published: about 2 years ago
High
Ecosystems: npm
Packages: serialize-javascript
Source: GitHub Advisory Database
Blast Radius: 49.4
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh4Y2MtZjUycC13Yzk0
Insecure serialization leading to RCE in serialize-javascriptEcosystems: npm
Packages: serialize-javascript
Source: GitHub Advisory Database
Blast Radius: 49.4
Published: over 3 years ago
High
Ecosystems: packagist, npm
Packages: ckeditor/ckeditor, ckeditor4
Source: GitHub Advisory Database
Blast Radius: 49.0
Published: over 2 years ago
GSA_kwCzR0hTQS03aDI2LTYzbTctcWhmMs0XTw
HTML comments vulnerability allowing to execute JavaScript codeEcosystems: packagist, npm
Packages: ckeditor/ckeditor, ckeditor4
Source: GitHub Advisory Database
Blast Radius: 49.0
Published: over 2 years ago
High
Ecosystems: npm, nuget
Packages: set-value, set-value-nuget
Source: GitHub Advisory Database
Blast Radius: 49.0
Published: over 2 years ago
GSA_kwCzR0hTQS00anFjLThtNXItOXJwcs0Vvg
Prototype Pollution in set-valueEcosystems: npm, nuget
Packages: set-value, set-value-nuget
Source: GitHub Advisory Database
Blast Radius: 49.0
Published: over 2 years ago
High
Ecosystems: npm
Packages: normalize-url
Source: GitHub Advisory Database
Blast Radius: 48.9
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXB4NGgteGczMi1xOTU1
ReDoS in normalize-urlEcosystems: npm
Packages: normalize-url
Source: GitHub Advisory Database
Blast Radius: 48.9
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: knex
Source: GitHub Advisory Database
Blast Radius: 48.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU4djQtcXd4NS03ZjU5
SQL Injection in knexEcosystems: npm
Packages: knex
Source: GitHub Advisory Database
Blast Radius: 48.8
Published: over 4 years ago
High
Ecosystems: npm
Packages: tar
Source: GitHub Advisory Database
Blast Radius: 48.8
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdmanItM2ptbS00Zzl2
Symlink Arbitrary File Overwrite in tarEcosystems: npm
Packages: tar
Source: GitHub Advisory Database
Blast Radius: 48.8
Published: over 6 years ago
High
Ecosystems: npm
Packages: tar
Source: GitHub Advisory Database
Blast Radius: 48.8
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo0NG0tcW02cC1ocDdt
Arbitrary File Overwrite in tarEcosystems: npm
Packages: tar
Source: GitHub Advisory Database
Blast Radius: 48.8
Published: about 5 years ago
Critical
Ecosystems: npm
Packages: simple-git
Source: GitHub Advisory Database
Blast Radius: 48.7
Published: over 1 year ago
GSA_kwCzR0hTQS05dzVqLTRtd3YtMndqOM4AAxNC
Remote code execution in simple-gitEcosystems: npm
Packages: simple-git
Source: GitHub Advisory Database
Blast Radius: 48.7
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: electron
Source: GitHub Advisory Database
Blast Radius: 48.7
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR3ODgtcmpqMy14N3dw
Chromium Remote Code Execution in electronEcosystems: npm
Packages: electron
Source: GitHub Advisory Database
Blast Radius: 48.7
Published: almost 6 years ago
High
Ecosystems: npm
Packages: css-what
Source: GitHub Advisory Database
Blast Radius: 48.6
Published: over 1 year ago
GSA_kwCzR0hTQS1wMjhoLWNjN3EtYzRmZ84AAvJj
css-what vulnerable to ReDoS due to use of insecure regular expressionEcosystems: npm
Packages: css-what
Source: GitHub Advisory Database
Blast Radius: 48.6
Published: over 1 year ago
High
Ecosystems: npm
Packages: css-what
Source: GitHub Advisory Database
Blast Radius: 48.6
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE4cGotMnZxeC04Z2dj
Denial of service in css-whatEcosystems: npm
Packages: css-what
Source: GitHub Advisory Database
Blast Radius: 48.6
Published: almost 3 years ago
High
Ecosystems: npm
Packages: nth-check
Source: GitHub Advisory Database
Blast Radius: 48.6
Published: over 2 years ago
GSA_kwCzR0hTQS1ycDY1LTljZjMtY2p4cs0V5A
Inefficient Regular Expression Complexity in nth-checkEcosystems: npm
Packages: nth-check
Source: GitHub Advisory Database
Blast Radius: 48.6
Published: over 2 years ago
High
Ecosystems: npm
Packages: node-forge
Source: GitHub Advisory Database
Blast Radius: 48.6
Published: about 2 years ago
GSA_kwCzR0hTQS14NGpnLW1qcngtNDM0Z800KQ
Improper Verification of Cryptographic Signature in node-forgeEcosystems: npm
Packages: node-forge
Source: GitHub Advisory Database
Blast Radius: 48.6
Published: about 2 years ago
High
Ecosystems: npm
Packages: node-forge
Source: GitHub Advisory Database
Blast Radius: 48.6
Published: about 2 years ago
GSA_kwCzR0hTQS1jZm00LXFqaDItNDc2Nc00KA
Improper Verification of Cryptographic Signature in node-forgeEcosystems: npm
Packages: node-forge
Source: GitHub Advisory Database
Blast Radius: 48.6
Published: about 2 years ago
High
Ecosystems: npm
Packages: webpack-dev-server
Source: GitHub Advisory Database
Blast Radius: 48.5
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNmNjYteHdmcC1ndmM0
Missing Origin Validation in webpack-dev-serverEcosystems: npm
Packages: webpack-dev-server
Source: GitHub Advisory Database
Blast Radius: 48.5
Published: over 5 years ago
Critical
Ecosystems: npm
Packages: parse-url
Source: GitHub Advisory Database
Blast Radius: 48.3
Published: over 1 year ago
GSA_kwCzR0hTQS1qOWZxLXZ3cXYtMmZtMs4AAuza
Server-Side Request Forgery (SSRF) in GitHub repository ionicabizau/parse-urlEcosystems: npm
Packages: parse-url
Source: GitHub Advisory Database
Blast Radius: 48.3
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: electron
Source: GitHub Advisory Database
Blast Radius: 48.2
Published: over 1 year ago
GSA_kwCzR0hTQS05OTVmLTl4NXItMnJjas4AAwCZ
Heap buffer overflow in GPUEcosystems: npm
Packages: electron
Source: GitHub Advisory Database
Blast Radius: 48.2
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: set-getter
Source: GitHub Advisory Database
Blast Radius: 48.1
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWp2MzUteHFnNy1mOTJy
set-getter Prototype Pollution VulnerabilityEcosystems: npm
Packages: set-getter
Source: GitHub Advisory Database
Blast Radius: 48.1
Published: almost 3 years ago
High
Ecosystems: npm
Packages: mime
Source: GitHub Advisory Database
Blast Radius: 48.1
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdydnItOG1weC1yN3Bw
mime Regular Expression Denial of Service when MIME lookup performed on untrusted user inputEcosystems: npm
Packages: mime
Source: GitHub Advisory Database
Blast Radius: 48.1
Published: almost 6 years ago
High
Ecosystems: npm
Packages: no-case
Source: GitHub Advisory Database
Blast Radius: 48.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZmNnItNWp3bS04Mjky
Regular Expression Denial of Service in no-caseEcosystems: npm
Packages: no-case
Source: GitHub Advisory Database
Blast Radius: 48.0
Published: almost 6 years ago
High
Ecosystems: npm
Packages: webpack-dev-middleware
Source: GitHub Advisory Database
Blast Radius: 48.0
Published: about 1 month ago
GSA_kwCzR0hTQS13cjNqLXB3ajktaHFxNs4AA6Nc
Path traversal in webpack-dev-middlewareEcosystems: npm
Packages: webpack-dev-middleware
Source: GitHub Advisory Database
Blast Radius: 48.0
Published: about 1 month ago
High
Ecosystems: npm
Packages: ansi-html
Source: GitHub Advisory Database
Blast Radius: 47.9
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdoZ20tanIyMy1nM2o5
Uncontrolled Resource Consumption in ansi-htmlEcosystems: npm
Packages: ansi-html
Source: GitHub Advisory Database
Blast Radius: 47.9
Published: over 2 years ago
Critical
Ecosystems: npm, packagist
Packages: plotly.js, plotly/plotly.js
Source: GitHub Advisory Database
Blast Radius: 47.8
Published: 4 months ago
GSA_kwCzR0hTQS13amM0LTczcTYtZ3Yzbc4AA4Ki
plotly.js prototype pollution vulnerabilityEcosystems: npm, packagist
Packages: plotly.js, plotly/plotly.js
Source: GitHub Advisory Database
Blast Radius: 47.8
Published: 4 months ago
Moderate
Ecosystems: npm
Packages: codecov
Source: GitHub Advisory Database
Blast Radius: 47.8
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhwNjMtNnZmNS14ZjN2
Command injection in codecov (npm package)Ecosystems: npm
Packages: codecov
Source: GitHub Advisory Database
Blast Radius: 47.8
Published: almost 4 years ago
Critical
Ecosystems: npm
Packages: netmask
Source: GitHub Advisory Database
Blast Radius: 47.8
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRjN20td3h2bS1yN2dj
Improper parsing of octal bytes in netmaskEcosystems: npm
Packages: netmask
Source: GitHub Advisory Database
Blast Radius: 47.8
Published: about 3 years ago
High
Ecosystems: npm
Packages: ms
Source: GitHub Advisory Database
Blast Radius: 47.7
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNmeDUtZnd2ci14cmpn
Regular Expression Denial of Service in msEcosystems: npm
Packages: ms
Source: GitHub Advisory Database
Blast Radius: 47.7
Published: over 6 years ago
High
Ecosystems: npm
Packages: uglify-js
Source: GitHub Advisory Database
Blast Radius: 47.6
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM5ZjQteGoyNC04anF4
Regular Expression Denial of Service in uglify-jsEcosystems: npm
Packages: uglify-js
Source: GitHub Advisory Database
Blast Radius: 47.6
Published: over 6 years ago
High
Ecosystems: npm
Packages: minimatch
Source: GitHub Advisory Database
Blast Radius: 47.6
Published: over 1 year ago
GSA_kwCzR0hTQS1mOHE2LXA5NHgtMzd2M84AAvaI
minimatch ReDoS vulnerabilityEcosystems: npm
Packages: minimatch
Source: GitHub Advisory Database
Blast Radius: 47.6
Published: over 1 year ago
High
Ecosystems: npm
Packages: minimatch
Source: GitHub Advisory Database
Blast Radius: 47.6
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh4bTItcjM0Zi1xbWM1
Regular Expression Denial of Service in minimatchEcosystems: npm
Packages: minimatch
Source: GitHub Advisory Database
Blast Radius: 47.6
Published: over 5 years ago
High
Ecosystems: npm
Packages: kind-of
Source: GitHub Advisory Database
Blast Radius: 47.5
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZjOGYtcXBoZy1xamdw
Validation Bypass in kind-ofEcosystems: npm
Packages: kind-of
Source: GitHub Advisory Database
Blast Radius: 47.5
Published: about 4 years ago
Critical
Ecosystems: npm
Packages: crypto-js
Source: GitHub Advisory Database
Blast Radius: 47.5
Published: 6 months ago
GSA_kwCzR0hTQS14d2NxLXBtOG0tYzR2Zs4AA2sP
crypto-js PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standardEcosystems: npm
Packages: crypto-js
Source: GitHub Advisory Database
Blast Radius: 47.5
Published: 6 months ago
High
Ecosystems: npm
Packages: qs
Source: GitHub Advisory Database
Blast Radius: 47.4
Published: over 1 year ago
GSA_kwCzR0hTQS1ocnBwLWg5OTgtajNwcM4AAwDM
qs vulnerable to Prototype PollutionEcosystems: npm
Packages: qs
Source: GitHub Advisory Database
Blast Radius: 47.4
Published: over 1 year ago
High
Ecosystems: npm
Packages: qs
Source: GitHub Advisory Database
Blast Radius: 47.4
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdxZ3YtNmpxNS1qamo5
Prototype Pollution Protection Bypass in qsEcosystems: npm
Packages: qs
Source: GitHub Advisory Database
Blast Radius: 47.4
Published: about 4 years ago
Critical
Ecosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 47.2
Published: over 1 year ago
GSA_kwCzR0hTQS1tcmdwLW1yaGMtNWpycc4AAvGK
vm2 vulnerable to Sandbox Escape resulting in Remote Code Execution on hostEcosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 47.2
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: merge-options
Source: GitHub Advisory Database
Blast Radius: 47.2
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF3OTMtNDVyMy1wNjZw
Prototype Pollution in merge-optionsEcosystems: npm
Packages: merge-options
Source: GitHub Advisory Database
Blast Radius: 47.2
Published: over 5 years ago
Critical
Ecosystems: npm
Packages: swiper
Source: GitHub Advisory Database
Blast Radius: 47.1
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXAzaGMtZnYyai1ycDY4
Prototype Pollution in swiperEcosystems: npm
Packages: swiper
Source: GitHub Advisory Database
Blast Radius: 47.1
Published: almost 3 years ago
High
Ecosystems: npm
Packages: yaml
Source: GitHub Advisory Database
Blast Radius: 47.1
Published: about 1 year ago
GSA_kwCzR0hTQS1mOXh2LXE5NjktcHF4NM4AAy8A
Uncaught Exception in yamlEcosystems: npm
Packages: yaml
Source: GitHub Advisory Database
Blast Radius: 47.1
Published: about 1 year ago
High
Ecosystems: npm
Packages: dot-prop
Source: GitHub Advisory Database
Blast Radius: 47.1
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZmN3gtcXJnNy1xZ2dt
dot-prop Prototype Pollution vulnerabilityEcosystems: npm
Packages: dot-prop
Source: GitHub Advisory Database
Blast Radius: 47.1
Published: almost 4 years ago
High
Ecosystems: npm
Packages: is-svg
Source: GitHub Advisory Database
Blast Radius: 47.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdyMjgtM20zZi1yMnBy
Regular Expression Denial of Service (ReDoS)Ecosystems: npm
Packages: is-svg
Source: GitHub Advisory Database
Blast Radius: 47.0
Published: about 3 years ago
High
Ecosystems: npm
Packages: is-svg
Source: GitHub Advisory Database
Blast Radius: 47.0
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI4ajUtaDVjeC02NWdn
ReDOS in IS-SVGEcosystems: npm
Packages: is-svg
Source: GitHub Advisory Database
Blast Radius: 47.0
Published: over 2 years ago
Moderate
Ecosystems: swift, npm, packagist
Packages: github.com/mongodb/mongo-swift-driver, mongodb, mongodb/mongodb
Source: GitHub Advisory Database
Blast Radius: 47.0
Published: 8 months ago
GSA_kwCzR0hTQS12eHZtLXF3dzMtMmZoN84AA1jJ
MongoDB Driver may publish events containing authentication-related dataEcosystems: swift, npm, packagist
Packages: github.com/mongodb/mongo-swift-driver, mongodb, mongodb/mongodb
Source: GitHub Advisory Database
Blast Radius: 47.0
Published: 8 months ago
High
Ecosystems: maven, npm
Packages: org.webjars.npm:http-cache-semantics, http-cache-semantics
Source: GitHub Advisory Database
Blast Radius: 46.9
Published: over 1 year ago
GSA_kwCzR0hTQS1yYzQ3LTY2NjctMmo1as4AAxS-
http-cache-semantics vulnerable to Regular Expression Denial of ServiceEcosystems: maven, npm
Packages: org.webjars.npm:http-cache-semantics, http-cache-semantics
Source: GitHub Advisory Database
Blast Radius: 46.9
Published: over 1 year ago
High
Ecosystems: npm
Packages: tough-cookie
Source: GitHub Advisory Database
Blast Radius: 46.9
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc3cTUtcGpqci1ncXZw
Regular Expression Denial of Service in tough-cookieEcosystems: npm
Packages: tough-cookie
Source: GitHub Advisory Database
Blast Radius: 46.9
Published: almost 6 years ago
High
Ecosystems: npm
Packages: terser
Source: GitHub Advisory Database
Blast Radius: 46.9
Published: almost 2 years ago
GSA_kwCzR0hTQS00d2Y1LXZwaGYtYzJ4Y84AAtaQ
Terser insecure use of regular expressions leads to ReDoSEcosystems: npm
Packages: terser
Source: GitHub Advisory Database
Blast Radius: 46.9
Published: almost 2 years ago
High
Ecosystems: npm
Packages: devcert
Source: GitHub Advisory Database
Blast Radius: 46.8
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQyMjgtN3F2eC1mNHJx
Injection and Command Injection in devcertEcosystems: npm
Packages: devcert
Source: GitHub Advisory Database
Blast Radius: 46.8
Published: almost 3 years ago
High
Ecosystems: npm
Packages: loader-utils
Source: GitHub Advisory Database
Blast Radius: 46.7
Published: over 1 year ago
GSA_kwCzR0hTQS1oaHEzLWZmNzgtanYzZ84AAvRq
loader-utils is vulnerable to Regular Expression Denial of Service (ReDoS)Ecosystems: npm
Packages: loader-utils
Source: GitHub Advisory Database
Blast Radius: 46.7
Published: over 1 year ago
High
Ecosystems: npm
Packages: loader-utils
Source: GitHub Advisory Database
Blast Radius: 46.7
Published: over 1 year ago
GSA_kwCzR0hTQS0zcmZtLWpod2otNzQ4OM4AAvVB
loader-utils is vulnerable to Regular Expression Denial of Service (ReDoS) via url variableEcosystems: npm
Packages: loader-utils
Source: GitHub Advisory Database
Blast Radius: 46.7
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: serialize-to-js
Source: GitHub Advisory Database
Blast Radius: 46.6
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1tNjItd3hjOC1jZjdt
Code Execution Through IIFE in serialize-to-jsEcosystems: npm
Packages: serialize-to-js
Source: GitHub Advisory Database
Blast Radius: 46.6
Published: almost 6 years ago
Critical
Ecosystems: npm
Packages: class-validator
Source: GitHub Advisory Database
Blast Radius: 46.6
Published: over 2 years ago
GSA_kwCzR0hTQS1majU4LWgyZnItM3BwMs0WeA
SQL Injection and Cross-site Scripting in class-validatorEcosystems: npm
Packages: class-validator
Source: GitHub Advisory Database
Blast Radius: 46.6
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: global-modules-path
Source: GitHub Advisory Database
Blast Radius: 46.5
Published: over 1 year ago
GSA_kwCzR0hTQS12dmozLTg1dmYtZmdtd84AAw93
global-modules-path Command Injection vulnerabilityEcosystems: npm
Packages: global-modules-path
Source: GitHub Advisory Database
Blast Radius: 46.5
Published: over 1 year ago
High
Ecosystems: npm
Packages: async
Source: GitHub Advisory Database
Blast Radius: 46.5
Published: about 2 years ago
GSA_kwCzR0hTQS1md3I3LXYybXYtaGgyNc05EQ
Prototype Pollution in asyncEcosystems: npm
Packages: async
Source: GitHub Advisory Database
Blast Radius: 46.5
Published: about 2 years ago
High
Ecosystems: npm
Packages: lodash.updatewith, lodash.update, lodash.setwith, lodash.set, lodash.pick, lodash-es, lodash
Source: GitHub Advisory Database
Blast Radius: 46.5
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA2bWMtbTQ2OC04M2d3
Prototype Pollution in lodashEcosystems: npm
Packages: lodash.updatewith, lodash.update, lodash.setwith, lodash.set, lodash.pick, lodash-es, lodash
Source: GitHub Advisory Database
Blast Radius: 46.5
Published: almost 4 years ago
High
Ecosystems: npm
Packages: ejs
Source: GitHub Advisory Database
Blast Radius: 46.4
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4NzctcnBxZi1qNm13
ejs vulnerable to DoS due to weak input validationEcosystems: npm
Packages: ejs
Source: GitHub Advisory Database
Blast Radius: 46.4
Published: about 6 years ago
High
Ecosystems: npm
Packages: immer
Source: GitHub Advisory Database
Blast Radius: 46.3
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlxbWgtMjc2Zy14NXBq
Prototype Pollution in immerEcosystems: npm
Packages: immer
Source: GitHub Advisory Database
Blast Radius: 46.3
Published: over 3 years ago
High
Ecosystems: npm
Packages: immer
Source: GitHub Advisory Database
Blast Radius: 46.3
Published: over 2 years ago
GSA_kwCzR0hTQS1jMzZ2LWZtZ3EtbThoeM0Vlg
Prototype Pollution in immerEcosystems: npm
Packages: immer
Source: GitHub Advisory Database
Blast Radius: 46.3
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: about 2 years ago
GSA_kwCzR0hTQS02cHcyLTVoanYtOXBmN80rFg
Sandbox bypass in vm2Ecosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: about 2 years ago
Critical
Ecosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: 10 months ago
GSA_kwCzR0hTQS1jY2hxLWZyZ3YtcmpoNc4AA0sM
vm2 Sandbox Escape vulnerabilityEcosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: 10 months ago
Critical
Ecosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: about 1 year ago
GSA_kwCzR0hTQS14ajcyLXd2ZnYtODk4Nc4AAyu7
vm2 Sandbox Escape vulnerabilityEcosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: about 1 year ago
Critical
Ecosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: 10 months ago
GSA_kwCzR0hTQS1nNjQ0LTlnZngtcTRxNM4AA0sL
vm2 Sandbox Escape vulnerabilityEcosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: 10 months ago
Critical
Ecosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: over 2 years ago
GSA_kwCzR0hTQS1yamYyLWoycjYtcThncs0Wlw
Prototype Pollution in vm2Ecosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: 12 months ago
GSA_kwCzR0hTQS13aHBqLThmM3ctNjdwNc4AAzV1
vm2 Sandbox Escape vulnerabilityEcosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: 12 months ago
Critical
Ecosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: about 1 year ago
GSA_kwCzR0hTQS03anhyLWNnN2YtZ3Bnds4AAyoQ
vm2 vulnerable to sandbox escapeEcosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: about 1 year ago
Critical
Ecosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: about 1 year ago
GSA_kwCzR0hTQS1jaDNyLWo1eDMtNnEybc4AAy46
vm2 Sandbox Escape vulnerabilityEcosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: about 1 year ago
Critical
Ecosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: over 1 year ago
GSA_kwCzR0hTQS00dzJqLTJyZzQtNW1qd84AAweA
vm2 vulnerable to Arbitrary Code ExecutionEcosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: typeorm
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBmMmotOXFtcC1qcXIy
TypeORM vulnerable to MAID and Prototype PollutionEcosystems: npm
Packages: typeorm
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: typeorm
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: almost 2 years ago
GSA_kwCzR0hTQS1meDR3LXY0M2otdmM0Nc4AAtGB
SQL injection in typeORMEcosystems: npm
Packages: typeorm
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: almost 2 years ago
High
Ecosystems: npm
Packages: debug
Source: GitHub Advisory Database
Blast Radius: 46.1
Published: over 1 year ago
GSA_kwCzR0hTQS05dnZ3LWNjOXctZjI3aM4AAw0l
debug Inefficient Regular Expression Complexity vulnerabilityEcosystems: npm
Packages: debug
Source: GitHub Advisory Database
Blast Radius: 46.1
Published: over 1 year ago
High
Ecosystems: npm
Packages: tmpl
Source: GitHub Advisory Database
Blast Radius: 46.1
Published: over 2 years ago
GSA_kwCzR0hTQS1qZ3J4LW1neHgtamY5ds0Vxg
tmpl vulnerable to Inefficient Regular Expression Complexity which may lead to resource exhaustionEcosystems: npm
Packages: tmpl
Source: GitHub Advisory Database
Blast Radius: 46.1
Published: over 2 years ago
High
Ecosystems: npm
Packages: object-path
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWN3eDItNzM2eC1tZjZ3
Prototype pollution in object-pathEcosystems: npm
Packages: object-path
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: over 3 years ago
High
Ecosystems: nuget, npm
Packages: Moment.js, moment
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: almost 2 years ago
GSA_kwCzR0hTQS13YzY5LXJoanItaGM5Z84AAtHU
Moment.js vulnerable to Inefficient Regular Expression ComplexityEcosystems: nuget, npm
Packages: Moment.js, moment
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: almost 2 years ago
High
Ecosystems: nuget, npm
Packages: Moment.js, moment
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: about 2 years ago
GSA_kwCzR0hTQS04aGZqLWoyNHItOTZjNM04JA
Path Traversal: 'dir/../../filename' in moment.localeEcosystems: nuget, npm
Packages: Moment.js, moment
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: about 2 years ago
High
Ecosystems: npm
Packages: socket.io
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF2MnYtbTU5Zi12NWZ3
Insecure randomness in socket.ioEcosystems: npm
Packages: socket.io
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: over 5 years ago
High
Ecosystems: npm
Packages: trim-newlines
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdwN2gtNG1tNS04NTJ2
Uncontrolled Resource Consumption in trim-newlinesEcosystems: npm
Packages: trim-newlines
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: almost 3 years ago
High
Ecosystems: npm
Packages: ini
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFxZ3gtMnAyaC05YzM3
ini before 1.3.6 vulnerable to Prototype Pollution via ini.parseEcosystems: npm
Packages: ini
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: semver
Source: GitHub Advisory Database
Blast Radius: 45.9
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg2ZmctZjQ1bS1qZjVx
Regular Expression Denial of Service in semverEcosystems: npm
Packages: semver
Source: GitHub Advisory Database
Blast Radius: 45.9
Published: over 6 years ago
High
Ecosystems: npm
Packages: brace-expansion
Source: GitHub Advisory Database
Blast Radius: 45.9
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTgzMmgteGc3Ni00Z3Y2
ReDoS in brace-expansionEcosystems: npm
Packages: brace-expansion
Source: GitHub Advisory Database
Blast Radius: 45.9
Published: over 6 years ago
Moderate
Ecosystems: packagist, npm
Packages: typo3/cms, typo3/cms-core, ckeditor
Source: GitHub Advisory Database
Blast Radius: 45.9
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc2OHgtdnZxcS1wdncz
Ckeditor XSS VulnerabilityEcosystems: packagist, npm
Packages: typo3/cms, typo3/cms-core, ckeditor
Source: GitHub Advisory Database
Blast Radius: 45.9
Published: over 5 years ago
High
Ecosystems: npm
Packages: socket.io-parser
Source: GitHub Advisory Database
Blast Radius: 45.8
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhmaGgtZzlmNS14NG00
Resource exhaustion in socket.io-parserEcosystems: npm
Packages: socket.io-parser
Source: GitHub Advisory Database
Blast Radius: 45.8
Published: almost 3 years ago
High
Ecosystems: npm
Packages: handlebars
Source: GitHub Advisory Database
Blast Radius: 45.8
Published: about 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTYyZ3ItNHFwOS1oOThm
Regular Expression Denial of Service in HandlebarsEcosystems: npm
Packages: handlebars
Source: GitHub Advisory Database
Blast Radius: 45.8
Published: about 2 years ago
High
Ecosystems: npm
Packages: ansi-regex
Source: GitHub Advisory Database
Blast Radius: 45.7
Published: over 2 years ago
GSA_kwCzR0hTQS05M3E4LWdxNjktd3Ftd80V3g
Inefficient Regular Expression Complexity in chalk/ansi-regexEcosystems: npm
Packages: ansi-regex
Source: GitHub Advisory Database
Blast Radius: 45.7
Published: over 2 years ago
High
Ecosystems: npm
Packages: engine.io
Source: GitHub Advisory Database
Blast Radius: 45.6
Published: about 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo0ZjItNTM2Zy1yNTVt
Resource exhaustion in engine.ioEcosystems: npm
Packages: engine.io
Source: GitHub Advisory Database
Blast Radius: 45.6
Published: about 2 years ago
High
Ecosystems: npm
Packages: engine.io
Source: GitHub Advisory Database
Blast Radius: 45.6
Published: over 2 years ago
GSA_kwCzR0hTQS0yNzNyLW1ncjQtdjM0Zs0ieg
Uncaught Exception in engine.ioEcosystems: npm
Packages: engine.io
Source: GitHub Advisory Database
Blast Radius: 45.6
Published: over 2 years ago
High
Ecosystems: npm
Packages: html-minifier
Source: GitHub Advisory Database
Blast Radius: 45.6
Published: over 1 year ago
GSA_kwCzR0hTQS1wZnE4LXJxNnYtdmY1bc4AAvm3
kangax html-minifier REDoS vulnerabilityEcosystems: npm
Packages: html-minifier
Source: GitHub Advisory Database
Blast Radius: 45.6
Published: over 1 year ago
Statistics
Advisories: 18,361
Packages: 8,293
Repositories: 1,394
Ecosystems: 12
Packages: 8,293
Repositories: 1,394
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
parse-server
29
electron
26
@openzeppelin/contracts-upgradeable
21
@openzeppelin/contracts
20
directus
16
sequelize
16
ghost
14
tinymce
14
swagger-ui
14
next
13
joplin
13
strapi
13
ckeditor4
13
vm2
12
undici
12
handlebars
11
nodebb
11
angular
11
marked
11
@evershop/evershop
9
serve
9
tinymce/tinymce
9
TinyMCE
9
jquery
9
next-auth
9
org.webjars.npm:jquery
9
jquery-rails
9
matrix-js-sdk
8
tar
8
node-forge
8
systeminformation
8
steal
8
npm
8
jQuery
8
@strapi/strapi
8
bootstrap
8
validator
8
urijs
8
express-cart
8
editor.md
8
jsrsasign
8
url-parse
8
jquery-ui-rails
7
org.webjars.npm:jquery-ui
7
jQuery.UI.Combined
7
shescape
7
sanitize-html
7
matrix-appservice-irc
7
hapi
7
jquery-ui
7
nocodb
7
lodash
7
uptime-kuma
7
total.js
7
matrix-react-sdk
7
hermes-engine
7
snyk-broker
7
parse-url
6
safe-eval
6
rsshub
6
aaptjs
6
ua-parser-js
5
rendertron
5
vditor
5
keystone
5
sweetalert2
5
prismjs
5
dojo
5
openpgp
5
ejs
5
yarn
5
mongoose
5
public
5
xlsx
5
total4
5
vite
5
lodash-es
5
@strapi/plugin-users-permissions
5
mongo-express
4
vega
4
valine
4
glance
4
moment
4
apostrophe
4
dompurify
4
safer-eval
4
@keystone-6/core
4
@backstage/plugin-scaffolder-backend
4
meshcentral
4
simple-markdown
4
axios
4
hummus
4
muhammara
4
remarkable
4
katex
4
jsonwebtoken
4
qs
4
follow-redirects
4
ws
4
engine.io
4
materialize-css
4
convert-svg-core
4
apollo-server-core
4
realms-shim
4
fastify
4
ecstatic
4
auth0-lock
4
auth0-js
4
simple-git
4
mysql2
4
awsiotsdk
4
aws-iot-device-sdk-v2
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
generator-jhipster
4
mermaid
4
@strapi/utils
3
typeorm
3
keycloak-connect
3
xmldom
3
locutus
3
m-server
3
apollo-server
3
@cubejs-backend/api-gateway
3
code-server
3
@sequelize/core
3
nodemailer
3
mysql
3
postcss
3
wrangler
3
node-opcua
3
slp-validate
3
feathers-sequelize
3
jspdf
3
dns-sync
3
org.webjars.npm:xlsx
3
node-red-dashboard
3
mathjs
3
grunt
3
passport-wsfed-saml2
3
codecov
3
jointjs
3
node-jose
3
node-ipc
3
js-yaml
3
loader-utils
3
@backstage/techdocs-common
3
jquery-validation
3
n8n
3
object-path
3
protobufjs
3
http-live-simulator
3
notevil
3
ses
3
uap-core
3
socket.io-parser
3
froala-editor
3
docsify
3
tough-cookie
3
raneto
3
jose-node-cjs-runtime
3
jose-node-esm-runtime
3
ids-enterprise
3
@materializecss/materialize
3
libxmljs
3
sails
3
parsel
3
@uppy/companion
3
@ckeditor/ckeditor5-markdown-gfm
3
nadesiko3
3
convict
3
bootstrap
3
dojox
3
blamer
3
simplehttpserver
3
buttle
3
slpjs
3
@commercial/subtext
3
serialize-to-js
3
lodash.defaultsdeep
3
browserify-shim
3
fast-xml-parser
3
socket.io-file
3
@vrite/sdk
3
jose
3
snyk
3
connect
3
mixme
3
@soketi/soketi
3
json-ptr
3
localhost-now
3
openmct
3
highcharts
3
@sveltejs/kit
3
fuxa-server
3
ftp-srv
3
xdLocalStorage
3
bin-links
3
node-fetch
3
@apollo/server
3
subtext
3
Filter by Repository
https://github.com/parse-community/parse-server
29
https://github.com/electron/electron
25
https://github.com/strapi/strapi
21
https://github.com/OpenZeppelin/openzeppelin-contracts
20
https://github.com/sequelize/sequelize
16
https://github.com/directus/directus
15
https://github.com/tinymce/tinymce
14
https://github.com/swagger-api/swagger-ui
13
https://github.com/nodejs/undici
12
https://github.com/TryGhost/Ghost
12
https://github.com/backstage/backstage
12
https://github.com/laurent22/joplin
12
https://github.com/ckeditor/ckeditor4
12
https://github.com/patriksimek/vm2
12
https://github.com/jquery/jquery
11
https://github.com/NodeBB/NodeBB
11
https://github.com/nextauthjs/next-auth
10
https://github.com/keystonejs/keystone
10
https://github.com/evershopcommerce/evershop
9
https://github.com/vercel/next.js
9
https://github.com/pandao/editor.md
8
https://github.com/digitalbazaar/forge
8
https://github.com/sebhildebrandt/systeminformation
8
https://github.com/matrix-org/matrix-js-sdk
8
https://github.com/apollographql/apollo-server
8
https://github.com/stealjs/steal
8
https://github.com/kjur/jsrsasign
8
https://github.com/nocodb/nocodb
7
https://github.com/unshiftio/url-parse
7
https://github.com/ericcornelissen/shescape
7
https://github.com/louislam/uptime-kuma
7
https://github.com/twbs/bootstrap
7
https://github.com/matrix-org/matrix-appservice-irc
7
https://github.com/matrix-org/matrix-react-sdk
7
https://github.com/lodash/lodash
7
https://github.com/npm/node-tar
6
https://github.com/totaljs/framework
6
https://github.com/eclipse-theia/theia
6
https://github.com/DIYgod/RSSHub
6
https://github.com/facebook/hermes
6
https://github.com/jquery/jquery-ui
6
https://github.com/ionicabizau/parse-url
6
https://github.com/panva/jose
6
https://github.com/shenzhim/aaptjs
6
https://github.com/BlackFan/client-side-prototype-pollution
5
https://github.com/vitejs/vite
5
https://github.com/sweetalert2/sweetalert2
5
https://github.com/openpgpjs/openpgpjs
5
https://github.com/gatsbyjs/gatsby
5
https://github.com/faisalman/ua-parser-js
5
https://github.com/markedjs/marked
5
https://github.com/npm/cli
5
https://github.com/apostrophecms/sanitize-html
5
https://github.com/hacksparrow/safe-eval
5
https://github.com/handlebars-lang/handlebars.js
5
https://github.com/GoogleChrome/rendertron
5
https://github.com/vega/vega
5
https://github.com/ofirdagan/cross-domain-local-storage
4
https://github.com/angular/angular.js
4
https://github.com/cloudflare/workers-sdk
4
https://github.com/sidorares/node-mysql2
4
https://github.com/npm/npm
4
https://github.com/steveukx/git-js
4
https://github.com/socketio/engine.io
4
https://github.com/KaTeX/KaTeX
4
https://github.com/axios/axios
4
https://github.com/PrismJS/prism
4
https://github.com/xCss/Valine
4
https://github.com/mrvautin/expressCart
4
https://github.com/auth0/node-jsonwebtoken
4
https://github.com/follow-redirects/follow-redirects
4
https://github.com/balderdashy/sails
4
https://github.com/Dogfalo/materialize
4
https://github.com/aws/aws-iot-device-sdk-java-v2
4
https://github.com/auth0/lock
4
https://github.com/jhipster/generator-jhipster
4
https://github.com/yarnpkg/yarn
4
https://github.com/Ylianst/MeshCentral
4
https://github.com/jonschlinkert/remarkable
4
https://github.com/medialize/URI.js
4
https://github.com/medialize/uri.js
4
https://github.com/mde/ejs
4
https://github.com/fastify/fastify
4
https://github.com/hapijs/hapi
4
https://github.com/node-opcua/node-opcua
3
https://github.com/hapijs/subtext
3
https://github.com/transloadit/uppy
3
https://github.com/nodemailer/nodemailer
3
https://github.com/node-fetch/node-fetch
3
https://github.com/facebook/react
3
https://github.com/infor-design/enterprise-ng
3
https://github.com/highcharts/highcharts
3
https://github.com/nodejs/llhttp
3
https://github.com/sveltejs/kit
3
https://github.com/immerjs/immer
3
https://github.com/beerpwn/CVE
3
https://github.com/thlorenz/browserify-shim
3
https://github.com/kujirahand/nadesiko3
3
https://github.com/libxmljs/libxmljs
3
https://github.com/RIAEvangelist/node-ipc
3
https://github.com/renovatebot/renovate
3
https://github.com/moment/moment
3
https://github.com/docsifyjs/docsify
3
https://github.com/mongodb/js-bson
3
https://github.com/dojo/dojo
3
https://github.com/dojo/dojox
3
https://github.com/mongo-express/mongo-express
3
https://github.com/mozilla/node-convict
3
https://github.com/dwisiswant0/advisory
3
https://github.com/postcss/postcss
3
https://github.com/MrRio/jsPDF
3
https://github.com/OpenZeppelin/openzeppelin-contracts-upgradeable
3
https://github.com/n8n-io/n8n
3
https://github.com/nasa/openmct
3
https://github.com/neocotic/convert-svg
3
https://github.com/soketi/soketi
3
https://github.com/socketio/socket.io-parser
3
https://github.com/manuelstofer/json-pointer
3
https://github.com/skoranga/node-dns-sync
3
https://github.com/Marak/colors.js
3
https://github.com/chjj/marked
3
https://github.com/cisco/node-jose
3
https://github.com/ckeditor/ckeditor5
3
https://github.com/mariocasciaro/object-path
3
https://github.com/simpleledger/slpjs
3
https://github.com/clientIO/joint
3
https://github.com/gruntjs/grunt
3
https://github.com/feathersjs-ecosystem/feathers-sequelize
3
https://github.com/cure53/DOMPurify
3
https://github.com/salesforce/tough-cookie
3
https://github.com/mermaid-js/mermaid
3
https://github.com/NaturalIntelligence/fast-xml-parser
3
https://github.com/zeit/next.js
3
https://github.com/jquery-validation/jquery-validation
3
https://github.com/websockets/ws
3
https://github.com/jfhbrook/node-ecstatic
3
https://github.com/apostrophecms/apostrophe
3
https://github.com/webpack/loader-utils
3
https://github.com/auth0/passport-wsfed-saml2
3
https://github.com/jarofghosts/glance
3
https://github.com/adaltas/node-mixme
3
https://github.com/ua-parser/uap-core
3
https://github.com/vriteio/vrite
3
https://github.com/josdejong/mathjs
3
https://github.com/zestedesavoir/zmarkdown
3
https://github.com/vanessa219/vditor
3
https://github.com/Automattic/mongoose
3
https://github.com/vendure-ecommerce/vendure
3
https://github.com/xmldom/xmldom
3
https://github.com/typeorm/typeorm
3
https://github.com/YMFE/yapi
3
https://github.com/matrix-org/matrix-appservice-bridge
2
https://github.com/shelljs/shelljs
2
https://github.com/mathjax/MathJax
2
https://github.com/jsuites/jsuites
2
https://github.com/codecov/codecov-node
2
https://github.com/cloudhead/node-static
2
https://github.com/commenthol/safer-eval
2
https://github.com/commenthol/serialize-to-js
2
https://github.com/senchalabs/connect
2
https://github.com/semantic-release/semantic-release
2
https://github.com/vvakame/fs-git
2
https://github.com/peerigon/angular-expressions
2
https://github.com/ahdinosaur/set-in
2
https://github.com/peterbraden/node-opencv
2
https://github.com/josdejong/jsoneditor
2
https://github.com/mysqljs/mysql
2
https://github.com/cronvel/tree-kit
2
https://github.com/snyk/cli
2
https://github.com/karma-runner/karma
2
https://github.com/Finastra/ssr-pages
2
https://github.com/jonschlinkert/mixin-deep
2
https://github.com/manvel-khnkoyan/jpv
2
https://github.com/jwadhams/json-logic-js
2
https://github.com/justmoon/node-bignum
2
https://github.com/chocobozzz/peertube
2
https://github.com/chriso/validator.js
2
https://github.com/sindresorhus/semver-regex
2
https://github.com/christian-bromann/rgb2hex
2
https://github.com/sindresorhus/is-svg
2
https://github.com/yahoo/serialize-javascript
2
https://github.com/aFarkas/lazysizes
2
https://github.com/jonschlinkert/set-value
2
https://github.com/simpleledger/slp-validate.js
2
https://github.com/julianhille/MuhammaraJS
2
https://github.com/markdown-it/markdown-it
2
https://github.com/simonh1000/angular-http-server
2
https://github.com/marudor/libxmljs2
2
https://github.com/vivaxy/here
2
https://github.com/endojs/endo
2
https://github.com/Agoric/realms-shim
2
https://github.com/payloadcms/payload
2
https://github.com/guardian/html-janitor
2
https://github.com/jameswlane/status-board
2
https://github.com/amitmerchant1990/electron-markdownify
2
https://github.com/froala/wysiwyg-editor
2
https://github.com/mozilla/nunjucks
2
https://github.com/dfinity/agent-js
2
https://github.com/mithunsatheesh/node-rules
2