Browse Security Advisories
Moderate Security Advisories for @strapi/admin in npm Clear Filters
Moderate
4 months ago
Strapi allows Server-Side Request Forgery in Webhook function
npm
@strapi/admin
Moderate
about 2 years ago
Strapi may leak sensitive user information, user reset password, tokens via content-manager views
npm
@strapi/utils, @strapi/admin, @strapi/plugin-content-manager
Filter by Severity
Filter by Ecosystem
maven
3,241
packagist
2,958
pypi
2,036
npm
1,380
go
1,299
nuget
472
cargo
419
rubygems
419
hex
16
swift
11
actions
8
pub
2
Filter by Package
directus
22
tinymce
14
next
12
@openzeppelin/contracts
11
@openzeppelin/contracts-upgradeable
11
ghost
11
TinyMCE
11
tinymce/tinymce
11
bootstrap
11
vite
10
joplin
10
electron
10
ckeditor4
10
angular
9
editor.md
8
parse-server
8
marked
7
sanitize-html
7
nocodb
7
n8n
7
swagger-ui
7
nodebb
7
validator
7
url-parse
6
matrix-js-sdk
6
snyk-broker
6
uptime-kuma
6
bootstrap
6
vega
6
flowise
6
undici
6
urijs
6
jQuery.UI.Combined
6
org.webjars.npm:jquery-ui
6
jquery-ui
6
@evershop/evershop
5
froala-editor
5
@lobehub/chat
5
jquery
5
katex
5
vditor
5
matrix-appservice-irc
5
tarteaucitronjs
5
yui
4
dompurify
4
jQuery
4
materialize-css
4
rsshub
4
bootstrap
4
@directus/api
4
serve
4
bootstrap-sass
4
astro
4
vega-functions
4
glance
4
hono
4
mermaid
4
trix
4
matrix-react-sdk
4
bootstrap-sass
3
jquery-ui-rails
3
valine
3
@intlify/vue-i18n-core
3
dojo
3
org.webjars:bootstrap
3
jose-node-esm-runtime
3
strapi
3
statics-server
3
sequelize
3
org.webjars.npm:jquery
3
jose
3
vue-i18n
3
follow-redirects
3
express
3
@saltcorn/server
3
renovate
3
@backstage/techdocs-common
3
parse-url
3
apollo-server-core
3
public
3
twbs/bootstrap
3
mattermost-desktop
3
@materializecss/materialize
3
jose-node-cjs-runtime
3
docsify
3
layui
3
m-server
3
xlsx
3
systeminformation
3
next-auth
3
petite-vue-i18n
3
@jmondi/url-to-png
3
mysql
3
postcss
3
moodle/moodle
3
yapi-vendor
3
hapi
3
openmct
2
tough-cookie
2
auth0-lock
2
node-sass
2
express-xss-sanitizer
2
sockjs
2
@escape.tech/graphql-armor-max-depth
2
payload
2
lodash
2
jsoneditor
2
engine.io
2
element-plus
2
lodash-es
2
@intlify/core-base
2
pug-code-gen
2
xmldom
2
status-board
2
socket.io
2
http-file-server
2
handlebars
2
@strapi/admin
2
@openc3/tool-common
2
psitransfer
2
node-red-dashboard
2
svelte
2
html-janitor
2
jszip
2
reveal.js
2
gitbook
2
request
2
@strapi/strapi
2
keystone
2
nanoid
2
apollo-server
2
aws-cdk-lib
2
simplehttpserver
2
pnpm
2
Umbraco.Cms.StaticAssets
2
@auth0/nextjs-auth0
2
openc3
2
simple-markdown
2
@astrojs/node
2
bootbox
2
@payloadcms/next
2
lodash-rails
2
bodymen
2
quill
2
node-forge
2
i18next
2
highlight.js
2
wrangler
2
summernote
2
@ckeditor/ckeditor5-markdown-gfm
2
@adobe/css-tools
2
querymen
2
openpgp
2
keycloak-connect
2
ggit
2
notevil
2
ejs
2
@haxtheweb/haxcms-nodejs
2
apostrophe
2
@braintree/sanitize-url
2
prismjs
2
@cloudflare/workers-oauth-provider
2
@fedify/fedify
2
@umbraco-cms/backoffice
2
rendertron
2
jodit
2
forms
2
axios
2
@directus/storage-driver-s3
2
serialize-javascript
2
jsonwebtoken
2
mxgraph
2
stimulsoft-dashboards-js
2
saml2-js
2
parse
2
erxes
2
bl
2
harp
2
jellyfin-web
2
connect
2
webpack-dev-server
2
express-gateway
2
simditor
2
@strapi/utils
2
nodemailer
2
karma
2
nunjucks
2
@intlify/core
2
google-closure-library
2
@vrite/sdk
2
mcp-markdownify-server
2
@strapi/plugin-content-manager
2
mongo-express
2
aws-cdk
2
converse.js
2
@excalidraw/excalidraw
2
http-proxy-middleware
2
jsrsasign
2
@finastra/nestjs-proxy
2
mysql2
2