Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
npm Security Advisories
Loading...
High
Ecosystems: npm
Packages: loopback-connector-mongodb
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh4d2MtNXZ3OS0ydzR3
NoSQL Injection in loopback-connector-mongodbEcosystems: npm
Packages: loopback-connector-mongodb
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: serialize-to-js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc1cTctM3ByOS14NDR3
Denial of Service in serialize-to-jsEcosystems: npm
Packages: serialize-to-js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: strapi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlwMnctcm14NC05bXc3
Command Injection in strapiEcosystems: npm
Packages: strapi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: wangeditor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc3bXctNWNxNi1mdjgy
Cross-Site Scripting in wangeditorEcosystems: npm
Packages: wangeditor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: mystem-fix
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWozd2gtNW0yNi0ycGY3
Downloads Resources over HTTP in mystem-fixEcosystems: npm
Packages: mystem-fix
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Moderate
Ecosystems: npm
Packages: dojo
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM5Y3gteGN3ai0zcmM0
Cross-Site Scripting in dojoEcosystems: npm
Packages: dojo
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: buttle
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBxcHAtMjM2My02NDl2
Cross-Site Scripting in buttleEcosystems: npm
Packages: buttle
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: node-krb5
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR2OXEtaG0ycC02OGM0
Spoofing attack due to unvalidated KDC in node-krb5Ecosystems: npm
Packages: node-krb5
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: ecstatic
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlxNjQtbXB4eC04N2Zn
Open Redirect in ecstaticEcosystems: npm
Packages: ecstatic
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
Moderate
Ecosystems: npm
Packages: adamvr-geoip-lite
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWgyanYtNXYzZi03bTdq
Downloads Resources over HTTP in adamvr-geoip-liteEcosystems: npm
Packages: adamvr-geoip-lite
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: ag-grid-community
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdwNncteDJnci1ycmY4
Cross-Site Scripting in ag-grid-communityEcosystems: npm
Packages: ag-grid-community
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: fis-parser-sass-bin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVwcTgtMnEyNC1tajNw
Downloads Resources over HTTP in fis-parser-sass-binEcosystems: npm
Packages: fis-parser-sass-bin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
High
Ecosystems: npm
Packages: co-cli-installer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVybTMtcWh4Zi1yaDNy
Downloads Resources over HTTP in co-cli-installerEcosystems: npm
Packages: co-cli-installer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
Moderate
Ecosystems: npm
Packages: value-censorship
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhycjYtNnd3My1mM3Ft
Sandbox Breakout / Arbitrary Code Execution in value-censorshipEcosystems: npm
Packages: value-censorship
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: soci
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA5cG0tNTV2cC0yanF3
Downloads Resources over HTTP in sociEcosystems: npm
Packages: soci
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
High
Ecosystems: npm
Packages: phantomjs-cheniu
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXczNjQtOHZmdi1ndmY1
Downloads Resources over HTTP in phantomjs-cheniuEcosystems: npm
Packages: phantomjs-cheniu
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
High
Ecosystems: npm
Packages: fomantic-ui
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc4OG0tcGo5Ni03dzJj
Cross-Site Scripting in fomantic-uiEcosystems: npm
Packages: fomantic-ui
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: redis-srvr
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWozY3ItajlqeC1tZjRw
Downloads Resources over HTTP in redis-srvrEcosystems: npm
Packages: redis-srvr
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
High
Ecosystems: npm
Packages: gmail-js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM3cHAtZzJ2Mi0yNzY2
DOM-based XSS in gmail-jsEcosystems: npm
Packages: gmail-js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: github-jquery-widgets
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM3MjItcHY1dy1jZmcy
Malicious Package in github-jquery-widgetsEcosystems: npm
Packages: github-jquery-widgets
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: imageoptim
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1tN2gtMzIzci05cDRn
Downloads Resources over HTTP in imageoptimEcosystems: npm
Packages: imageoptim
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
Moderate
Ecosystems: npm
Packages: hexo-theme-anzhiyu
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 2 months ago
GSA_kwCzR0hTQS04MmpmLThmMjQteHE5bc4AA5t8
hexo-theme-anzhiyu Cross-site Scripting vulnerabilityEcosystems: npm
Packages: hexo-theme-anzhiyu
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 2 months ago
High
Ecosystems: npm
Packages: cue-sdk-node
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXAyaG0tODcyNS1jOHg4
Downloads Resources over HTTP in cue-sdk-nodeEcosystems: npm
Packages: cue-sdk-node
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
Critical
Ecosystems: npm
Packages: electron-native-notify
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo4cXItcnZjdi1jcmh2
Malicious Package in electron-native-notifyEcosystems: npm
Packages: electron-native-notify
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: ember-power-timepicker
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI4ZjgtaHFtYy03cGg4
Malicious Package in ember-power-timepickerEcosystems: npm
Packages: ember-power-timepicker
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: nodewebkit
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdjNmMtNXY5dy14bWh3
Downloads Resources over HTTP in nodewebkitEcosystems: npm
Packages: nodewebkit
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
High
Ecosystems: npm
Packages: webrtc-native
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTd4dmctbTN2eC0yaGh2
Downloads Resources over HTTP in webrtc-nativeEcosystems: npm
Packages: webrtc-native
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
Critical
Ecosystems: npm
Packages: grunt-radical
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ2MjctdzM3My0zNzV2
Malicious Package in grunt-radicalEcosystems: npm
Packages: grunt-radical
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: gm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBqaDMtanY3dy05anBy
Command Injection in gmEcosystems: npm
Packages: gm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: qinserve
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWN4d2MtOHBxcC0yd2h3
Directory Traversal in qinserveEcosystems: npm
Packages: qinserve
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: radic-util
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThxaDcteHc1OC0zd3c3
Malicious Package in radic-utilEcosystems: npm
Packages: radic-util
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: pm-controls
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg0cWotOXFmMi1xOTJy
Malicious Package in pm-controlsEcosystems: npm
Packages: pm-controls
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: ungit
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZqZnItcDZocC1qcXF3
Command Injection in ungitEcosystems: npm
Packages: ungit
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: radicjs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU2cjktdjY1Yy0zNGpt
Malicious Package in radicjsEcosystems: npm
Packages: radicjs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: atompm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY4NngtZjQ3cS1mN2Y0
Unauthorized File Access in atompmEcosystems: npm
Packages: atompm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: madge
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc1M2MtcGhoZy1jajI5
Madge vulnerable to command injectionEcosystems: npm
Packages: madge
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
High
Ecosystems: npm
Packages: list-n-stream
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTIzdmYtNWc1My1obTlx
Directory Traversal in list-n-streamEcosystems: npm
Packages: list-n-stream
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Critical
Ecosystems: npm
Packages: node-wifi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR4NngtNzgycS1qZmM0
Command Injection in node-wifiEcosystems: npm
Packages: node-wifi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: desafio
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY0OTktanY0Ny05d3hm
Directory Traversal in desafioEcosystems: npm
Packages: desafio
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
High
Ecosystems: npm
Packages: expressfs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW14bWotODRxOC0zNHI3
Command Injection in expressfsEcosystems: npm
Packages: expressfs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: addax
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRxOGYtNXh4ai05NDZy
Command Injection in addaxEcosystems: npm
Packages: addax
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: soletta-dev-app
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThtZ2ctNXg2NS1tNG00
Command Injection in soletta-dev-appEcosystems: npm
Packages: soletta-dev-app
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Low
Ecosystems: npm
Packages: bigint-money
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlyM20tbWhmbS0zOWNt
Incorrect Calculation in bigint-moneyEcosystems: npm
Packages: bigint-money
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: leaflet-gpx
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdqYzktOTMyeC1jNTlw
Malicious Package in leaflet-gpxEcosystems: npm
Packages: leaflet-gpx
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: sailclothjs
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW01cGYtNTg5NC1qbXg3
Malicious Package in sailclothjsEcosystems: npm
Packages: sailclothjs
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: resquel
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNycG0tZm00OC1jaGo3
SQL Injection in resquelEcosystems: npm
Packages: resquel
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: fastify
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh3NXAtaHc2ci0yajk4
Denial of service in fastifyEcosystems: npm
Packages: fastify
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 4 years ago
Moderate
Ecosystems: npm
Packages: wizard-syncronizer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdndzMtZ2Y0cC02Mnhj
Command Injection in wizard-syncronizerEcosystems: npm
Packages: wizard-syncronizer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: node-server-forfront
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWozOG0tN3E1Mi1mZ2Zo
Directory Traversal in node-server-forfrontEcosystems: npm
Packages: node-server-forfront
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
High
Ecosystems: npm
Packages: untitled-model
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhxOGctcXE1Ny01Mjc1
SQL Injection in untitled-modelEcosystems: npm
Packages: untitled-model
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: @soketi/soketi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
GSA_kwCzR0hTQS0ydzhnLW01ajgtN204N80hSQ
Zalgo-like output that crashes the serverEcosystems: npm
Packages: @soketi/soketi
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: serve
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNwZ3Itd21yOS1xeHY0
Cross-Site Scripting in serveEcosystems: npm
Packages: serve
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: ponse
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdmaHgtNnBjbS03bTU1
Path Traversal in ponseEcosystems: npm
Packages: ponse
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Low
Ecosystems: npm
Packages: put
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY2Z3YtZmc0Ni1oODlq
Sensitive Data Exposure in putEcosystems: npm
Packages: put
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: file-static-server
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFqZmgteGM0NC1ybTl4
Path Traversal in file-static-serverEcosystems: npm
Packages: file-static-server
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: safe-eval
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlwY2YtaDhxOS02M2Y2
Sandbox Breakout / Arbitrary Code Execution in safe-evalEcosystems: npm
Packages: safe-eval
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: restify-swagger-jsdoc
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd2ZmYtMjVjYy00ZjY2
Path Traversal in restify-swagger-jsdocEcosystems: npm
Packages: restify-swagger-jsdoc
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: jquery.json-viewer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY5d3AtOHI5Ny12Nnhn
Cross-Site Scripting in jquery.json-viewerEcosystems: npm
Packages: jquery.json-viewer
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: standard-version
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTd4Y3gtNndqaC03eHAy
Command Injection in standard-versionEcosystems: npm
Packages: standard-version
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 4 years ago
High
Ecosystems: npm
Packages: lodash.merge
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg3MjYteDM2di1yeDQ1
Prototype Pollution in lodash.mergeEcosystems: npm
Packages: lodash.merge
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: lodash.defaultsdeep
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg1bXAtNXE0cC1nZ2Y1
Prototype Pollution in lodash.defaultsdeepEcosystems: npm
Packages: lodash.defaultsdeep
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: fileview
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd2cjQtN3hnYy1neDN3
Cross-Site Scripting in fileviewEcosystems: npm
Packages: fileview
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
High
Ecosystems: npm
Packages: lodash.mergewith
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU5NDctbTRmZy14aHFn
Prototype Pollution in lodash.mergewithEcosystems: npm
Packages: lodash.mergewith
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: lodash.defaultsdeep
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ2ZmgtOGZjNS14Y3d4
Prototype Pollution in lodash.defaultsdeepEcosystems: npm
Packages: lodash.defaultsdeep
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: lodash.mergewith
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc3OWYtd2d4Zy1xcjhm
Prototype Pollution in lodash.mergewithEcosystems: npm
Packages: lodash.mergewith
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: dmn-js-properties-panel
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg5d3IteHI0ci02NmZo
Cross-Site Scripting in dmn-js-properties-panelEcosystems: npm
Packages: dmn-js-properties-panel
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: bpmn-js-properties-panel
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZwajQtODlxOC1yaDM4
Cross-Site Scripting in bpmn-js-properties-panelEcosystems: npm
Packages: bpmn-js-properties-panel
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: cmmn-js-properties-panel
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZtaDQtMzIydi1jZnBj
Cross-Site Scripting in cmmn-js-properties-panelEcosystems: npm
Packages: cmmn-js-properties-panel
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: bruteser
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY3Y3AtNTMyNi01NGZo
Path Traversal in bruteserEcosystems: npm
Packages: bruteser
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: otpauth
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJtbWMtOGNxai1oZnAz
Authentication Bypass in otpauthEcosystems: npm
Packages: otpauth
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: swagger-ui
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXAyMzktOTNmNy1oNnhm
Cross-Site Scripting in swagger-uiEcosystems: npm
Packages: swagger-ui
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: console-feed
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc5d2ctd3E0Zi0yeDV3
Cross-Site Scripting in console-feedEcosystems: npm
Packages: console-feed
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: jquery-airload
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc4cDMtOTZoYy0zajQ3
Malicious Package in jquery-airloadEcosystems: npm
Packages: jquery-airload
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: slush-fullstack-framework
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRqNTQtbW1tdi1oanBt
Malicious Package in slush-fullstack-frameworkEcosystems: npm
Packages: slush-fullstack-framework
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM3OHctMmd3Ny1nanYz
XSS in TinyMCEEcosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
Critical
Ecosystems: npm
Packages: device-mqtt
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU2M2gtNjk3bS1qN3g1
Malicious Package in device-mqttEcosystems: npm
Packages: device-mqtt
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: public
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR2dnAteDloMi14MnZm
Path Traversal in publicEcosystems: npm
Packages: public
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: @hapi/subtext
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRyZ2otOG1xMy1oZ2dq
Denial of Service in @hapi/subtextEcosystems: npm
Packages: @hapi/subtext
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: evil-package
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA2MnItamY1Ni1oNDI5
Malicious Package in evil-packageEcosystems: npm
Packages: evil-package
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: sql-injection
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh2eHEtajJyNC00am04
Regular Expression Denial of Service in sql-injectionEcosystems: npm
Packages: sql-injection
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: snekserve
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh2NHctamhjai02d2Z3
Cross-Site Scripting in snekserveEcosystems: npm
Packages: snekserve
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Low
Ecosystems: npm
Packages: apostrophe
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXB2NnItdmNoaC1jeGc5
Denial of Service in apostropheEcosystems: npm
Packages: apostrophe
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: http-live-simulator
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhncDItY2M0ci03dmY2
Denial of Service in http-live-simulatorEcosystems: npm
Packages: http-live-simulator
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: static-eval
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVtanctNmpyaC1odmZx
Sandbox Breakout / Arbitrary Code Execution in static-evalEcosystems: npm
Packages: static-eval
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
High
Ecosystems: npm
Packages: mongodb
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1oNWMtNjc5dy1oaDRy
Denial of Service in mongodbEcosystems: npm
Packages: mongodb
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: hexo-admin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBocGgteHBqNC13dmN2
Cross-Site Scripting in hexo-adminEcosystems: npm
Packages: hexo-admin
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Low
Ecosystems: npm
Packages: thelounge
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 6 days ago
GSA_kwCzR0hTQS1nNDlxLWp3NDItNng4Nc4AA74Q
thelounge may publicly disclose of all usernames/idents via port 113Ecosystems: npm
Packages: thelounge
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 6 days ago
Critical
Ecosystems: npm
Packages: dompurify
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1qanEtYzg4cS1xaHI2
Cross-Site Scripting in dompurifyEcosystems: npm
Packages: dompurify
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk4cHEtcG13OS00Z3Bt
SQL Injection in sequelizeEcosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
Moderate
Ecosystems: npm
Packages: bootstrap-sass, bootstrap
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdoNzctM3g0bS00cTln
Moderate severity vulnerability that affects bootstrap and bootstrap-sassEcosystems: npm
Packages: bootstrap-sass, bootstrap
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
High
Ecosystems: npm
Packages: handlebars
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc5cjQteHBtai1tajY1
Prototype Pollution in handlebarsEcosystems: npm
Packages: handlebars
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: flat-wrap
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc3aDgtcDIybS0ycnZ4
Prototype Pollution in flat-wrapEcosystems: npm
Packages: flat-wrap
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: iedriver
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpmZ3EtZzQ4eC1qcTgz
Downloads Resources over HTTP in iedriverEcosystems: npm
Packages: iedriver
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 5 years ago
High
Ecosystems: npm
Packages: getsetdeep
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThqNDktNDlqcS12d2Nx
Prototype Pollution in getsetdeepEcosystems: npm
Packages: getsetdeep
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: safe-object2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFjY2YtcTdwNC0zcTNq
Prototype Pollution in safe-object2Ecosystems: npm
Packages: safe-object2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
High
Ecosystems: npm
Packages: windows-latestchromedriver
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRjY2Mtam0ycC12ZzNw
Downloads Resources over HTTP in windows-latestchromedriverEcosystems: npm
Packages: windows-latestchromedriver
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: canvas
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZwcTUtNHJjOC1jMjIy
Denial of Service in canvasEcosystems: npm
Packages: canvas
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
High
Ecosystems: npm
Packages: @aws-amplify/cli
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 month ago
GSA_kwCzR0hTQS04NDZnLXA3aG0tZjU0cs4AA7Ba
AWS Amplify CLI has incorrect trust policy managementEcosystems: npm
Packages: @aws-amplify/cli
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 month ago
High
Ecosystems: npm
Packages: sahmat
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTgzcHEtNDY2ai1mYzZq
Prototype Pollution in sahmatEcosystems: npm
Packages: sahmat
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: esm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF4NHYtNmdjNS1mMnZ2
Regular Expression Denial of ServiceEcosystems: npm
Packages: esm
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
Statistics
Advisories: 18,745
Packages: 8,373
Repositories: 1,401
Ecosystems: 12
Packages: 8,373
Repositories: 1,401
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
parse-server
29
electron
26
@openzeppelin/contracts-upgradeable
21
@openzeppelin/contracts
20
directus
18
sequelize
16
next
15
swagger-ui
14
tinymce
14
ghost
14
strapi
13
joplin
13
ckeditor4
13
undici
12
vm2
12
nodebb
11
handlebars
11
marked
11
angular
11
nocodb
10
@evershop/evershop
9
serve
9
next-auth
9
TinyMCE
9
tinymce/tinymce
9
node-forge
8
urijs
8
jsrsasign
8
express-cart
8
editor.md
8
validator
8
npm
8
@strapi/strapi
8
url-parse
8
tar
8
steal
8
systeminformation
8
bootstrap
8
matrix-js-sdk
8
org.webjars.npm:jquery
8
jquery
8
jquery-rails
8
total.js
7
sanitize-html
7
uptime-kuma
7
jquery-ui
7
matrix-appservice-irc
7
jquery-ui-rails
7
org.webjars.npm:jquery-ui
7
jQuery.UI.Combined
7
snyk-broker
7
jQuery
7
shescape
7
lodash
7
matrix-react-sdk
7
hermes-engine
7
hapi
7
safe-eval
6
aaptjs
6
rsshub
6
parse-url
6
prismjs
5
lodash-es
5
total4
5
openpgp
5
public
5
ejs
5
mongoose
5
vite
5
dojo
5
sweetalert2
5
yarn
5
vditor
5
ua-parser-js
5
rendertron
5
@strapi/plugin-users-permissions
5
xlsx
5
keystone
5
safer-eval
4
muhammara
4
remarkable
4
ecstatic
4
axios
4
convert-svg-core
4
hummus
4
simple-git
4
engine.io
4
jsonwebtoken
4
realms-shim
4
ws
4
fastify
4
katex
4
dompurify
4
apostrophe
4
vega
4
auth0-js
4
materialize-css
4
@keystone-6/core
4
moment
4
mongo-express
4
valine
4
mermaid
4
auth0-lock
4
@backstage/plugin-scaffolder-backend
4
awsiotsdk
4
aws-iot-device-sdk-v2
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
apollo-server-core
4
meshcentral
4
glance
4
mysql2
4
generator-jhipster
4
follow-redirects
4
simple-markdown
4
qs
4
node-red-dashboard
3
notevil
3
org.webjars.npm:xlsx
3
object-path
3
loader-utils
3
ses
3
passport-wsfed-saml2
3
js-yaml
3
n8n
3
grunt
3
jspdf
3
locutus
3
codecov
3
jointjs
3
dns-sync
3
mysql
3
wrangler
3
yapi-vendor
3
@frangoteam/fuxa
3
ftp-srv
3
renovate
3
blamer
3
bootstrap
3
@ckeditor/ckeditor5-markdown-gfm
3
raneto
3
tough-cookie
3
froala-editor
3
highcharts
3
localhost-now
3
mixme
3
connect
3
jose
3
socket.io-file
3
fast-xml-parser
3
browserify-shim
3
slpjs
3
feathers-sequelize
3
protobufjs
3
http-live-simulator
3
uap-core
3
xmldom
3
m-server
3
keycloak-connect
3
@strapi/utils
3
@cubejs-backend/api-gateway
3
nodemailer
3
slp-validate
3
apollo-server
3
node-opcua
3
postcss
3
socket.io-parser
3
jquery-validation
3
@backstage/techdocs-common
3
node-ipc
3
mathjs
3
node-jose
3
parsel
3
@uppy/companion
3
nadesiko3
3
convict
3
dojox
3
simplehttpserver
3
fuxa-server
3
mxgraph
3
statics-server
3
stimulsoft-dashboards-js
3
express-fileupload
3
node-fetch
3
xdLocalStorage
3
@hapi/subtext
3
subtext
3
@apollo/server
3
json-pointer
3
immer
3
serialize-to-js
3
buttle
3
typeorm
3
lodash.defaultsdeep
3
@vrite/sdk
3
@commercial/subtext
3
json-ptr
3
@sveltejs/kit
3
snyk
3
@soketi/soketi
3
ids-enterprise
3
Filter by Repository
https://github.com/parse-community/parse-server
29
https://github.com/electron/electron
25
https://github.com/strapi/strapi
21
https://github.com/OpenZeppelin/openzeppelin-contracts
20
https://github.com/directus/directus
17
https://github.com/sequelize/sequelize
16
https://github.com/tinymce/tinymce
14
https://github.com/swagger-api/swagger-ui
13
https://github.com/TryGhost/Ghost
12
https://github.com/backstage/backstage
12
https://github.com/laurent22/joplin
12
https://github.com/ckeditor/ckeditor4
12
https://github.com/patriksimek/vm2
12
https://github.com/nodejs/undici
12
https://github.com/NodeBB/NodeBB
11
https://github.com/vercel/next.js
11
https://github.com/jquery/jquery
10
https://github.com/keystonejs/keystone
10
https://github.com/nextauthjs/next-auth
10
https://github.com/nocodb/nocodb
10
https://github.com/evershopcommerce/evershop
9
https://github.com/stealjs/steal
8
https://github.com/kjur/jsrsasign
8
https://github.com/apollographql/apollo-server
8
https://github.com/pandao/editor.md
8
https://github.com/matrix-org/matrix-js-sdk
8
https://github.com/sebhildebrandt/systeminformation
8
https://github.com/digitalbazaar/forge
8
https://github.com/twbs/bootstrap
7
https://github.com/unshiftio/url-parse
7
https://github.com/lodash/lodash
7
https://github.com/louislam/uptime-kuma
7
https://github.com/matrix-org/matrix-appservice-irc
7
https://github.com/matrix-org/matrix-react-sdk
7
https://github.com/ericcornelissen/shescape
7
https://github.com/jquery/jquery-ui
6
https://github.com/eclipse-theia/theia
6
https://github.com/DIYgod/RSSHub
6
https://github.com/ionicabizau/parse-url
6
https://github.com/shenzhim/aaptjs
6
https://github.com/panva/jose
6
https://github.com/totaljs/framework
6
https://github.com/npm/node-tar
6
https://github.com/facebook/hermes
6
https://github.com/apostrophecms/sanitize-html
5
https://github.com/handlebars-lang/handlebars.js
5
https://github.com/GoogleChrome/rendertron
5
https://github.com/BlackFan/client-side-prototype-pollution
5
https://github.com/npm/cli
5
https://github.com/openpgpjs/openpgpjs
5
https://github.com/vitejs/vite
5
https://github.com/markedjs/marked
5
https://github.com/sweetalert2/sweetalert2
5
https://github.com/faisalman/ua-parser-js
5
https://github.com/hacksparrow/safe-eval
5
https://github.com/gatsbyjs/gatsby
5
https://github.com/vega/vega
5
https://github.com/follow-redirects/follow-redirects
4
https://github.com/jhipster/generator-jhipster
4
https://github.com/mrvautin/expressCart
4
https://github.com/npm/npm
4
https://github.com/steveukx/git-js
4
https://github.com/xCss/Valine
4
https://github.com/KaTeX/KaTeX
4
https://github.com/sidorares/node-mysql2
4
https://github.com/aws/aws-iot-device-sdk-java-v2
4
https://github.com/cloudflare/workers-sdk
4
https://github.com/PrismJS/prism
4
https://github.com/ofirdagan/cross-domain-local-storage
4
https://github.com/jonschlinkert/remarkable
4
https://github.com/axios/axios
4
https://github.com/yarnpkg/yarn
4
https://github.com/Dogfalo/materialize
4
https://github.com/hapijs/hapi
4
https://github.com/angular/angular.js
4
https://github.com/mde/ejs
4
https://github.com/auth0/node-jsonwebtoken
4
https://github.com/medialize/uri.js
4
https://github.com/medialize/URI.js
4
https://github.com/Ylianst/MeshCentral
4
https://github.com/balderdashy/sails
4
https://github.com/socketio/engine.io
4
https://github.com/fastify/fastify
4
https://github.com/auth0/lock
4
https://github.com/highcharts/highcharts
3
https://github.com/OpenZeppelin/openzeppelin-contracts-upgradeable
3
https://github.com/neocotic/convert-svg
3
https://github.com/hapijs/subtext
3
https://github.com/sveltejs/kit
3
https://github.com/libxmljs/libxmljs
3
https://github.com/nodejs/llhttp
3
https://github.com/kujirahand/nadesiko3
3
https://github.com/thlorenz/browserify-shim
3
https://github.com/beerpwn/CVE
3
https://github.com/node-opcua/node-opcua
3
https://github.com/immerjs/immer
3
https://github.com/infor-design/enterprise-ng
3
https://github.com/transloadit/uppy
3
https://github.com/feathersjs-ecosystem/feathers-sequelize
3
https://github.com/mermaid-js/mermaid
3
https://github.com/RIAEvangelist/node-ipc
3
https://github.com/renovatebot/renovate
3
https://github.com/nasa/openmct
3
https://github.com/n8n-io/n8n
3
https://github.com/facebook/react
3
https://github.com/moment/moment
3
https://github.com/mongodb/js-bson
3
https://github.com/docsifyjs/docsify
3
https://github.com/dojo/dojo
3
https://github.com/dojo/dojox
3
https://github.com/mongo-express/mongo-express
3
https://github.com/mozilla/node-convict
3
https://github.com/dwisiswant0/advisory
3
https://github.com/postcss/postcss
3
https://github.com/MrRio/jsPDF
3
https://github.com/nodemailer/nodemailer
3
https://github.com/soketi/soketi
3
https://github.com/socketio/socket.io-parser
3
https://github.com/manuelstofer/json-pointer
3
https://github.com/Marak/colors.js
3
https://github.com/skoranga/node-dns-sync
3
https://github.com/chjj/marked
3
https://github.com/cisco/node-jose
3
https://github.com/NaturalIntelligence/fast-xml-parser
3
https://github.com/ckeditor/ckeditor5
3
https://github.com/mariocasciaro/object-path
3
https://github.com/simpleledger/slpjs
3
https://github.com/clientIO/joint
3
https://github.com/gruntjs/grunt
3
https://github.com/cure53/DOMPurify
3
https://github.com/salesforce/tough-cookie
3
https://github.com/node-fetch/node-fetch
3
https://github.com/zeit/next.js
3
https://github.com/vriteio/vrite
3
https://github.com/webpack/loader-utils
3
https://github.com/jarofghosts/glance
3
https://github.com/typeorm/typeorm
3
https://github.com/adaltas/node-mixme
3
https://github.com/ua-parser/uap-core
3
https://github.com/websockets/ws
3
https://github.com/xmldom/xmldom
3
https://github.com/apostrophecms/apostrophe
3
https://github.com/auth0/passport-wsfed-saml2
3
https://github.com/jfhbrook/node-ecstatic
3
https://github.com/josdejong/mathjs
3
https://github.com/jquery-validation/jquery-validation
3
https://github.com/vendure-ecommerce/vendure
3
https://github.com/Automattic/mongoose
3
https://github.com/vanessa219/vditor
3
https://github.com/zestedesavoir/zmarkdown
3
https://github.com/YMFE/yapi
3
https://github.com/shelljs/shelljs
2
https://github.com/matrix-org/matrix-appservice-bridge
2
https://github.com/mathjax/MathJax
2
https://github.com/payloadcms/payload
2
https://github.com/guardian/html-janitor
2
https://github.com/codecov/codecov-node
2
https://github.com/commenthol/safer-eval
2
https://github.com/commenthol/serialize-to-js
2
https://github.com/senchalabs/connect
2
https://github.com/semantic-release/semantic-release
2
https://github.com/vvakame/fs-git
2
https://github.com/peerigon/angular-expressions
2
https://github.com/ahdinosaur/set-in
2
https://github.com/peterbraden/node-opencv
2
https://github.com/jcubic/jquery.terminal
2
https://github.com/cronvel/tree-kit
2
https://github.com/mysqljs/mysql
2
https://github.com/cube-js/cube.js
2
https://github.com/adobe/css-tools
2
https://github.com/snyk/cli
2
https://github.com/Finastra/ssr-pages
2
https://github.com/manvel-khnkoyan/jpv
2
https://github.com/jonschlinkert/merge-deep
2
https://github.com/jwadhams/json-logic-js
2
https://github.com/jonschlinkert/mixin-deep
2
https://github.com/justmoon/node-bignum
2
https://github.com/chocobozzz/peertube
2
https://github.com/chriso/validator.js
2
https://github.com/christian-bromann/rgb2hex
2
https://github.com/sindresorhus/semver-regex
2
https://github.com/sindresorhus/is-svg
2
https://github.com/yahoo/serialize-javascript
2
https://github.com/julianhille/MuhammaraJS
2
https://github.com/simpleledger/slp-validate.js
2
https://github.com/markdown-it/markdown-it
2
https://github.com/aFarkas/lazysizes
2
https://github.com/simonh1000/angular-http-server
2
https://github.com/marudor/libxmljs2
2
https://github.com/jonschlinkert/set-value
2
https://github.com/vivaxy/here
2
https://github.com/jameswlane/status-board
2
https://github.com/endojs/endo
2
https://github.com/Agoric/realms-shim
2
https://github.com/jsuites/jsuites
2
https://github.com/webpack-contrib/webpack-bundle-analyzer
2
https://github.com/froala/wysiwyg-editor
2
https://github.com/mithunsatheesh/node-rules
2
https://github.com/dfinity/agent-js
2