Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
npm Security Advisories
Loading...
Critical
Ecosystems: npm
Packages: umount
Source: GitHub Advisory Database
Blast Radius: 11.8
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZxNDgtdmpxMi1td2Nq
Command Injection in umountEcosystems: npm
Packages: umount
Source: GitHub Advisory Database
Blast Radius: 11.8
Published: almost 4 years ago
Critical
Ecosystems: npm
Packages: ini-parser
Source: GitHub Advisory Database
Blast Radius: 23.2
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk2cjctbXJxZi1qaGNj
Prototype Pollution in ini-parserEcosystems: npm
Packages: ini-parser
Source: GitHub Advisory Database
Blast Radius: 23.2
Published: almost 4 years ago
Critical
Ecosystems: npm
Packages: schema-inspector
Source: GitHub Advisory Database
Blast Radius: 30.4
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXIyNGgtNjM0cC1tNzJ4
Validation Bypass in schema-inspectorEcosystems: npm
Packages: schema-inspector
Source: GitHub Advisory Database
Blast Radius: 30.4
Published: almost 4 years ago
High
Ecosystems: npm
Packages: graphql-playground-html
Source: GitHub Advisory Database
Blast Radius: 37.4
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ4NTItdnJoNy0yOHJm
Reflected XSS in GraphQL PlaygroundEcosystems: npm
Packages: graphql-playground-html
Source: GitHub Advisory Database
Blast Radius: 37.4
Published: almost 4 years ago
Moderate
Ecosystems: npm
Packages: apollo-server-micro, apollo-server-lambda, apollo-server-koa, apollo-server-hapi, apollo-server-fastify, apollo-server-express, apollo-server-cloudflare, apollo-server-cloud-functions, apollo-server-core, apollo-server-cache-memcached, apollo-server-azure-functions, apollo-server
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc0MmctN3ZmYy14ZjM3
Introspection in schema validation in Apollo ServerEcosystems: npm
Packages: apollo-server-micro, apollo-server-lambda, apollo-server-koa, apollo-server-hapi, apollo-server-fastify, apollo-server-express, apollo-server-cloudflare, apollo-server-cloud-functions, apollo-server-core, apollo-server-cache-memcached, apollo-server-azure-functions, apollo-server
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 4 years ago
High
Ecosystems: npm
Packages: websocket-extensions
Source: GitHub Advisory Database
Blast Radius: 53.2
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc3OG0tMmNobS1yN3F2
Regular Expression Denial of Service in websocket-extensions (NPM package)Ecosystems: npm
Packages: websocket-extensions
Source: GitHub Advisory Database
Blast Radius: 53.2
Published: almost 4 years ago
Critical
Ecosystems: npm
Packages: logkitty
Source: GitHub Advisory Database
Blast Radius: 52.9
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY4djgtNjg1OS1xeG00
Arbitrary shell command execution in logkittyEcosystems: npm
Packages: logkitty
Source: GitHub Advisory Database
Blast Radius: 52.9
Published: almost 4 years ago
Moderate
Ecosystems: npm
Packages: snyk-broker
Source: GitHub Advisory Database
Blast Radius: 2.0
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg3bTItNmc5OS04NHc1
Arbitrary File Read in Snyk BrokerEcosystems: npm
Packages: snyk-broker
Source: GitHub Advisory Database
Blast Radius: 2.0
Published: almost 4 years ago
Moderate
Ecosystems: npm
Packages: snyk-broker
Source: GitHub Advisory Database
Blast Radius: 2.0
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR2ajMtZjg0OS01cjQ4
Arbitrary File Read in Snyk BrokerEcosystems: npm
Packages: snyk-broker
Source: GitHub Advisory Database
Blast Radius: 2.0
Published: almost 4 years ago
Moderate
Ecosystems: npm
Packages: snyk-broker
Source: GitHub Advisory Database
Blast Radius: 2.0
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl4djItNTQ4eC01aDc5
Arbitrary File Read in Snyk BrokerEcosystems: npm
Packages: snyk-broker
Source: GitHub Advisory Database
Blast Radius: 2.0
Published: almost 4 years ago
Moderate
Ecosystems: npm
Packages: snyk-broker
Source: GitHub Advisory Database
Blast Radius: 2.0
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJmbXAtN3h3Zi13dndy
Arbitrary File Read in Snyk BrokerEcosystems: npm
Packages: snyk-broker
Source: GitHub Advisory Database
Blast Radius: 2.0
Published: almost 4 years ago
High
Ecosystems: npm
Packages: snyk-broker
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1naDUtNGg5NS1xajRw
Information Exposure in Snyk BrokerEcosystems: npm
Packages: snyk-broker
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: almost 4 years ago
Moderate
Ecosystems: npm
Packages: snyk-broker
Source: GitHub Advisory Database
Blast Radius: 1.3
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ1aHctMjl4Ny05eDk1
Arbitrary File Read in Snyk BrokerEcosystems: npm
Packages: snyk-broker
Source: GitHub Advisory Database
Blast Radius: 1.3
Published: almost 4 years ago
Moderate
Ecosystems: npm
Packages: @nozbe/watermelondb
Source: GitHub Advisory Database
Blast Radius: 14.1
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM4ZjktbTI5Ny02cTln
DoS via malicious record IDs in WatermelonDBEcosystems: npm
Packages: @nozbe/watermelondb
Source: GitHub Advisory Database
Blast Radius: 14.1
Published: almost 4 years ago
High
Ecosystems: npm
Packages: dns-sync
Source: GitHub Advisory Database
Blast Radius: 17.9
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdoNjktd2M2cS03ODg4
Command injection in node-dns-syncEcosystems: npm
Packages: dns-sync
Source: GitHub Advisory Database
Blast Radius: 17.9
Published: almost 4 years ago
Critical
Ecosystems: npm
Packages: aegir
Source: GitHub Advisory Database
Blast Radius: 28.2
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFmY3YtNXdody03cGN3
Exposure of Sensitive Information to an Unauthorized Actor in AEgirEcosystems: npm
Packages: aegir
Source: GitHub Advisory Database
Blast Radius: 28.2
Published: almost 4 years ago
Moderate
Ecosystems: maven, rubygems, nuget, npm
Packages: org.webjars.npm:jquery, jquery-rails, jQuery, jquery
Source: GitHub Advisory Database
Blast Radius: 104.9
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE0bTMtMmo3aC1mN3h3
Cross-Site Scripting in jqueryEcosystems: maven, rubygems, nuget, npm
Packages: org.webjars.npm:jquery, jquery-rails, jQuery, jquery
Source: GitHub Advisory Database
Blast Radius: 104.9
Published: almost 4 years ago
Critical
Ecosystems: npm
Packages: curlrequest
Source: GitHub Advisory Database
Blast Radius: 25.4
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW04eGotNXY3My0zaGg4
curlrequest allows execution of arbitrary commandsEcosystems: npm
Packages: curlrequest
Source: GitHub Advisory Database
Blast Radius: 25.4
Published: almost 4 years ago
Critical
Ecosystems: npm
Packages: slp-validate
Source: GitHub Advisory Database
Blast Radius: 8.2
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR3OTctNTd2Mi0zdzQ0
False-negative validation results in MINT transactions with invalid batonEcosystems: npm
Packages: slp-validate
Source: GitHub Advisory Database
Blast Radius: 8.2
Published: almost 4 years ago
Critical
Ecosystems: npm
Packages: slpjs
Source: GitHub Advisory Database
Blast Radius: 15.5
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpjODMtY3BmOS1xN2M2
False-negative validation results in MINT transactions with invalid batonEcosystems: npm
Packages: slpjs
Source: GitHub Advisory Database
Blast Radius: 15.5
Published: almost 4 years ago
Moderate
Ecosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM3OHctMmd3Ny1nanYz
XSS in TinyMCEEcosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 4 years ago
Critical
Ecosystems: npm
Packages: hot-formula-parser
Source: GitHub Advisory Database
Blast Radius: 27.7
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJjNzcteHhxNi00bWZm
Command Injection in hot-formula-parserEcosystems: npm
Packages: hot-formula-parser
Source: GitHub Advisory Database
Blast Radius: 27.7
Published: almost 4 years ago
High
Ecosystems: npm
Packages: qs
Source: GitHub Advisory Database
Blast Radius: 47.4
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdxZ3YtNmpxNS1qamo5
Prototype Pollution Protection Bypass in qsEcosystems: npm
Packages: qs
Source: GitHub Advisory Database
Blast Radius: 47.4
Published: about 4 years ago
Moderate
Ecosystems: maven, nuget, rubygems, npm
Packages: org.webjars.npm:jquery, jQuery, jquery-rails, jquery
Source: GitHub Advisory Database
Blast Radius: 118.7
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpwY3EtY2d3Ni12NGo2
Potential XSS vulnerability in jQueryEcosystems: maven, nuget, rubygems, npm
Packages: org.webjars.npm:jquery, jQuery, jquery-rails, jquery
Source: GitHub Advisory Database
Blast Radius: 118.7
Published: about 4 years ago
Moderate
Ecosystems: rubygems, maven, nuget, npm
Packages: jquery-rails, org.webjars.npm:jquery, jquery
Source: GitHub Advisory Database
Blast Radius: 118.7
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd4cjQteGpqNS01cHgy
Potential XSS vulnerability in jQueryEcosystems: rubygems, maven, nuget, npm
Packages: jquery-rails, org.webjars.npm:jquery, jquery
Source: GitHub Advisory Database
Blast Radius: 118.7
Published: about 4 years ago
Moderate
Ecosystems: npm
Packages: @actions/http-client
Source: GitHub Advisory Database
Blast Radius: 31.6
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl3NnYtbTd3cC1qd2c0
Http request which redirect to another hostname do not strip authorization header in @actions/http-clientEcosystems: npm
Packages: @actions/http-client
Source: GitHub Advisory Database
Blast Radius: 31.6
Published: about 4 years ago
Critical
Ecosystems: npm
Packages: npm-programmatic
Source: GitHub Advisory Database
Blast Radius: 29.9
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQyNmgtMjR2ai1xd3hm
Command Injection in npm-programmaticEcosystems: npm
Packages: npm-programmatic
Source: GitHub Advisory Database
Blast Radius: 29.9
Published: about 4 years ago
High
Ecosystems: npm
Packages: lix
Source: GitHub Advisory Database
Blast Radius: 15.9
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE4eGctOHh3Zi1tNTk4
Machine-In-The-Middle in lixEcosystems: npm
Packages: lix
Source: GitHub Advisory Database
Blast Radius: 15.9
Published: about 4 years ago
Moderate
Ecosystems: npm
Packages: https-proxy-agent
Source: GitHub Advisory Database
Blast Radius: 37.8
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBjNXAtaDhwZi1tdndw
Machine-In-The-Middle in https-proxy-agentEcosystems: npm
Packages: https-proxy-agent
Source: GitHub Advisory Database
Blast Radius: 37.8
Published: about 4 years ago
High
Ecosystems: npm
Packages: node-uuid
Source: GitHub Advisory Database
Blast Radius: 40.4
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI2NXEtMjhycC1jaHE1
Insecure Entropy Source - Math.random() in node-uuidEcosystems: npm
Packages: node-uuid
Source: GitHub Advisory Database
Blast Radius: 40.4
Published: about 4 years ago
Moderate
Ecosystems: npm
Packages: sanitize-html
Source: GitHub Advisory Database
Blast Radius: 30.2
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNqN20taG1oMy05am1w
Cross-Site Scripting in sanitize-htmlEcosystems: npm
Packages: sanitize-html
Source: GitHub Advisory Database
Blast Radius: 30.2
Published: about 4 years ago
Moderate
Ecosystems: npm
Packages: @fraction/oasis
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo0MzgtNDVoYy12amht
CSRF and DNS Rebinding in OasisEcosystems: npm
Packages: @fraction/oasis
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
Critical
Ecosystems: npm
Packages: devcert-sanscache
Source: GitHub Advisory Database
Blast Radius: 30.2
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRncDMtcDdwaC14Mmpy
OS Command Injection in devcert-sanscacheEcosystems: npm
Packages: devcert-sanscache
Source: GitHub Advisory Database
Blast Radius: 30.2
Published: about 4 years ago
High
Ecosystems: npm
Packages: auth0-js
Source: GitHub Advisory Database
Blast Radius: 23.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXByZnEtZjY2Zy00M21w
Information disclosure through error object in auth0.jsEcosystems: npm
Packages: auth0-js
Source: GitHub Advisory Database
Blast Radius: 23.0
Published: about 4 years ago
Moderate
Ecosystems: npm
Packages: confinit
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpncHEtZzgyZy02YzM5
confinit vulnerable to prototype pollutionEcosystems: npm
Packages: confinit
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
Moderate
Ecosystems: npm
Packages: class-transformer
Source: GitHub Advisory Database
Blast Radius: 25.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZncDMtaDNqai1wcng0
Prototype pollution in class-transformerEcosystems: npm
Packages: class-transformer
Source: GitHub Advisory Database
Blast Radius: 25.0
Published: about 4 years ago
High
Ecosystems: npm
Packages: acorn
Source: GitHub Advisory Database
Blast Radius: 45.4
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZjaHctNmZyZy1mNzU5
Regular Expression Denial of Service in AcornEcosystems: npm
Packages: acorn
Source: GitHub Advisory Database
Blast Radius: 45.4
Published: about 4 years ago
Moderate
Ecosystems: npm
Packages: minimist
Source: GitHub Advisory Database
Blast Radius: 35.3
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZoOTUtcm1nci02dzRt
Prototype Pollution in minimistEcosystems: npm
Packages: minimist
Source: GitHub Advisory Database
Blast Radius: 35.3
Published: about 4 years ago
High
Ecosystems: npm
Packages: seeftl
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRnNDYtNWdyYy13cTQ5
Cross-Site Scripting in seeftlEcosystems: npm
Packages: seeftl
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
High
Ecosystems: npm
Packages: fileview
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd2cjQtN3hnYy1neDN3
Cross-Site Scripting in fileviewEcosystems: npm
Packages: fileview
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
High
Ecosystems: npm
Packages: ecstatic
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlxNjQtbXB4eC04N2Zn
Open Redirect in ecstaticEcosystems: npm
Packages: ecstatic
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
Moderate
Ecosystems: npm
Packages: knockout
Source: GitHub Advisory Database
Blast Radius: 20.3
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZjamoteGYyci1td3Zj
XSS in knockoutEcosystems: npm
Packages: knockout
Source: GitHub Advisory Database
Blast Radius: 20.3
Published: about 4 years ago
High
Ecosystems: npm
Packages: http_server
Source: GitHub Advisory Database
Blast Radius: 7.2
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc1NHgtNGp3cC1jcXA2
Cross-Site Scripting in http_serverEcosystems: npm
Packages: http_server
Source: GitHub Advisory Database
Blast Radius: 7.2
Published: about 4 years ago
Moderate
Ecosystems: npm
Packages: statics-server
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWoyN2otNHc2bS04ZmM0
Path Traversal in statics-serverEcosystems: npm
Packages: statics-server
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
High
Ecosystems: npm
Packages: kind-of
Source: GitHub Advisory Database
Blast Radius: 47.5
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZjOGYtcXBoZy1xamdw
Validation Bypass in kind-ofEcosystems: npm
Packages: kind-of
Source: GitHub Advisory Database
Blast Radius: 47.5
Published: about 4 years ago
Moderate
Ecosystems: npm
Packages: next
Source: GitHub Advisory Database
Blast Radius: 24.4
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZxNzctN3A3ci04M3Jq
Directory Traversal in Next.jsEcosystems: npm
Packages: next
Source: GitHub Advisory Database
Blast Radius: 24.4
Published: about 4 years ago
High
Ecosystems: npm
Packages: @metamask/eth-ledger-bridge-keyring, eth-ledger-bridge-keyring
Source: GitHub Advisory Database
Blast Radius: 16.5
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZnNDQtZnc2NC1jcGp4
Incorrect Account Used for SigningEcosystems: npm
Packages: @metamask/eth-ledger-bridge-keyring, eth-ledger-bridge-keyring
Source: GitHub Advisory Database
Blast Radius: 16.5
Published: about 4 years ago
Low
Ecosystems: npm
Packages: dojox
Source: GitHub Advisory Database
Blast Radius: 22.2
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNodzUtcTg1NS1nNmN3
Prototype Pollution in DojoxEcosystems: npm
Packages: dojox
Source: GitHub Advisory Database
Blast Radius: 22.2
Published: about 4 years ago
High
Ecosystems: npm
Packages: dojo
Source: GitHub Advisory Database
Blast Radius: 25.3
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWp4ZmgtOHdndi12ZnIy
Prototype pollution in dojoEcosystems: npm
Packages: dojo
Source: GitHub Advisory Database
Blast Radius: 25.3
Published: about 4 years ago
High
Ecosystems: npm
Packages: vp-toolkit
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA5NHctNDJnMy1mN2g0
Holder can (re)create authentic credentials after receiving a credential in vp-toolkitEcosystems: npm
Packages: vp-toolkit
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
High
Ecosystems: npm
Packages: vp-toolkit
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZmNXgtdzl3Zy1oMjc1
Holder can generate proof of ownership for credentials it does not control in vp-toolkitEcosystems: npm
Packages: vp-toolkit
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
High
Ecosystems: npm
Packages: parse-server
Source: GitHub Advisory Database
Blast Radius: 23.7
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg0bWYtNzVoZi02N3c0
Information disclosure in parse-serverEcosystems: npm
Packages: parse-server
Source: GitHub Advisory Database
Blast Radius: 23.7
Published: about 4 years ago
High
Ecosystems: npm
Packages: discord-markdown
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlyMjctOTk0Yy00eGNo
discord-html not escaping HTML code blocks when lacking a language identifierEcosystems: npm
Packages: discord-markdown
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
Moderate
Ecosystems: rubygems, npm
Packages: user_agent_parser, uap-core
Source: GitHub Advisory Database
Blast Radius: 23.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNtY3gteGhyOC0zdzlw
Denial of Service in uap-core when processing crafted User-Agent stringsEcosystems: rubygems, npm
Packages: user_agent_parser, uap-core
Source: GitHub Advisory Database
Blast Radius: 23.0
Published: about 4 years ago
High
Ecosystems: npm
Packages: codecov
Source: GitHub Advisory Database
Blast Radius: 45.2
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVxODgtY2pmcS1nMm1o
codecov NPM module allows remote attackers to execute arbitrary commandsEcosystems: npm
Packages: codecov
Source: GitHub Advisory Database
Blast Radius: 45.2
Published: about 4 years ago
High
Ecosystems: npm
Packages: taffydb, taffy
Source: GitHub Advisory Database
Blast Radius: 35.1
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW14aHAtNzlxaC1tY3g2
TaffyDB can allow access to any data items in the DBEcosystems: npm
Packages: taffydb, taffy
Source: GitHub Advisory Database
Blast Radius: 35.1
Published: about 4 years ago
High
Ecosystems: npm
Packages: yarn
Source: GitHub Advisory Database
Blast Radius: 37.9
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV4ZjQtZjJmcS1mNjlq
Yarn Improper link resolution before file access (Link Following)Ecosystems: npm
Packages: yarn
Source: GitHub Advisory Database
Blast Radius: 37.9
Published: about 4 years ago
Critical
Ecosystems: npm
Packages: aws-lambda
Source: GitHub Advisory Database
Blast Radius: 38.1
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTkzNHgtNzJ4aC01aHJn
OS command injection in aws-lambdaEcosystems: npm
Packages: aws-lambda
Source: GitHub Advisory Database
Blast Radius: 38.1
Published: about 4 years ago
Critical
Ecosystems: npm
Packages: git-diff-apply
Source: GitHub Advisory Database
Blast Radius: 24.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg0Y20tdjZqcC1nam1y
OS command injection in git-diff-applyEcosystems: npm
Packages: git-diff-apply
Source: GitHub Advisory Database
Blast Radius: 24.0
Published: about 4 years ago
Critical
Ecosystems: npm
Packages: node-df
Source: GitHub Advisory Database
Blast Radius: 19.2
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdwN20tbXJ2Zi01OTlj
Command Injection in node-dfEcosystems: npm
Packages: node-df
Source: GitHub Advisory Database
Blast Radius: 19.2
Published: about 4 years ago
Moderate
Ecosystems: npm
Packages: angular
Source: GitHub Advisory Database
Blast Radius: 29.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI1ZngtOHI3My12ODZj
AngularJS Cross-site Scripting due to failure to sanitize `xlink.href` attributesEcosystems: npm
Packages: angular
Source: GitHub Advisory Database
Blast Radius: 29.0
Published: about 4 years ago
Moderate
Ecosystems: npm
Packages: dojox
Source: GitHub Advisory Database
Blast Radius: 17.6
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBnOTctd3c3aC01bWpy
XSS in dojox due to insufficient escape in dojox.xmpp.util.xmlEncodeEcosystems: npm
Packages: dojox
Source: GitHub Advisory Database
Blast Radius: 17.6
Published: about 4 years ago
Moderate
Ecosystems: npm
Packages: auth0-lock
Source: GitHub Advisory Database
Blast Radius: 18.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXcycGYtZzZyOC1wZzIy
auth0-lock vulnerable to XSS via unsanitized placeholder propertyEcosystems: npm
Packages: auth0-lock
Source: GitHub Advisory Database
Blast Radius: 18.6
Published: over 4 years ago
High
Ecosystems: npm
Packages: @ensdomains/ens
Source: GitHub Advisory Database
Blast Radius: 38.4
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThmOWYtcGM1di05cjVo
Malicious takeover of previously owned ENS namesEcosystems: npm
Packages: @ensdomains/ens
Source: GitHub Advisory Database
Blast Radius: 38.4
Published: over 4 years ago
High
Ecosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI3Z20tZ2hyOS00djk1
Cross-site scripting vulnerability in TinyMCEEcosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: node-red
Source: GitHub Advisory Database
Blast Radius: 15.9
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTh3NjUteGpjNS05dzc5
Cross-Site Scripting in node-redEcosystems: npm
Packages: node-red
Source: GitHub Advisory Database
Blast Radius: 15.9
Published: over 4 years ago
High
Ecosystems: npm
Packages: angular-expressions
Source: GitHub Advisory Database
Blast Radius: 25.5
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh4aG0tOTZwcC0ybTQz
Remote Code Execution in Angular ExpressionsEcosystems: npm
Packages: angular-expressions
Source: GitHub Advisory Database
Blast Radius: 25.5
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: cookie-signature
Source: GitHub Advisory Database
Blast Radius: 29.1
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTkydm0td2ZtNS1teHZ2
cookie-signature Timing AttackEcosystems: npm
Packages: cookie-signature
Source: GitHub Advisory Database
Blast Radius: 29.1
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: mongo-express
Source: GitHub Advisory Database
Blast Radius: 21.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg0N2otaGM2eC1oM3Fx
Remote Code Execution Vulnerability in NPM mongo-expressEcosystems: npm
Packages: mongo-express
Source: GitHub Advisory Database
Blast Radius: 21.8
Published: over 4 years ago
Critical
Ecosystems: npm, rubygems
Packages: handlebars, bootstrap-wysihtml5-rails
Source: GitHub Advisory Database
Blast Radius: 87.7
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc0NTctNnE2eC1jZ3A5
Prototype Pollution in handlebarsEcosystems: npm, rubygems
Packages: handlebars, bootstrap-wysihtml5-rails
Source: GitHub Advisory Database
Blast Radius: 87.7
Published: over 4 years ago
High
Ecosystems: npm
Packages: lodahs
Source: GitHub Advisory Database
Blast Radius: 4.2
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhtNnEtcjJqYy1jcHFo
lodahs is malwareEcosystems: npm
Packages: lodahs
Source: GitHub Advisory Database
Blast Radius: 4.2
Published: over 4 years ago
High
Ecosystems: npm
Packages: npm
Source: GitHub Advisory Database
Blast Radius: 39.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQzMjgtOGhnZi03d2py
npm Vulnerable to Global node_modules Binary OverwriteEcosystems: npm
Packages: npm
Source: GitHub Advisory Database
Blast Radius: 39.6
Published: over 4 years ago
High
Ecosystems: npm
Packages: npm
Source: GitHub Advisory Database
Blast Radius: 39.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg4cWMtcnJjdy00cjQ2
npm symlink reference outside of node_modulesEcosystems: npm
Packages: npm
Source: GitHub Advisory Database
Blast Radius: 39.6
Published: over 4 years ago
High
Ecosystems: npm
Packages: npm
Source: GitHub Advisory Database
Blast Radius: 39.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW02Y3gtZzZxbS1wMmN4
Arbitrary File Write in npmEcosystems: npm
Packages: npm
Source: GitHub Advisory Database
Blast Radius: 39.6
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: safer-eval
Source: GitHub Advisory Database
Blast Radius: 41.7
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY2M3gteGM5ai1oaHZx
Sandbox Breakout / Arbitrary Code Execution in safer-evalEcosystems: npm
Packages: safer-eval
Source: GitHub Advisory Database
Blast Radius: 41.7
Published: over 4 years ago
Low
Ecosystems: npm
Packages: serialize-to-js
Source: GitHub Advisory Database
Blast Radius: 14.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNmanEtOTN4ai0zZjNm
Cross-Site Scripting in serialize-to-jsEcosystems: npm
Packages: serialize-to-js
Source: GitHub Advisory Database
Blast Radius: 14.8
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: serialize-javascript
Source: GitHub Advisory Database
Blast Radius: 25.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg5cnYtam1tZi00cGd4
Cross-Site Scripting in serialize-javascriptEcosystems: npm
Packages: serialize-javascript
Source: GitHub Advisory Database
Blast Radius: 25.6
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: jpv
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJoNDYtM2ZnYy1tdnJm
Validation bypass is possible in Json Pattern ValidatorEcosystems: npm
Packages: jpv
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: strapi
Source: GitHub Advisory Database
Blast Radius: 35.5
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4YzItbWozOS1xNTk5
Strapi allows unauthenticated attacker to reset admin password without valid reset tokenEcosystems: npm
Packages: strapi
Source: GitHub Advisory Database
Blast Radius: 35.5
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: pomelo
Source: GitHub Advisory Database
Blast Radius: 15.2
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR4NnYtcndoNC01NWp3
Pomelo allows external control of critical state dataEcosystems: npm
Packages: pomelo
Source: GitHub Advisory Database
Blast Radius: 15.2
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: iobroker.web
Source: GitHub Advisory Database
Blast Radius: 4.3
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZyamMtNHB3ci0zdnA3
Cross-Site Scripting in iobroker.webEcosystems: npm
Packages: iobroker.web
Source: GitHub Advisory Database
Blast Radius: 4.3
Published: over 4 years ago
High
Ecosystems: npm
Packages: iobroker.js-controller
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNtY2gtMjk2ai13ZnZ3
Arbitrary File Write in iobroker.js-controllerEcosystems: npm
Packages: iobroker.js-controller
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: over 4 years ago
High
Ecosystems: npm, rubygems
Packages: chartkick
Source: GitHub Advisory Database
Blast Radius: 52.1
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVwbTgtNDkyYy05MnA1
Prototype Pollution in chartkickEcosystems: npm, rubygems
Packages: chartkick
Source: GitHub Advisory Database
Blast Radius: 52.1
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: pannellum
Source: GitHub Advisory Database
Blast Radius: 9.3
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW01MngtMjlwcS13M3Z2
Pannellum Cross-Site Scripting due to data not being sanitized for URIs or vbscriptEcosystems: npm
Packages: pannellum
Source: GitHub Advisory Database
Blast Radius: 9.3
Published: over 4 years ago
High
Ecosystems: npm
Packages: vant
Source: GitHub Advisory Database
Blast Radius: 37.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl4cjgtOGhtYy0zODlm
Cross-Site Scripting in vantEcosystems: npm
Packages: vant
Source: GitHub Advisory Database
Blast Radius: 37.8
Published: over 4 years ago
High
Ecosystems: npm
Packages: angular
Source: GitHub Advisory Database
Blast Radius: 35.7
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg5bXEtNHg0Ny01djgz
Prototype Pollution in angularEcosystems: npm
Packages: angular
Source: GitHub Advisory Database
Blast Radius: 35.7
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: slpjs
Source: GitHub Advisory Database
Blast Radius: 10.3
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQyNWMtY2NmMy0zanJy
Critical severity vulnerability that affects slpjsEcosystems: npm
Packages: slpjs
Source: GitHub Advisory Database
Blast Radius: 10.3
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: slp-validate
Source: GitHub Advisory Database
Blast Radius: 5.4
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdteDYtdnhjZi1jM2dy
Validation Bypass in slp-validateEcosystems: npm
Packages: slp-validate
Source: GitHub Advisory Database
Blast Radius: 5.4
Published: over 4 years ago
High
Ecosystems: npm
Packages: @cubejs-backend/api-gateway
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRqNngtdzQyNi02cmM2
Default Express middleware security check is ignored in productionEcosystems: npm
Packages: @cubejs-backend/api-gateway
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Blast Radius: 51.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI1OTgtMmY1OS1ybWhx
SQL Injection in sequelizeEcosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Blast Radius: 51.8
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Blast Radius: 51.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo5eHAtOTJ2Yy01NTlq
SQL Injection in sequelizeEcosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Blast Radius: 51.8
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Blast Radius: 51.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW05anctMjM3ci1ndmZ2
SQL Injection in sequelizeEcosystems: npm
Packages: sequelize
Source: GitHub Advisory Database
Blast Radius: 51.8
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: node-red-dashboard
Source: GitHub Advisory Database
Blast Radius: 13.7
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhnNTktbTd3eC04NTNx
Cross-site Scripting in node-red-dashboardEcosystems: npm
Packages: node-red-dashboard
Source: GitHub Advisory Database
Blast Radius: 13.7
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: mongoose
Source: GitHub Advisory Database
Blast Radius: 53.9
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg2ODctdnY5ai1oZ3Bo
Improper Input Validation in Automattic MongooseEcosystems: npm
Packages: mongoose
Source: GitHub Advisory Database
Blast Radius: 53.9
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: realms-shim
Source: GitHub Advisory Database
Blast Radius: 17.6
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdjZzgtcHE5di14OThx
Sandbox Breakout in realms-shimEcosystems: npm
Packages: realms-shim
Source: GitHub Advisory Database
Blast Radius: 17.6
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: safer-eval
Source: GitHub Advisory Database
Blast Radius: 42.5
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXIzeDQtd3I0aC1wdzMz
Sandbox Breakout / Arbitrary Code Execution in safer-evalEcosystems: npm
Packages: safer-eval
Source: GitHub Advisory Database
Blast Radius: 42.5
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: knex
Source: GitHub Advisory Database
Blast Radius: 48.8
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU4djQtcXd4NS03ZjU5
SQL Injection in knexEcosystems: npm
Packages: knex
Source: GitHub Advisory Database
Blast Radius: 48.8
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: renovate
Source: GitHub Advisory Database
Blast Radius: 13.2
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY3eDMtN2h3Ny1wY2pn
Renovate vulnerable to leakage of temporary repository tokens into Pull Request commentsEcosystems: npm
Packages: renovate
Source: GitHub Advisory Database
Blast Radius: 13.2
Published: over 4 years ago
Critical
Ecosystems: npm
Packages: safer-eval
Source: GitHub Advisory Database
Blast Radius: 42.5
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhnY2gtamptci1ncDd3
Sandbox Breakout / Arbitrary Code Execution in safer-evalEcosystems: npm
Packages: safer-eval
Source: GitHub Advisory Database
Blast Radius: 42.5
Published: over 4 years ago
High
Ecosystems: npm
Packages: csv-parse
Source: GitHub Advisory Database
Blast Radius: 39.7
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU4MmYtcDRwZy14Yzc0
Regular Expression Denial of Service in csv-parseEcosystems: npm
Packages: csv-parse
Source: GitHub Advisory Database
Blast Radius: 39.7
Published: over 4 years ago
Statistics
Advisories: 18,372
Packages: 8,294
Repositories: 1,394
Ecosystems: 12
Packages: 8,294
Repositories: 1,394
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
parse-server
29
electron
26
@openzeppelin/contracts-upgradeable
21
@openzeppelin/contracts
20
directus
16
sequelize
16
ghost
14
tinymce
14
swagger-ui
14
next
13
joplin
13
strapi
13
ckeditor4
13
vm2
12
undici
12
handlebars
11
nodebb
11
angular
11
marked
11
@evershop/evershop
9
serve
9
tinymce/tinymce
9
TinyMCE
9
jquery
9
next-auth
9
org.webjars.npm:jquery
9
jquery-rails
9
matrix-js-sdk
8
tar
8
node-forge
8
systeminformation
8
steal
8
npm
8
jQuery
8
@strapi/strapi
8
bootstrap
8
validator
8
urijs
8
express-cart
8
editor.md
8
jsrsasign
8
url-parse
8
jquery-ui-rails
7
org.webjars.npm:jquery-ui
7
jQuery.UI.Combined
7
shescape
7
sanitize-html
7
matrix-appservice-irc
7
hapi
7
jquery-ui
7
nocodb
7
lodash
7
uptime-kuma
7
total.js
7
matrix-react-sdk
7
hermes-engine
7
snyk-broker
7
parse-url
6
safe-eval
6
rsshub
6
aaptjs
6
ua-parser-js
5
rendertron
5
vditor
5
keystone
5
sweetalert2
5
prismjs
5
dojo
5
openpgp
5
ejs
5
yarn
5
mongoose
5
public
5
xlsx
5
total4
5
vite
5
lodash-es
5
@strapi/plugin-users-permissions
5
mongo-express
4
vega
4
valine
4
glance
4
moment
4
apostrophe
4
dompurify
4
safer-eval
4
@keystone-6/core
4
@backstage/plugin-scaffolder-backend
4
meshcentral
4
simple-markdown
4
axios
4
hummus
4
muhammara
4
remarkable
4
katex
4
jsonwebtoken
4
qs
4
follow-redirects
4
ws
4
engine.io
4
materialize-css
4
convert-svg-core
4
apollo-server-core
4
realms-shim
4
fastify
4
ecstatic
4
auth0-lock
4
auth0-js
4
simple-git
4
mysql2
4
awsiotsdk
4
aws-iot-device-sdk-v2
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
generator-jhipster
4
mermaid
4
@strapi/utils
3
typeorm
3
keycloak-connect
3
xmldom
3
locutus
3
m-server
3
apollo-server
3
@cubejs-backend/api-gateway
3
code-server
3
@sequelize/core
3
nodemailer
3
mysql
3
postcss
3
wrangler
3
node-opcua
3
slp-validate
3
feathers-sequelize
3
jspdf
3
dns-sync
3
org.webjars.npm:xlsx
3
node-red-dashboard
3
mathjs
3
grunt
3
passport-wsfed-saml2
3
codecov
3
jointjs
3
node-jose
3
node-ipc
3
js-yaml
3
loader-utils
3
@backstage/techdocs-common
3
jquery-validation
3
n8n
3
object-path
3
protobufjs
3
http-live-simulator
3
notevil
3
ses
3
uap-core
3
socket.io-parser
3
froala-editor
3
docsify
3
tough-cookie
3
raneto
3
jose-node-cjs-runtime
3
jose-node-esm-runtime
3
ids-enterprise
3
@materializecss/materialize
3
libxmljs
3
sails
3
parsel
3
@uppy/companion
3
@ckeditor/ckeditor5-markdown-gfm
3
nadesiko3
3
convict
3
bootstrap
3
dojox
3
blamer
3
simplehttpserver
3
buttle
3
slpjs
3
@commercial/subtext
3
serialize-to-js
3
lodash.defaultsdeep
3
browserify-shim
3
fast-xml-parser
3
socket.io-file
3
@vrite/sdk
3
jose
3
snyk
3
connect
3
mixme
3
@soketi/soketi
3
json-ptr
3
localhost-now
3
openmct
3
highcharts
3
@sveltejs/kit
3
fuxa-server
3
ftp-srv
3
xdLocalStorage
3
bin-links
3
node-fetch
3
@apollo/server
3
subtext
3
Filter by Repository
https://github.com/parse-community/parse-server
29
https://github.com/electron/electron
25
https://github.com/strapi/strapi
21
https://github.com/OpenZeppelin/openzeppelin-contracts
20
https://github.com/sequelize/sequelize
16
https://github.com/directus/directus
15
https://github.com/tinymce/tinymce
14
https://github.com/swagger-api/swagger-ui
13
https://github.com/nodejs/undici
12
https://github.com/TryGhost/Ghost
12
https://github.com/backstage/backstage
12
https://github.com/laurent22/joplin
12
https://github.com/ckeditor/ckeditor4
12
https://github.com/patriksimek/vm2
12
https://github.com/jquery/jquery
11
https://github.com/NodeBB/NodeBB
11
https://github.com/nextauthjs/next-auth
10
https://github.com/keystonejs/keystone
10
https://github.com/evershopcommerce/evershop
9
https://github.com/vercel/next.js
9
https://github.com/pandao/editor.md
8
https://github.com/digitalbazaar/forge
8
https://github.com/sebhildebrandt/systeminformation
8
https://github.com/matrix-org/matrix-js-sdk
8
https://github.com/apollographql/apollo-server
8
https://github.com/stealjs/steal
8
https://github.com/kjur/jsrsasign
8
https://github.com/nocodb/nocodb
7
https://github.com/unshiftio/url-parse
7
https://github.com/ericcornelissen/shescape
7
https://github.com/louislam/uptime-kuma
7
https://github.com/twbs/bootstrap
7
https://github.com/matrix-org/matrix-appservice-irc
7
https://github.com/matrix-org/matrix-react-sdk
7
https://github.com/lodash/lodash
7
https://github.com/npm/node-tar
6
https://github.com/totaljs/framework
6
https://github.com/eclipse-theia/theia
6
https://github.com/DIYgod/RSSHub
6
https://github.com/facebook/hermes
6
https://github.com/jquery/jquery-ui
6
https://github.com/ionicabizau/parse-url
6
https://github.com/panva/jose
6
https://github.com/shenzhim/aaptjs
6
https://github.com/BlackFan/client-side-prototype-pollution
5
https://github.com/vitejs/vite
5
https://github.com/sweetalert2/sweetalert2
5
https://github.com/openpgpjs/openpgpjs
5
https://github.com/gatsbyjs/gatsby
5
https://github.com/faisalman/ua-parser-js
5
https://github.com/markedjs/marked
5
https://github.com/npm/cli
5
https://github.com/apostrophecms/sanitize-html
5
https://github.com/hacksparrow/safe-eval
5
https://github.com/handlebars-lang/handlebars.js
5
https://github.com/GoogleChrome/rendertron
5
https://github.com/vega/vega
5
https://github.com/ofirdagan/cross-domain-local-storage
4
https://github.com/angular/angular.js
4
https://github.com/cloudflare/workers-sdk
4
https://github.com/sidorares/node-mysql2
4
https://github.com/npm/npm
4
https://github.com/steveukx/git-js
4
https://github.com/socketio/engine.io
4
https://github.com/KaTeX/KaTeX
4
https://github.com/axios/axios
4
https://github.com/PrismJS/prism
4
https://github.com/xCss/Valine
4
https://github.com/mrvautin/expressCart
4
https://github.com/auth0/node-jsonwebtoken
4
https://github.com/follow-redirects/follow-redirects
4
https://github.com/balderdashy/sails
4
https://github.com/Dogfalo/materialize
4
https://github.com/aws/aws-iot-device-sdk-java-v2
4
https://github.com/auth0/lock
4
https://github.com/jhipster/generator-jhipster
4
https://github.com/yarnpkg/yarn
4
https://github.com/Ylianst/MeshCentral
4
https://github.com/jonschlinkert/remarkable
4
https://github.com/medialize/URI.js
4
https://github.com/medialize/uri.js
4
https://github.com/mde/ejs
4
https://github.com/fastify/fastify
4
https://github.com/hapijs/hapi
4
https://github.com/node-opcua/node-opcua
3
https://github.com/hapijs/subtext
3
https://github.com/transloadit/uppy
3
https://github.com/nodemailer/nodemailer
3
https://github.com/node-fetch/node-fetch
3
https://github.com/facebook/react
3
https://github.com/infor-design/enterprise-ng
3
https://github.com/highcharts/highcharts
3
https://github.com/nodejs/llhttp
3
https://github.com/sveltejs/kit
3
https://github.com/immerjs/immer
3
https://github.com/beerpwn/CVE
3
https://github.com/thlorenz/browserify-shim
3
https://github.com/kujirahand/nadesiko3
3
https://github.com/libxmljs/libxmljs
3
https://github.com/RIAEvangelist/node-ipc
3
https://github.com/renovatebot/renovate
3
https://github.com/moment/moment
3
https://github.com/docsifyjs/docsify
3
https://github.com/mongodb/js-bson
3
https://github.com/dojo/dojo
3
https://github.com/dojo/dojox
3
https://github.com/mongo-express/mongo-express
3
https://github.com/mozilla/node-convict
3
https://github.com/dwisiswant0/advisory
3
https://github.com/postcss/postcss
3
https://github.com/MrRio/jsPDF
3
https://github.com/OpenZeppelin/openzeppelin-contracts-upgradeable
3
https://github.com/n8n-io/n8n
3
https://github.com/nasa/openmct
3
https://github.com/neocotic/convert-svg
3
https://github.com/soketi/soketi
3
https://github.com/socketio/socket.io-parser
3
https://github.com/manuelstofer/json-pointer
3
https://github.com/skoranga/node-dns-sync
3
https://github.com/Marak/colors.js
3
https://github.com/chjj/marked
3
https://github.com/cisco/node-jose
3
https://github.com/ckeditor/ckeditor5
3
https://github.com/mariocasciaro/object-path
3
https://github.com/simpleledger/slpjs
3
https://github.com/clientIO/joint
3
https://github.com/gruntjs/grunt
3
https://github.com/feathersjs-ecosystem/feathers-sequelize
3
https://github.com/cure53/DOMPurify
3
https://github.com/salesforce/tough-cookie
3
https://github.com/mermaid-js/mermaid
3
https://github.com/NaturalIntelligence/fast-xml-parser
3
https://github.com/zeit/next.js
3
https://github.com/jquery-validation/jquery-validation
3
https://github.com/websockets/ws
3
https://github.com/jfhbrook/node-ecstatic
3
https://github.com/apostrophecms/apostrophe
3
https://github.com/webpack/loader-utils
3
https://github.com/auth0/passport-wsfed-saml2
3
https://github.com/jarofghosts/glance
3
https://github.com/adaltas/node-mixme
3
https://github.com/ua-parser/uap-core
3
https://github.com/vriteio/vrite
3
https://github.com/josdejong/mathjs
3
https://github.com/zestedesavoir/zmarkdown
3
https://github.com/vanessa219/vditor
3
https://github.com/Automattic/mongoose
3
https://github.com/vendure-ecommerce/vendure
3
https://github.com/xmldom/xmldom
3
https://github.com/typeorm/typeorm
3
https://github.com/YMFE/yapi
3
https://github.com/matrix-org/matrix-appservice-bridge
2
https://github.com/shelljs/shelljs
2
https://github.com/mathjax/MathJax
2
https://github.com/jsuites/jsuites
2
https://github.com/codecov/codecov-node
2
https://github.com/cloudhead/node-static
2
https://github.com/commenthol/safer-eval
2
https://github.com/commenthol/serialize-to-js
2
https://github.com/senchalabs/connect
2
https://github.com/semantic-release/semantic-release
2
https://github.com/vvakame/fs-git
2
https://github.com/peerigon/angular-expressions
2
https://github.com/ahdinosaur/set-in
2
https://github.com/peterbraden/node-opencv
2
https://github.com/josdejong/jsoneditor
2
https://github.com/mysqljs/mysql
2
https://github.com/cronvel/tree-kit
2
https://github.com/snyk/cli
2
https://github.com/karma-runner/karma
2
https://github.com/Finastra/ssr-pages
2
https://github.com/jonschlinkert/mixin-deep
2
https://github.com/manvel-khnkoyan/jpv
2
https://github.com/jwadhams/json-logic-js
2
https://github.com/justmoon/node-bignum
2
https://github.com/chocobozzz/peertube
2
https://github.com/chriso/validator.js
2
https://github.com/sindresorhus/semver-regex
2
https://github.com/christian-bromann/rgb2hex
2
https://github.com/sindresorhus/is-svg
2
https://github.com/yahoo/serialize-javascript
2
https://github.com/aFarkas/lazysizes
2
https://github.com/jonschlinkert/set-value
2
https://github.com/simpleledger/slp-validate.js
2
https://github.com/julianhille/MuhammaraJS
2
https://github.com/markdown-it/markdown-it
2
https://github.com/simonh1000/angular-http-server
2
https://github.com/marudor/libxmljs2
2
https://github.com/vivaxy/here
2
https://github.com/endojs/endo
2
https://github.com/Agoric/realms-shim
2
https://github.com/payloadcms/payload
2
https://github.com/guardian/html-janitor
2
https://github.com/jameswlane/status-board
2
https://github.com/amitmerchant1990/electron-markdownify
2
https://github.com/froala/wysiwyg-editor
2
https://github.com/mozilla/nunjucks
2
https://github.com/dfinity/agent-js
2
https://github.com/mithunsatheesh/node-rules
2