Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

npm @pagefind/modular-ui Security Advisories

Browse all Security Advisories for npm @pagefind/modular-ui

Moderate

GSA_kwCzR0hTQS1ncHJqLTZtMmYtajloeM4AA_P_

DOM clobbering could escalate to Cross-site Scripting (XSS)
Ecosystems: cargo, npm
Packages: pagefind, @pagefind/modular-ui, @pagefind/default-ui
Source: GitHub Advisory Database
Blast Radius: 11.8
Published: about 1 month ago

Statistics

Advisories: 20,344
Packages: 8,928
Repositories: 1
Ecosystems: 12

Filter by Severity

Moderate 8,824 High 7,045 Critical 3,016 Low 1,123

Filter by Ecosystem

maven 5,801 packagist 4,525 pypi 4,289 npm 3,782 go 2,243 nuget 1,528 rubygems 872 cargo 862 swift 32 hex 30 actions 19 pub 9

Filter by Package

parse-server 31 directus 26 electron 26 @openzeppelin/contracts-upgradeable 21 @openzeppelin/contracts 20 next 18 sequelize 16 tinymce 16 ghost 15 ckeditor4 15 swagger-ui 14 angular 13 undici 13 joplin 13 strapi 13 vm2 12 tinymce/tinymce 11 TinyMCE 11 marked 11 nodebb 11 handlebars 11 flowise 10 nocodb 10 bootstrap 10 matrix-js-sdk 10 bootstrap 9 serve 9 @evershop/evershop 9 org.webjars:bootstrap 9 bootstrap 9 next-auth 9 matrix-react-sdk 9 twbs/bootstrap 9 @strapi/strapi 9 editor.md 8 jquery-rails 8 validator 8 urijs 8 org.webjars.npm:jquery 8 express-cart 8 jquery 8 steal 8 tar 8 matrix-appservice-irc 8 jsrsasign 8 url-parse 8 node-forge 8 systeminformation 8 npm 8 total.js 7 vite 7 snyk-broker 7 jQuery.UI.Combined 7 org.webjars.npm:jquery-ui 7 jquery-ui-rails 7 jquery-ui 7 bootstrap-sass 7 lodash 7 sanitize-html 7 jQuery 7 bootstrap.sass 7 elliptic 7 lunary 7 shescape 7 hermes-engine 7 uptime-kuma 7 hapi 7 rsshub 6 parse-url 6 bootstrap-sass 6 safe-eval 6 dompurify 6 @strapi/plugin-users-permissions 6 aaptjs 6 mongoose 5 ua-parser-js 5 vditor 5 openpgp 5 mysql2 5 xlsx 5 rendertron 5 ejs 5 keystone 5 sweetalert2 5 ws 5 prismjs 5 mattermost-desktop 5 @saltcorn/server 5 dojo 5 total4 5 yarn 5 lodash-es 5 axios 5 public 5 jsonwebtoken 4 simple-git 4 glance 4 @backstage/plugin-scaffolder-backend 4 mongo-express 4 katex 4 mermaid 4 materialize-css 4 follow-redirects 4 remarkable 4 @lobehub/chat 4 meshcentral 4 apollo-server-core 4 muhammara 4 hummus 4 realms-shim 4 auth0-lock 4 engine.io 4 auth0-js 4 moment 4 hono 4 generator-jhipster 4 convert-svg-core 4 apostrophe 4 valine 4 simple-markdown 4 qs 4 software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk 4 aws-iot-device-sdk-v2 4 awsiotsdk 4 express 4 fast-xml-parser 4 @keystone-6/core 4 safer-eval 4 ecstatic 4 vega 4 fastify 4 nodemailer 3 @strapi/utils 3 dns-sync 3 org.webjars.npm:xlsx 3 nadesiko3 3 @sveltejs/kit 3 xmldom 3 grunt 3 notevil 3 bin-links 3 @jmondi/url-to-png 3 @janhq/core 3 stimulsoft-dashboards-js 3 @soketi/soketi 3 @strapi/plugin-content-manager 3 subtext 3 yapi-vendor 3 bson 3 simplehttpserver 3 @frangoteam/fuxa 3 wrangler 3 code-server 3 node-jose 3 froala-editor 3 connect 3 browserify-shim 3 jquery-validation 3 socket.io-file 3 apollo-server 3 fuxa-server 3 slp-validate 3 n8n 3 m-server 3 mysql 3 serialize-to-js 3 node-fetch 3 http-live-simulator 3 loader-utils 3 @cubejs-backend/api-gateway 3 js-yaml 3 node-ipc 3 passport-wsfed-saml2 3 @backstage/techdocs-common 3 @materializecss/materialize 3 libxmljs 3 ids-enterprise 3 highcharts 3 protobufjs 3 convict 3 immer 3 buttle 3 dojox 3 dset 3 lodash.defaultsdeep 3 ses 3 ftp-srv 3 localhost-now 3 mathjs 3 socket.io 3 locutus 3 mixme 3 json-ptr 3 send 3 ag-grid-community 3 keycloak-connect 3 @directus/api 3 @uppy/companion 3 @hapi/subtext 3 json-pointer 3

Filter by Repository

https://github.com/CloudCannon/pagefind 1