Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
npm Security Advisories
Loading...
Critical
Ecosystems: npm
Packages: buffer-xoz
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo2eDctNDJ4Mi1ocGNm
Malicious Package in buffer-xozEcosystems: npm
Packages: buffer-xoz
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: buffer-xov
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNoOW0tOWczZy01d3F4
Malicious Package in buffer-xovEcosystems: npm
Packages: buffer-xov
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: gitlabhook
Source: GitHub Advisory Database
Blast Radius: 6.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU0OWYtNzNoaC1tajM4
Command Injection in gitlabhookEcosystems: npm
Packages: gitlabhook
Source: GitHub Advisory Database
Blast Radius: 6.0
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: jquery-file-upload
Source: GitHub Advisory Database
Blast Radius: 25.8
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW14cjUtcDM2di00Nzlt
Unrestricted Upload of File with Dangerous Type in jquery-file-uploadEcosystems: npm
Packages: jquery-file-upload
Source: GitHub Advisory Database
Blast Radius: 25.8
Published: over 5 years ago
Critical
Ecosystems: npm
Packages: jscover
Source: GitHub Advisory Database
Blast Radius: 23.8
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM1aG0teGM3NC1wcXJn
OS Command Injection in jscoverEcosystems: npm
Packages: jscover
Source: GitHub Advisory Database
Blast Radius: 23.8
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: 8.9.4
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTcyNWYtM3B3Ny1ycTZ4
Malicious Package in 8.9.4Ecosystems: npm
Packages: 8.9.4
Source: GitHub Advisory Database
Blast Radius: 7.6
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: harmlesspackage
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThobXItdzM1Zi0zcWdq
Malicious Package in harmlesspackageEcosystems: npm
Packages: harmlesspackage
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: conf-cfg-ini
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1tNm1nLWp2amYtdzQ0eM4AAtpF
conf-cfg-ini Prototype Pollution via malicious INI file before v1.2.2Ecosystems: npm
Packages: conf-cfg-ini
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Critical
Ecosystems: npm
Packages: socket.io-parser
Source: GitHub Advisory Database
Blast Radius: 59.8
Published: over 1 year ago
GSA_kwCzR0hTQS1xbTk1LXBnY2ctcXFmcc4AAvix
Insufficient validation when decoding a Socket.IO packetEcosystems: npm
Packages: socket.io-parser
Source: GitHub Advisory Database
Blast Radius: 59.8
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: koa-body-parse
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdxZ3EtbWZ2ai02cXhw
Malicious Package in koa-body-parseEcosystems: npm
Packages: koa-body-parse
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: swagger-injector
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY0eDgtZ3c0OS03aHY0
Path Traversal in swagger-injectorEcosystems: npm
Packages: swagger-injector
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: @keystone-6/core
Source: GitHub Advisory Database
Blast Radius: 19.3
Published: over 1 year ago
GSA_kwCzR0hTQS02bWhyLTUybXYtNnY2Zs4AAvaQ
Field-level access-control bypass for multiselect fieldEcosystems: npm
Packages: @keystone-6/core
Source: GitHub Advisory Database
Blast Radius: 19.3
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: nodebb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
GSA_kwCzR0hTQS1wNGNjLXc1OTctNmNwbc4AAui1
Cryptographically weak PRNG in `utils.generateUUID`Ecosystems: npm
Packages: nodebb
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: samsung-remote
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhoangtbWZyNi05cnI0
Command Injection in samsung-remoteEcosystems: npm
Packages: samsung-remote
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: traceroute
Source: GitHub Advisory Database
Blast Radius: 17.7
Published: almost 2 years ago
GSA_kwCzR0hTQS04ajl2LXFocDQtd3Y1Nc4AAlJF
Node-Traceroute RCE VulnerabilityEcosystems: npm
Packages: traceroute
Source: GitHub Advisory Database
Blast Radius: 17.7
Published: almost 2 years ago
Critical
Ecosystems: npm
Packages: tenvoy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdyOTYtOGczeC1nMzZt
Improper Verification of Cryptographic SignatureEcosystems: npm
Packages: tenvoy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: soket.js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg2Z3EtNDY3ci1od2Nj
Malicious Package in soket.jsEcosystems: npm
Packages: soket.js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: pyramid-proportion
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY2dnYtaGhxYy02aGgy
Malicious Package in pyramid-proportionEcosystems: npm
Packages: pyramid-proportion
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: regenraotr
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV4N3AtZ203OS0zODNt
Malicious Package in regenraotrEcosystems: npm
Packages: regenraotr
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: soket.io
Source: GitHub Advisory Database
Blast Radius: 20.3
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdwMnAtcTM1Zy0zcmpq
Malicious Package in soket.ioEcosystems: npm
Packages: soket.io
Source: GitHub Advisory Database
Blast Radius: 20.3
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: axois
Source: GitHub Advisory Database
Blast Radius: 27.1
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdwZmMtM3c2My1nNGht
Malicious Package in axoisEcosystems: npm
Packages: axois
Source: GitHub Advisory Database
Blast Radius: 27.1
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: tenvoy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV3MjUtaHhwNS1oOGM5
Improper Verification of Cryptographic SignatureEcosystems: npm
Packages: tenvoy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: @sequelize/core, sequelize
Source: GitHub Advisory Database
Blast Radius: 52.9
Published: about 1 year ago
GSA_kwCzR0hTQS12cWZ4LWdqOTYtM3c5Nc4AAxyK
Unsafe fall-through in getWhereConditionsEcosystems: npm
Packages: @sequelize/core, sequelize
Source: GitHub Advisory Database
Blast Radius: 52.9
Published: about 1 year ago
Critical
Ecosystems: npm
Packages: buffdr-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg1NDktcDY4aC1tOW1j
Malicious Package in buffdr-xorEcosystems: npm
Packages: buffdr-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: ghost
Source: GitHub Advisory Database
Blast Radius: 26.2
Published: about 2 years ago
GSA_kwCzR0hTQS1mZmhxLWc4NTYtOWYycM06-g
Arbitrary file upload in GhostEcosystems: npm
Packages: ghost
Source: GitHub Advisory Database
Blast Radius: 26.2
Published: about 2 years ago
Critical
Ecosystems: npm
Packages: cycle-import-check
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
GSA_kwCzR0hTQS05OTV4LTMzd3EtOGdjOc4AAwVt
cycle-import-check vulnerable to Command InjectionEcosystems: npm
Packages: cycle-import-check
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: html-pages
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZtODctNDZ2di1qcXJy
Path Traversal in html-pagesEcosystems: npm
Packages: html-pages
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: over 5 years ago
Critical
Ecosystems: npm
Packages: buffer-xkr
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ3NTMtcTh4Ny1jY3g4
Malicious Package in buffer-xkrEcosystems: npm
Packages: buffer-xkr
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: node-mpv
Source: GitHub Advisory Database
Blast Radius: 16.7
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNxcjIteGhnNi1wMjY4
OS Command Injection in node-mpvEcosystems: npm
Packages: node-mpv
Source: GitHub Advisory Database
Blast Radius: 16.7
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: effect
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZocjktNDY5Mi1mY2g5
OS Command Injection in effectEcosystems: npm
Packages: effect
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: fast-requests
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdqZjItN2Y5Zy04NmY1
Malicious Package in fast-requestsEcosystems: npm
Packages: fast-requests
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: cage-js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpmOHgtd2c3Zi1wM3c4
Malicious Package in cage-jsEcosystems: npm
Packages: cage-js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: nginxbeautifier
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI4eHgtOGo5OS1tMzJq
Malicious Package in nginxbeautifierEcosystems: npm
Packages: nginxbeautifier
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: nothing-js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM1M3ItM3Y4NC05cGpq
Malicious Package in nothing-jsEcosystems: npm
Packages: nothing-js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: siteserver
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS1xNDY5LWozMmYtaDd2bc3dfg
RCE in SiteServer CMSEcosystems: npm
Packages: siteserver
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Critical
Ecosystems: npm
Packages: rc-calendar-jhorst
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRjODctZ2cycS1mYzZt
Malicious Package in rc-calendar-jhorstEcosystems: npm
Packages: rc-calendar-jhorst
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: oauth-validator
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWN4Y2YtNzhtci13cGc3
Malicious Package in oauth-validatorEcosystems: npm
Packages: oauth-validator
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: node-key-sender
Source: GitHub Advisory Database
Blast Radius: 19.6
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR4cnctd3ZtcS04am1o
OS Command Injection in node-key-senderEcosystems: npm
Packages: node-key-sender
Source: GitHub Advisory Database
Blast Radius: 19.6
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: river-mock
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJoM3gtOTVjNi04ODVy
Malicious Package in river-mockEcosystems: npm
Packages: river-mock
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: midway-dataproxy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1xOWgtY3djMi02ajVy
Malicious Package in midway-dataproxyEcosystems: npm
Packages: midway-dataproxy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: diamond-clien
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg2Z3YteHB3di1qcHJj
Malicious Package in diamond-clienEcosystems: npm
Packages: diamond-clien
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: ali-contributors
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThtNXYtZjJ3cC13cXI5
Malicious Package in ali-contributorsEcosystems: npm
Packages: ali-contributors
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: set-value
Source: GitHub Advisory Database
Blast Radius: 64.5
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRnODgtZnBwci01M3Bw
Prototype Pollution in set-valueEcosystems: npm
Packages: set-value
Source: GitHub Advisory Database
Blast Radius: 64.5
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: @evershop/evershop
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: 5 months ago
GSA_kwCzR0hTQS01bW1yLTlxeDMtM3BmOc4AA3pb
Code execution in evershopEcosystems: npm
Packages: @evershop/evershop
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: 5 months ago
Critical
Ecosystems: npm
Packages: another-date-picker
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJwNjItYzRybS1tcjcy
Malicious Package in another-date-pickerEcosystems: npm
Packages: another-date-picker
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: git-add-remote
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg5djgtcm0zbS01aDVm
OS Command Injection in git-add-remoteEcosystems: npm
Packages: git-add-remote
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: jekyll-for-github-projects
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo1cWctNDZwOS13MnJw
Malicious Package in jekyll-for-github-projectsEcosystems: npm
Packages: jekyll-for-github-projects
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: node-bluetooth
Source: GitHub Advisory Database
Blast Radius: 17.6
Published: about 1 year ago
GSA_kwCzR0hTQS1jeHgzLTM2cWMtbTZxbc4AAyAl
node-bluetooth is vulnerable to Buffer Overflow via the findSerialPortChannel method due to improper user input length validationEcosystems: npm
Packages: node-bluetooth
Source: GitHub Advisory Database
Blast Radius: 17.6
Published: about 1 year ago
Critical
Ecosystems: npm
Packages: parse-url
Source: GitHub Advisory Database
Blast Radius: 48.3
Published: over 1 year ago
GSA_kwCzR0hTQS1qOWZxLXZ3cXYtMmZtMs4AAuza
Server-Side Request Forgery (SSRF) in GitHub repository ionicabizau/parse-urlEcosystems: npm
Packages: parse-url
Source: GitHub Advisory Database
Blast Radius: 48.3
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: changeset
Source: GitHub Advisory Database
Blast Radius: 16.1
Published: almost 2 years ago
GSA_kwCzR0hTQS0yZ3F3LXE5cjktN2Y3Oc4AAnwz
Changeset vulnerable to prototype pollutionEcosystems: npm
Packages: changeset
Source: GitHub Advisory Database
Blast Radius: 16.1
Published: almost 2 years ago
Critical
Ecosystems: npm
Packages: buffer-xo2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY3Mmgtd2Y1Ny03eHdo
Malicious Package in buffer-xo2Ecosystems: npm
Packages: buffer-xo2
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: @clerk/nextjs
Source: GitHub Advisory Database
Blast Radius: 32.8
Published: 4 months ago
GSA_kwCzR0hTQS1xNnc1LWpnNXEtNDd2Z84AA4bF
@clerk/nextjs auth() and getAuth() methods vulnerable to insecure direct object reference (IDOR)Ecosystems: npm
Packages: @clerk/nextjs
Source: GitHub Advisory Database
Blast Radius: 32.8
Published: 4 months ago
Critical
Ecosystems: npm
Packages: nodebatis
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 1 year ago
GSA_kwCzR0hTQS04cGg4LTlxMmotYzNycc4AAwx-
nodebatis SQL Injection vulnerabilityEcosystems: npm
Packages: nodebatis
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 1 year ago
Critical
Ecosystems: npm
Packages: buffer-xos
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWgyajMtZ2c4dy00ODU4
Malicious Package in buffer-xosEcosystems: npm
Packages: buffer-xos
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: hashbrown-cms
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
GSA_kwCzR0hTQS00Z2p2LTVqanAtcmNnaM4AAjQE
HashBrown CMS RCEEcosystems: npm
Packages: hashbrown-cms
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 2 years ago
Critical
Ecosystems: npm
Packages: rpc-websocket
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg4N2ctcmdyaC1yNmcz
Malicious Package in rpc-websocketEcosystems: npm
Packages: rpc-websocket
Source: GitHub Advisory Database
Blast Radius: 4.7
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: deep-override
Source: GitHub Advisory Database
Blast Radius: 24.4
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY2NTktNTRjeC1nNHFy
Prototype Pollution in deep-overrideEcosystems: npm
Packages: deep-override
Source: GitHub Advisory Database
Blast Radius: 24.4
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: safer-eval
Source: GitHub Advisory Database
Blast Radius: 42.5
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhnY2gtamptci1ncDd3
Sandbox Breakout / Arbitrary Code Execution in safer-evalEcosystems: npm
Packages: safer-eval
Source: GitHub Advisory Database
Blast Radius: 42.5
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: total4
Source: GitHub Advisory Database
Blast Radius: 27.5
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc3bXEtcmZqMi0yNXdx
Code Injection in total4Ecosystems: npm
Packages: total4
Source: GitHub Advisory Database
Blast Radius: 27.5
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: smartsearchwp
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZncDYtOGc2Mi1xeDZ3
Malicious Package in smartsearchwpEcosystems: npm
Packages: smartsearchwp
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: morgan
Source: GitHub Advisory Database
Blast Radius: 58.7
Published: about 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd3Zzktcmd2ai00aDVq
Code Injection in morganEcosystems: npm
Packages: morgan
Source: GitHub Advisory Database
Blast Radius: 58.7
Published: about 5 years ago
Critical
Ecosystems: npm
Packages: swagger-ui
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWczMzYtYzd3di04aHAz
Cross-Site Scripting in swagger-uiEcosystems: npm
Packages: swagger-ui
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: llhttp
Source: GitHub Advisory Database
Blast Radius: 6.4
Published: almost 2 years ago
GSA_kwCzR0hTQS01Njg5LXY4OGctZzZyds4AAtZL
llhttp allows HTTP Request Smuggling via Flawed Parsing of Transfer-EncodingEcosystems: npm
Packages: llhttp
Source: GitHub Advisory Database
Blast Radius: 6.4
Published: almost 2 years ago
Critical
Ecosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: about 1 year ago
GSA_kwCzR0hTQS13aHBqLThmM3ctNjdwNc4AAzV1
vm2 Sandbox Escape vulnerabilityEcosystems: npm
Packages: vm2
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: about 1 year ago
Critical
Ecosystems: npm
Packages: gitlogplus
Source: GitHub Advisory Database
Blast Radius: 10.9
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNmeHAtdnd4bS0ycjVw
Command injection in gitlogplusEcosystems: npm
Packages: gitlogplus
Source: GitHub Advisory Database
Blast Radius: 10.9
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: locutus
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg4NngtbXY2Ni1ncjVx
OS Command Injection in LocutusEcosystems: npm
Packages: locutus
Source: GitHub Advisory Database
Blast Radius: 36.2
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: serializes
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo4OTktMzQ4eC1oM3Jx
Malicious Package in serializesEcosystems: npm
Packages: serializes
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: merge-change
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY5Y3YtNjY1ci0yNzVo
Prototype Pollution in merge-changeEcosystems: npm
Packages: merge-change
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: keycloak-js, keycloak-connect
Source: GitHub Advisory Database
Blast Radius: 34.5
Published: over 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW13MzUtMjRnaC1mODJ3
keycloak-connect and keycloak-js improperly handle invalid tokensEcosystems: npm
Packages: keycloak-js, keycloak-connect
Source: GitHub Advisory Database
Blast Radius: 34.5
Published: over 6 years ago
Critical
Ecosystems: npm
Packages: bignum
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 12 months ago
GSA_kwCzR0hTQS03Y2djLWZqdjQtNTJ4Ns4AAzdI
Malware in pre-build binaries of bignumEcosystems: npm
Packages: bignum
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 12 months ago
Critical
Ecosystems: npm
Packages: serverless-offline
Source: GitHub Advisory Database
Blast Radius: 40.0
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg5N2YtNTI1OC01NTkz
Incorrect Authorization in serverless-offlineEcosystems: npm
Packages: serverless-offline
Source: GitHub Advisory Database
Blast Radius: 40.0
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: field
Source: GitHub Advisory Database
Blast Radius: 12.3
Published: over 2 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhtODItcXI0NS1oN213
Prototype Pollution in fieldEcosystems: npm
Packages: field
Source: GitHub Advisory Database
Blast Radius: 12.3
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: scrytsy
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZ2N2ctcGp3OS00cWo5
Malicious Package in scrytsyEcosystems: npm
Packages: scrytsy
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: appium-desktop
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 year ago
GSA_kwCzR0hTQS14cTZqLXg4cHEtZzNncs4AAzDz
appium-desktop OS Command Injection vulnerabilityEcosystems: npm
Packages: appium-desktop
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 1 year ago
Critical
Ecosystems: npm
Packages: vconsole
Source: GitHub Advisory Database
Blast Radius: 34.2
Published: about 1 year ago
GSA_kwCzR0hTQS1mNzM3LTNmaDYtamY2d84AAy_R
Prototype Pollution in vConsoleEcosystems: npm
Packages: vconsole
Source: GitHub Advisory Database
Blast Radius: 34.2
Published: about 1 year ago
Critical
Ecosystems: npm
Packages: @irrelon/path, irrelon-path
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo3Y2ctaDl2OS02dnFw
Prototype Pollution in irrelon-path and @irrelon/pathEcosystems: npm
Packages: @irrelon/path, irrelon-path
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: about 3 years ago
Critical
Ecosystems: npm
Packages: cd-messenger
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY3NTYtNHdodi00OHZj
Code Injection in cd-messengerEcosystems: npm
Packages: cd-messenger
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: typeorm
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: almost 2 years ago
GSA_kwCzR0hTQS1meDR3LXY0M2otdmM0Nc4AAtGB
SQL injection in typeORMEcosystems: npm
Packages: typeorm
Source: GitHub Advisory Database
Blast Radius: 46.2
Published: almost 2 years ago
Critical
Ecosystems: npm
Packages: libyaml
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW03NWgtY2docS1jOGg1
Heap Based Buffer Overflow in libyamlEcosystems: npm
Packages: libyaml
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: access-policy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ3MmYtN2Y4Ny01cjZj
Improper Input Validation in access-policyEcosystems: npm
Packages: access-policy
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: @openzeppelin/contracts-upgradeable
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
GSA_kwCzR0hTQS1xNGg5LTQ2eGctbTN4Oc0Vww
UUPSUpgradeable vulnerability in @openzeppelin/contracts-upgradeableEcosystems: npm
Packages: @openzeppelin/contracts-upgradeable
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: node-extend
Source: GitHub Advisory Database
Blast Radius: 14.6
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNnNDItNHdyYy1ncDQ3
Code Injection in node-extendEcosystems: npm
Packages: node-extend
Source: GitHub Advisory Database
Blast Radius: 14.6
Published: almost 3 years ago
Critical
Ecosystems: npm
Packages: grunt-radic
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlwNDktY3doMy00cWhm
Malicious Package in grunt-radicEcosystems: npm
Packages: grunt-radic
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: commmander
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE0MmMtcnJwMy1yM3ht
Malicious Package in commmanderEcosystems: npm
Packages: commmander
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: blubird
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ2d3cteDZtNC00dmMy
Malicious Package in blubirdEcosystems: npm
Packages: blubird
Source: GitHub Advisory Database
Blast Radius: 12.5
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: pidusage
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhmcTktcmZwdi1qOHI4
Command Injection in pidusageEcosystems: npm
Packages: pidusage
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: node-df
Source: GitHub Advisory Database
Blast Radius: 19.2
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdwN20tbXJ2Zi01OTlj
Command Injection in node-dfEcosystems: npm
Packages: node-df
Source: GitHub Advisory Database
Blast Radius: 19.2
Published: about 4 years ago
Critical
Ecosystems: npm
Packages: font-scrubber
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY1ajctNjZwNy05eGdm
Malicious Package in font-scrubberEcosystems: npm
Packages: font-scrubber
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: coffee-project
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNmdjYtcTV4di1maHB3
Malicious Package in coffee-projectEcosystems: npm
Packages: coffee-project
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: yeoman-genrator
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZtN3ItMnByNy1ydzJw
Malicious Package in yeoman-genratorEcosystems: npm
Packages: yeoman-genrator
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: uglyfi-js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl4d3ctZndoOS05NWM1
Malicious Package in uglyfi-jsEcosystems: npm
Packages: uglyfi-js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: defaults-deep
Source: GitHub Advisory Database
Blast Radius: 34.7
Published: over 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBqeHctMjJ4Zi02cHdj
Prototype Pollution in defaults-deepEcosystems: npm
Packages: defaults-deep
Source: GitHub Advisory Database
Blast Radius: 34.7
Published: over 5 years ago
Critical
Ecosystems: npm
Packages: require-ports
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFqM2ctd2ZyNy0zY3Y3
Malicious Package in require-portsEcosystems: npm
Packages: require-ports
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: aaptjs
Source: GitHub Advisory Database
Blast Radius: 26.4
Published: over 2 years ago
GSA_kwCzR0hTQS1yNDk2LTdoZ3AtNTN3Zs0Wyw
Vulnerability in dump function leads to arbitrary code execution via filePath parametersEcosystems: npm
Packages: aaptjs
Source: GitHub Advisory Database
Blast Radius: 26.4
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: buffmr-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXd2MzktY2dtbS1jcTI5
Malicious Package in buffmr-xorEcosystems: npm
Packages: buffmr-xor
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: aaptjs
Source: GitHub Advisory Database
Blast Radius: 26.4
Published: over 2 years ago
GSA_kwCzR0hTQS00cXdxLXE0cHItcnI3cs0WzA
Vulnerability in packageCmd function leads to arbitrary code execution via filePath parametersEcosystems: npm
Packages: aaptjs
Source: GitHub Advisory Database
Blast Radius: 26.4
Published: over 2 years ago
Critical
Ecosystems: npm
Packages: froever
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJyOGYtMjY2NS0zZ3hx
Malicious Package in froeverEcosystems: npm
Packages: froever
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: knex
Source: GitHub Advisory Database
Blast Radius: 48.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU4djQtcXd4NS03ZjU5
SQL Injection in knexEcosystems: npm
Packages: knex
Source: GitHub Advisory Database
Blast Radius: 48.8
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: colro-name
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpwOWctNXg3NS1jY3A4
Malicious Package in colro-nameEcosystems: npm
Packages: colro-name
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Critical
Ecosystems: npm
Packages: browserift
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQzdmYtMng2Zy1wMm01
Malicious Package in browseriftEcosystems: npm
Packages: browserift
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Statistics
Advisories: 18,745
Packages: 8,373
Repositories: 1,401
Ecosystems: 12
Packages: 8,373
Repositories: 1,401
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
parse-server
29
electron
26
@openzeppelin/contracts-upgradeable
21
@openzeppelin/contracts
20
directus
18
sequelize
16
next
15
swagger-ui
14
tinymce
14
ghost
14
strapi
13
joplin
13
ckeditor4
13
undici
12
vm2
12
nodebb
11
handlebars
11
marked
11
angular
11
nocodb
10
@evershop/evershop
9
serve
9
next-auth
9
TinyMCE
9
tinymce/tinymce
9
node-forge
8
urijs
8
jsrsasign
8
express-cart
8
editor.md
8
validator
8
npm
8
@strapi/strapi
8
url-parse
8
tar
8
steal
8
systeminformation
8
bootstrap
8
matrix-js-sdk
8
org.webjars.npm:jquery
8
jquery
8
jquery-rails
8
total.js
7
sanitize-html
7
uptime-kuma
7
jquery-ui
7
matrix-appservice-irc
7
jquery-ui-rails
7
org.webjars.npm:jquery-ui
7
jQuery.UI.Combined
7
snyk-broker
7
jQuery
7
shescape
7
lodash
7
matrix-react-sdk
7
hermes-engine
7
hapi
7
safe-eval
6
aaptjs
6
rsshub
6
parse-url
6
prismjs
5
lodash-es
5
total4
5
openpgp
5
public
5
ejs
5
mongoose
5
vite
5
dojo
5
sweetalert2
5
yarn
5
vditor
5
ua-parser-js
5
rendertron
5
@strapi/plugin-users-permissions
5
xlsx
5
keystone
5
safer-eval
4
muhammara
4
remarkable
4
ecstatic
4
axios
4
convert-svg-core
4
hummus
4
simple-git
4
engine.io
4
jsonwebtoken
4
realms-shim
4
ws
4
fastify
4
katex
4
dompurify
4
apostrophe
4
vega
4
auth0-js
4
materialize-css
4
@keystone-6/core
4
moment
4
mongo-express
4
valine
4
mermaid
4
auth0-lock
4
@backstage/plugin-scaffolder-backend
4
awsiotsdk
4
aws-iot-device-sdk-v2
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
apollo-server-core
4
meshcentral
4
glance
4
mysql2
4
generator-jhipster
4
follow-redirects
4
simple-markdown
4
qs
4
node-red-dashboard
3
notevil
3
org.webjars.npm:xlsx
3
object-path
3
loader-utils
3
ses
3
passport-wsfed-saml2
3
js-yaml
3
n8n
3
grunt
3
jspdf
3
locutus
3
codecov
3
jointjs
3
dns-sync
3
mysql
3
wrangler
3
yapi-vendor
3
@frangoteam/fuxa
3
ftp-srv
3
renovate
3
blamer
3
bootstrap
3
@ckeditor/ckeditor5-markdown-gfm
3
raneto
3
tough-cookie
3
froala-editor
3
highcharts
3
localhost-now
3
mixme
3
connect
3
jose
3
socket.io-file
3
fast-xml-parser
3
browserify-shim
3
slpjs
3
feathers-sequelize
3
protobufjs
3
http-live-simulator
3
uap-core
3
xmldom
3
m-server
3
keycloak-connect
3
@strapi/utils
3
@cubejs-backend/api-gateway
3
nodemailer
3
slp-validate
3
apollo-server
3
node-opcua
3
postcss
3
socket.io-parser
3
jquery-validation
3
@backstage/techdocs-common
3
node-ipc
3
mathjs
3
node-jose
3
parsel
3
@uppy/companion
3
nadesiko3
3
convict
3
dojox
3
simplehttpserver
3
fuxa-server
3
mxgraph
3
statics-server
3
stimulsoft-dashboards-js
3
express-fileupload
3
node-fetch
3
xdLocalStorage
3
@hapi/subtext
3
subtext
3
@apollo/server
3
json-pointer
3
immer
3
serialize-to-js
3
buttle
3
typeorm
3
lodash.defaultsdeep
3
@vrite/sdk
3
@commercial/subtext
3
json-ptr
3
@sveltejs/kit
3
snyk
3
@soketi/soketi
3
ids-enterprise
3
Filter by Repository
https://github.com/parse-community/parse-server
29
https://github.com/electron/electron
25
https://github.com/strapi/strapi
21
https://github.com/OpenZeppelin/openzeppelin-contracts
20
https://github.com/directus/directus
17
https://github.com/sequelize/sequelize
16
https://github.com/tinymce/tinymce
14
https://github.com/swagger-api/swagger-ui
13
https://github.com/TryGhost/Ghost
12
https://github.com/backstage/backstage
12
https://github.com/laurent22/joplin
12
https://github.com/ckeditor/ckeditor4
12
https://github.com/patriksimek/vm2
12
https://github.com/nodejs/undici
12
https://github.com/NodeBB/NodeBB
11
https://github.com/vercel/next.js
11
https://github.com/jquery/jquery
10
https://github.com/keystonejs/keystone
10
https://github.com/nextauthjs/next-auth
10
https://github.com/nocodb/nocodb
10
https://github.com/evershopcommerce/evershop
9
https://github.com/stealjs/steal
8
https://github.com/kjur/jsrsasign
8
https://github.com/apollographql/apollo-server
8
https://github.com/pandao/editor.md
8
https://github.com/matrix-org/matrix-js-sdk
8
https://github.com/sebhildebrandt/systeminformation
8
https://github.com/digitalbazaar/forge
8
https://github.com/twbs/bootstrap
7
https://github.com/unshiftio/url-parse
7
https://github.com/lodash/lodash
7
https://github.com/louislam/uptime-kuma
7
https://github.com/matrix-org/matrix-appservice-irc
7
https://github.com/matrix-org/matrix-react-sdk
7
https://github.com/ericcornelissen/shescape
7
https://github.com/jquery/jquery-ui
6
https://github.com/eclipse-theia/theia
6
https://github.com/DIYgod/RSSHub
6
https://github.com/ionicabizau/parse-url
6
https://github.com/shenzhim/aaptjs
6
https://github.com/panva/jose
6
https://github.com/totaljs/framework
6
https://github.com/npm/node-tar
6
https://github.com/facebook/hermes
6
https://github.com/apostrophecms/sanitize-html
5
https://github.com/handlebars-lang/handlebars.js
5
https://github.com/GoogleChrome/rendertron
5
https://github.com/BlackFan/client-side-prototype-pollution
5
https://github.com/npm/cli
5
https://github.com/openpgpjs/openpgpjs
5
https://github.com/vitejs/vite
5
https://github.com/markedjs/marked
5
https://github.com/sweetalert2/sweetalert2
5
https://github.com/faisalman/ua-parser-js
5
https://github.com/hacksparrow/safe-eval
5
https://github.com/gatsbyjs/gatsby
5
https://github.com/vega/vega
5
https://github.com/follow-redirects/follow-redirects
4
https://github.com/jhipster/generator-jhipster
4
https://github.com/mrvautin/expressCart
4
https://github.com/npm/npm
4
https://github.com/steveukx/git-js
4
https://github.com/xCss/Valine
4
https://github.com/KaTeX/KaTeX
4
https://github.com/sidorares/node-mysql2
4
https://github.com/aws/aws-iot-device-sdk-java-v2
4
https://github.com/cloudflare/workers-sdk
4
https://github.com/PrismJS/prism
4
https://github.com/ofirdagan/cross-domain-local-storage
4
https://github.com/jonschlinkert/remarkable
4
https://github.com/axios/axios
4
https://github.com/yarnpkg/yarn
4
https://github.com/Dogfalo/materialize
4
https://github.com/hapijs/hapi
4
https://github.com/angular/angular.js
4
https://github.com/mde/ejs
4
https://github.com/auth0/node-jsonwebtoken
4
https://github.com/medialize/uri.js
4
https://github.com/medialize/URI.js
4
https://github.com/Ylianst/MeshCentral
4
https://github.com/balderdashy/sails
4
https://github.com/socketio/engine.io
4
https://github.com/fastify/fastify
4
https://github.com/auth0/lock
4
https://github.com/highcharts/highcharts
3
https://github.com/OpenZeppelin/openzeppelin-contracts-upgradeable
3
https://github.com/neocotic/convert-svg
3
https://github.com/hapijs/subtext
3
https://github.com/sveltejs/kit
3
https://github.com/libxmljs/libxmljs
3
https://github.com/nodejs/llhttp
3
https://github.com/kujirahand/nadesiko3
3
https://github.com/thlorenz/browserify-shim
3
https://github.com/beerpwn/CVE
3
https://github.com/node-opcua/node-opcua
3
https://github.com/immerjs/immer
3
https://github.com/infor-design/enterprise-ng
3
https://github.com/transloadit/uppy
3
https://github.com/feathersjs-ecosystem/feathers-sequelize
3
https://github.com/mermaid-js/mermaid
3
https://github.com/RIAEvangelist/node-ipc
3
https://github.com/renovatebot/renovate
3
https://github.com/nasa/openmct
3
https://github.com/n8n-io/n8n
3
https://github.com/facebook/react
3
https://github.com/moment/moment
3
https://github.com/mongodb/js-bson
3
https://github.com/docsifyjs/docsify
3
https://github.com/dojo/dojo
3
https://github.com/dojo/dojox
3
https://github.com/mongo-express/mongo-express
3
https://github.com/mozilla/node-convict
3
https://github.com/dwisiswant0/advisory
3
https://github.com/postcss/postcss
3
https://github.com/MrRio/jsPDF
3
https://github.com/nodemailer/nodemailer
3
https://github.com/soketi/soketi
3
https://github.com/socketio/socket.io-parser
3
https://github.com/manuelstofer/json-pointer
3
https://github.com/Marak/colors.js
3
https://github.com/skoranga/node-dns-sync
3
https://github.com/chjj/marked
3
https://github.com/cisco/node-jose
3
https://github.com/NaturalIntelligence/fast-xml-parser
3
https://github.com/ckeditor/ckeditor5
3
https://github.com/mariocasciaro/object-path
3
https://github.com/simpleledger/slpjs
3
https://github.com/clientIO/joint
3
https://github.com/gruntjs/grunt
3
https://github.com/cure53/DOMPurify
3
https://github.com/salesforce/tough-cookie
3
https://github.com/node-fetch/node-fetch
3
https://github.com/zeit/next.js
3
https://github.com/vriteio/vrite
3
https://github.com/webpack/loader-utils
3
https://github.com/jarofghosts/glance
3
https://github.com/typeorm/typeorm
3
https://github.com/adaltas/node-mixme
3
https://github.com/ua-parser/uap-core
3
https://github.com/websockets/ws
3
https://github.com/xmldom/xmldom
3
https://github.com/apostrophecms/apostrophe
3
https://github.com/auth0/passport-wsfed-saml2
3
https://github.com/jfhbrook/node-ecstatic
3
https://github.com/josdejong/mathjs
3
https://github.com/jquery-validation/jquery-validation
3
https://github.com/vendure-ecommerce/vendure
3
https://github.com/Automattic/mongoose
3
https://github.com/vanessa219/vditor
3
https://github.com/zestedesavoir/zmarkdown
3
https://github.com/YMFE/yapi
3
https://github.com/shelljs/shelljs
2
https://github.com/matrix-org/matrix-appservice-bridge
2
https://github.com/mathjax/MathJax
2
https://github.com/payloadcms/payload
2
https://github.com/guardian/html-janitor
2
https://github.com/codecov/codecov-node
2
https://github.com/commenthol/safer-eval
2
https://github.com/commenthol/serialize-to-js
2
https://github.com/senchalabs/connect
2
https://github.com/semantic-release/semantic-release
2
https://github.com/vvakame/fs-git
2
https://github.com/peerigon/angular-expressions
2
https://github.com/ahdinosaur/set-in
2
https://github.com/peterbraden/node-opencv
2
https://github.com/jcubic/jquery.terminal
2
https://github.com/cronvel/tree-kit
2
https://github.com/mysqljs/mysql
2
https://github.com/cube-js/cube.js
2
https://github.com/adobe/css-tools
2
https://github.com/snyk/cli
2
https://github.com/Finastra/ssr-pages
2
https://github.com/manvel-khnkoyan/jpv
2
https://github.com/jonschlinkert/merge-deep
2
https://github.com/jwadhams/json-logic-js
2
https://github.com/jonschlinkert/mixin-deep
2
https://github.com/justmoon/node-bignum
2
https://github.com/chocobozzz/peertube
2
https://github.com/chriso/validator.js
2
https://github.com/christian-bromann/rgb2hex
2
https://github.com/sindresorhus/semver-regex
2
https://github.com/sindresorhus/is-svg
2
https://github.com/yahoo/serialize-javascript
2
https://github.com/julianhille/MuhammaraJS
2
https://github.com/simpleledger/slp-validate.js
2
https://github.com/markdown-it/markdown-it
2
https://github.com/aFarkas/lazysizes
2
https://github.com/simonh1000/angular-http-server
2
https://github.com/marudor/libxmljs2
2
https://github.com/jonschlinkert/set-value
2
https://github.com/vivaxy/here
2
https://github.com/jameswlane/status-board
2
https://github.com/endojs/endo
2
https://github.com/Agoric/realms-shim
2
https://github.com/jsuites/jsuites
2
https://github.com/webpack-contrib/webpack-bundle-analyzer
2
https://github.com/froala/wysiwyg-editor
2
https://github.com/mithunsatheesh/node-rules
2
https://github.com/dfinity/agent-js
2