Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
npm Security Advisories
Browse all Security Advisories for npm
Loading...
High
Ecosystems: npm
Packages: cached-path-relative
Source: GitHub Advisory Database
Blast Radius: 38.2
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhjOXctNHA4Ny1qNTQ5
Prototype Pollution in cached-path-relativeEcosystems: npm
Packages: cached-path-relative
Source: GitHub Advisory Database
Blast Radius: 38.2
Published: almost 6 years ago
High
Ecosystems: npm
Packages: socket.io
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF2MnYtbTU5Zi12NWZ3
Insecure randomness in socket.ioEcosystems: npm
Packages: socket.io
Source: GitHub Advisory Database
Blast Radius: 46.0
Published: almost 6 years ago
Moderate
Ecosystems: npm
Packages: shout
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI2cTctZzU3di1teGNw
HTML Injection in shoutEcosystems: npm
Packages: shout
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
High
Ecosystems: npm
Packages: auth0-js
Source: GitHub Advisory Database
Blast Radius: 36.8
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXd2MjYtcmo4Yy00cjMz
Cross-Site Request Forgery (CSRF) in Auth0Ecosystems: npm
Packages: auth0-js
Source: GitHub Advisory Database
Blast Radius: 36.8
Published: almost 6 years ago
Moderate
Ecosystems: npm
Packages: nunjucks
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY3cGgtcDVydi1waHcy
Cross-Site Scripting in nunjucksEcosystems: npm
Packages: nunjucks
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Moderate
Ecosystems: npm
Packages: validator
Source: GitHub Advisory Database
Blast Radius: 34.7
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc5bXgtODh3Ny04Zjdx
XSS Filter Bypass via Encoded URL in validatorEcosystems: npm
Packages: validator
Source: GitHub Advisory Database
Blast Radius: 34.7
Published: almost 6 years ago
Moderate
Ecosystems: npm
Packages: takeapeek
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTIzeHAtajczNy0yODJ2
Path Traversal in takeapeekEcosystems: npm
Packages: takeapeek
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Critical
Ecosystems: npm
Packages: jwt-simple
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZncngtdzZyZy04ZnFm
Forgeable Public/Private Tokens in jwt-simpleEcosystems: npm
Packages: jwt-simple
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Moderate
Ecosystems: npm
Packages: tianma-static
Source: GitHub Advisory Database
Blast Radius: 1.8
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpoZ3AtaHZqNi14MnAy
Stored Cross-Site Scripting in tianma-staticEcosystems: npm
Packages: tianma-static
Source: GitHub Advisory Database
Blast Radius: 1.8
Published: almost 6 years ago
High
Ecosystems: npm
Packages: knightjs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNodm0taGdwdy1yeDRq
Path Traversal in knightjsEcosystems: npm
Packages: knightjs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Moderate
Ecosystems: npm
Packages: libnmap
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdnMnctNnIyNS0yajdw
Command Injection in libnmapEcosystems: npm
Packages: libnmap
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
Critical
Ecosystems: npm
Packages: apex-publish-static-files
Source: GitHub Advisory Database
Blast Radius: 7.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlqbTMtNTgzNS01Mzdt
Command Injection in apex-publish-static-filesEcosystems: npm
Packages: apex-publish-static-files
Source: GitHub Advisory Database
Blast Radius: 7.0
Published: almost 6 years ago
High
Ecosystems: npm
Packages: node-tkinter
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW13Y3YtbTU0OS01Y204
node-tkinter is malwareEcosystems: npm
Packages: node-tkinter
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 6 years ago
High
Ecosystems: npm
Packages: tkinter
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ3ZzYtM2Ztai13NHd4
tkinter is malwareEcosystems: npm
Packages: tkinter
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: almost 6 years ago
High
Ecosystems: npm
Packages: merge
Source: GitHub Advisory Database
Blast Radius: 43.0
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY5Y20tcW14NS1tOTho
Prototype Pollution in mergeEcosystems: npm
Packages: merge
Source: GitHub Advisory Database
Blast Radius: 43.0
Published: almost 6 years ago
High
Ecosystems: npm
Packages: parcel-bundler
Source: GitHub Advisory Database
Blast Radius: 35.9
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM3cTYtNTc2cS12Z3I3
Missing Origin Validation in parcel-bundlerEcosystems: npm
Packages: parcel-bundler
Source: GitHub Advisory Database
Blast Radius: 35.9
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: express
Source: GitHub Advisory Database
Blast Radius: 38.2
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdwdnItZzZnaC05bWMy
No Charset in Content-Type Header in expressEcosystems: npm
Packages: express
Source: GitHub Advisory Database
Blast Radius: 38.2
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: handlebars
Source: GitHub Advisory Database
Blast Radius: 37.2
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlwcmgtMjU3dy05Mjc3
Cross-Site Scripting in handlebarsEcosystems: npm
Packages: handlebars
Source: GitHub Advisory Database
Blast Radius: 37.2
Published: about 6 years ago
High
Ecosystems: npm
Packages: express-restify-mongoose
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNnangtbXdweC00N2p2
Private Data Disclosure in express-restify-mongooseEcosystems: npm
Packages: express-restify-mongoose
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: blueimp-file-upload
Source: GitHub Advisory Database
Blast Radius: 30.4
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRjajgtZzljcC12NXdy
Unrestricted Upload of File with Dangerous Type in blueimp-file-uploadEcosystems: npm
Packages: blueimp-file-upload
Source: GitHub Advisory Database
Blast Radius: 30.4
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: dojox
Source: GitHub Advisory Database
Blast Radius: 28.3
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg0Y20teDJxNS04MjI1
dojox vulnerable to unescaped string injectionEcosystems: npm
Packages: dojox
Source: GitHub Advisory Database
Blast Radius: 28.3
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: next
Source: GitHub Advisory Database
Blast Radius: 33.8
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF3OTYtbW0yZy1jOG03
Next.js has cross site scripting (XSS) vulnerability via the 404 or 500 /_error pageEcosystems: npm
Packages: next
Source: GitHub Advisory Database
Blast Radius: 33.8
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: tough-cookie
Source: GitHub Advisory Database
Blast Radius: 33.1
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFodjktNzI4ci02anFn
ReDoS via long string of semicolons in tough-cookieEcosystems: npm
Packages: tough-cookie
Source: GitHub Advisory Database
Blast Radius: 33.1
Published: about 6 years ago
High
Ecosystems: npm
Packages: mongose
Source: GitHub Advisory Database
Blast Radius: 21.7
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg5NGYtcnc0NC1xcnc1
mongose is malwareEcosystems: npm
Packages: mongose
Source: GitHub Advisory Database
Blast Radius: 21.7
Published: about 6 years ago
High
Ecosystems: npm
Packages: node-openssl
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo2OHItMjNoai14Zjlj
node-openssl is malwareEcosystems: npm
Packages: node-openssl
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: public
Source: GitHub Advisory Database
Blast Radius: 11.4
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThwNXAtZmY3eC1odzdx
Cross-Site Scripting in publicEcosystems: npm
Packages: public
Source: GitHub Advisory Database
Blast Radius: 11.4
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: memjs
Source: GitHub Advisory Database
Blast Radius: 25.9
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWN4OG0tOHhteC1xOHYz
Denial of Service in memjsEcosystems: npm
Packages: memjs
Source: GitHub Advisory Database
Blast Radius: 25.9
Published: about 6 years ago
High
Ecosystems: npm
Packages: hapi
Source: GitHub Advisory Database
Blast Radius: 33.9
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNxamctd2htbS04Z3Y2
Denial of Service via malformed accept-encoding header in hapiEcosystems: npm
Packages: hapi
Source: GitHub Advisory Database
Blast Radius: 33.9
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: randomatic
Source: GitHub Advisory Database
Blast Radius: 31.9
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZnMzMtZjI2Mi14anA0
Cryptographically Weak PRNG in randomaticEcosystems: npm
Packages: randomatic
Source: GitHub Advisory Database
Blast Radius: 31.9
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: atob
Source: GitHub Advisory Database
Blast Radius: 55.2
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTh3NGgtM2NtMy0ycG0y
Out-of-bounds Read in atobEcosystems: npm
Packages: atob
Source: GitHub Advisory Database
Blast Radius: 55.2
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: deep-extend
Source: GitHub Advisory Database
Blast Radius: 63.3
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhyMnYtMzk1Mi02MzNx
Prototype Pollution in deep-extendEcosystems: npm
Packages: deep-extend
Source: GitHub Advisory Database
Blast Radius: 63.3
Published: about 6 years ago
High
Ecosystems: npm
Packages: minimatch
Source: GitHub Advisory Database
Blast Radius: 47.6
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh4bTItcjM0Zi1xbWM1
Regular Expression Denial of Service in minimatchEcosystems: npm
Packages: minimatch
Source: GitHub Advisory Database
Blast Radius: 47.6
Published: about 6 years ago
High
Ecosystems: npm
Packages: qs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY5Y20tcDN3Ni14dnIz
Denial-of-Service Extended Event Loop Blocking in qsEcosystems: npm
Packages: qs
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: jsonwebtoken
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM3aHItajRtai1qMnc2
Verification Bypass in jsonwebtokenEcosystems: npm
Packages: jsonwebtoken
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: negotiator
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdtYzUtY2hocC1mbWMz
Regular Expression Denial of Service in negotiatorEcosystems: npm
Packages: negotiator
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: protobufjs
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc2MmYtYzJ3Zy1tOGM4
Denial of Service in protobufjsEcosystems: npm
Packages: protobufjs
Source: GitHub Advisory Database
Blast Radius: 30.7
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: merge-options
Source: GitHub Advisory Database
Blast Radius: 47.2
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF3OTMtNDVyMy1wNjZw
Prototype Pollution in merge-optionsEcosystems: npm
Packages: merge-options
Source: GitHub Advisory Database
Blast Radius: 47.2
Published: about 6 years ago
High
Ecosystems: npm
Packages: node-opensl
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTY0NngtbTM2My05cmg0
node-opensl is malwareEcosystems: npm
Packages: node-opensl
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: sexstatic
Source: GitHub Advisory Database
Blast Radius: 9.3
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFmaDItNmY3cS1ncjg2
Cross-Site Scripting in sexstaticEcosystems: npm
Packages: sexstatic
Source: GitHub Advisory Database
Blast Radius: 9.3
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: glance
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTczNzUtdmpyMi0zZzd3
Cross-Site Scripting in glanceEcosystems: npm
Packages: glance
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: augustine
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR3Y2gtZndteC1jZjQ3
Directory Traversal in augustineEcosystems: npm
Packages: augustine
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: node-bsdiff-android
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWMydnItMmM4OS1waDg4
Downloads Resources over HTTP in node-bsdiff-androidEcosystems: npm
Packages: node-bsdiff-android
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: apk-parser2
Source: GitHub Advisory Database
Blast Radius: 4.9
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh4aG0tM3ZqOS02Y3Fo
apk-parser2 downloads Resources over HTTPEcosystems: npm
Packages: apk-parser2
Source: GitHub Advisory Database
Blast Radius: 4.9
Published: about 6 years ago
High
Ecosystems: npm
Packages: buttle
Source: GitHub Advisory Database
Blast Radius: 14.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW04Y3ItcTkzNS04ajY3
Path Traversal in buttleEcosystems: npm
Packages: buttle
Source: GitHub Advisory Database
Blast Radius: 14.0
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: merge-object
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZwODItMmg5OS0zZnBw
Prototype Pollution in async merge-objectEcosystems: npm
Packages: merge-object
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: merge-recursive
Source: GitHub Advisory Database
Blast Radius: 27.6
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWN2eG0tZjI5NS14OTU3
Prototype Pollution in merge-recursiveEcosystems: npm
Packages: merge-recursive
Source: GitHub Advisory Database
Blast Radius: 27.6
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: html-pages
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZtODctNDZ2di1qcXJy
Path Traversal in html-pagesEcosystems: npm
Packages: html-pages
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: about 6 years ago
High
Ecosystems: npm
Packages: bson
Source: GitHub Advisory Database
Blast Radius: 44.2
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg0NjItcTd4Ny1nMng0
js-bson vulnerable to REDoSEcosystems: npm
Packages: bson
Source: GitHub Advisory Database
Blast Radius: 44.2
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: ps
Source: GitHub Advisory Database
Blast Radius: 18.6
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNmaGctOXg0NC03OGgy
ps Enables OS Command InjectionEcosystems: npm
Packages: ps
Source: GitHub Advisory Database
Blast Radius: 18.6
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: egg-scripts
Source: GitHub Advisory Database
Blast Radius: 32.3
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM5ajMtd3FwaC01eHg5
Command Injection in egg-scriptsEcosystems: npm
Packages: egg-scripts
Source: GitHub Advisory Database
Blast Radius: 32.3
Published: about 6 years ago
High
Ecosystems: npm
Packages: noderequest
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVjdjctcjQ4OC13YzV4
noderequest is malwareEcosystems: npm
Packages: noderequest
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
Moderate
Ecosystems: nuget, npm, rubygems, packagist, maven
Packages: bootstrap.sass, bootstrap-sass, bootstrap, twbs/bootstrap, org.webjars:bootstrap
Source: GitHub Advisory Database
Blast Radius: 150.3
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdtdnItNXgyZy13ZmM4
Bootstrap Cross-site Scripting vulnerabilityEcosystems: nuget, npm, rubygems, packagist, maven
Packages: bootstrap.sass, bootstrap-sass, bootstrap, twbs/bootstrap, org.webjars:bootstrap
Source: GitHub Advisory Database
Blast Radius: 150.3
Published: about 6 years ago
Moderate
Ecosystems: maven, nuget, packagist, rubygems, npm
Packages: org.webjars:bootstrap, bootstrap.sass, bootstrap, twbs/bootstrap, typo3/cms, typo3/cms-core
Source: GitHub Advisory Database
Blast Radius: 146.1
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBqN20tZzUzbS03NjM4
Bootstrap Cross-site Scripting vulnerabilityEcosystems: maven, nuget, packagist, rubygems, npm
Packages: org.webjars:bootstrap, bootstrap.sass, bootstrap, twbs/bootstrap, typo3/cms, typo3/cms-core
Source: GitHub Advisory Database
Blast Radius: 146.1
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: exceljs
Source: GitHub Advisory Database
Blast Radius: 22.2
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJqMmotOHJydi0yNjRn
Cross-Site Scripting in exceljsEcosystems: npm
Packages: exceljs
Source: GitHub Advisory Database
Blast Radius: 22.2
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: cryptiles
Source: GitHub Advisory Database
Blast Radius: 56.5
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJxOGctNXBjNS13cmhy
Insufficient Entropy in cryptilesEcosystems: npm
Packages: cryptiles
Source: GitHub Advisory Database
Blast Radius: 56.5
Published: about 6 years ago
High
Ecosystems: npm
Packages: query-mysql
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTltcjgtNnBycC1nd2p2
SQL Injection in query-mysqlEcosystems: npm
Packages: query-mysql
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: msrcrypto
Source: GitHub Advisory Database
Blast Radius: 28.1
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFnM2ctMm1naC0zM2o4
Sensitive Data Exposure in msrcryptoEcosystems: npm
Packages: msrcrypto
Source: GitHub Advisory Database
Blast Radius: 28.1
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: macaddress
Source: GitHub Advisory Database
Blast Radius: 51.7
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBwNTctbXFtaC00NGg3
Command Injection in macaddressEcosystems: npm
Packages: macaddress
Source: GitHub Advisory Database
Blast Radius: 51.7
Published: about 6 years ago
High
Ecosystems: npm
Packages: simplehttpserver
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdwdmotcTdmcC1qY2No
simplehttpserver allows directory traversal and file listingEcosystems: npm
Packages: simplehttpserver
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: editor.md
Source: GitHub Advisory Database
Blast Radius: 12.7
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZqY2otNWcyci12eHFj
Pandao editor.md vulnerable to XSS in IMG attributesEcosystems: npm
Packages: editor.md
Source: GitHub Advisory Database
Blast Radius: 12.7
Published: about 6 years ago
High
Ecosystems: npm
Packages: mosca
Source: GitHub Advisory Database
Blast Radius: 21.8
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdxZzctdnJqNy12ODJo
Mosca REDoS VulnerabilityEcosystems: npm
Packages: mosca
Source: GitHub Advisory Database
Blast Radius: 21.8
Published: about 6 years ago
High
Ecosystems: npm
Packages: babelcli
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTcyaHYtcnA0cS1xN2Yz
babelcli is malwareEcosystems: npm
Packages: babelcli
Source: GitHub Advisory Database
Blast Radius: 6.8
Published: about 6 years ago
High
Ecosystems: npm
Packages: ffmepg
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTN3eHEtN3I4bS1xcG1n
ffmepg is malwareEcosystems: npm
Packages: ffmepg
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: about 6 years ago
High
Ecosystems: npm
Packages: node-opencv
Source: GitHub Advisory Database
Blast Radius: 6.3
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR4MzctNXJoMi1ocDhj
node-opencv is malwareEcosystems: npm
Packages: node-opencv
Source: GitHub Advisory Database
Blast Radius: 6.3
Published: about 6 years ago
High
Ecosystems: npm
Packages: opencv.js
Source: GitHub Advisory Database
Blast Radius: 14.7
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVoeHctcjg0Ny1xZndw
opencv.js is malwareEcosystems: npm
Packages: opencv.js
Source: GitHub Advisory Database
Blast Radius: 14.7
Published: about 6 years ago
High
Ecosystems: npm
Packages: openssl.js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTIyZ3EteDZwZy03NTJq
openssl.js is malwareEcosystems: npm
Packages: openssl.js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: nodemailer.js
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo4NjYtOHZ4eC0yN2h4
nodemailer.js is malwareEcosystems: npm
Packages: nodemailer.js
Source: GitHub Advisory Database
Blast Radius: 5.2
Published: about 6 years ago
High
Ecosystems: npm
Packages: nodemailer-js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhoNTYtM2Y1dy05aDI1
nodemailer-js is malwareEcosystems: npm
Packages: nodemailer-js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: nodecaffe
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJ3cHEtdnZ3Ni02N3dy
nodecaffe is malwareEcosystems: npm
Packages: nodecaffe
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: nodeffmpeg
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdxaDQtMjdjYy1qOGYy
nodeffmpeg is malwareEcosystems: npm
Packages: nodeffmpeg
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: easyquick
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThoNTUtNDlqbS03Mzl4
Directory Traversal in easyquickEcosystems: npm
Packages: easyquick
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: smb
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZ2NnEtOWNmdy00Yzgz
smb is malwareEcosystems: npm
Packages: smb
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: proxy.js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFqNzMtdjY4OC13cXhm
Hijacked Environment Variables in proxy.jsEcosystems: npm
Packages: proxy.js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: http-proxy.js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRnNTQtOTV4di1mMzUz
http-proxy.js is malwareEcosystems: npm
Packages: http-proxy.js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: crossenv
Source: GitHub Advisory Database
Blast Radius: 14.1
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWMybTQtdzVobS12cWp3
crossenv is malwareEcosystems: npm
Packages: crossenv
Source: GitHub Advisory Database
Blast Radius: 14.1
Published: about 6 years ago
High
Ecosystems: npm
Packages: timespan
Source: GitHub Advisory Database
Blast Radius: 35.2
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY1MjMtMmY1ai1nZmNn
Regular Expression Denial of Service in timespanEcosystems: npm
Packages: timespan
Source: GitHub Advisory Database
Blast Radius: 35.2
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: shadowsock
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM2dmMtY3c2Mi1mcXZy
Shadowsock is malwareEcosystems: npm
Packages: shadowsock
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: electron
Source: GitHub Advisory Database
Blast Radius: 40.3
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh2OWMtcXdxZy1xajN2
Electron webPreferences vulnerability can be used to perform remote code executionEcosystems: npm
Packages: electron
Source: GitHub Advisory Database
Blast Radius: 40.3
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: flintcms
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpocTMtNTd4aC02NjQz
Privilege Escalation due to Blind NoSQL Injection in flintcmsEcosystems: npm
Packages: flintcms
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: git-dummy-commit
Source: GitHub Advisory Database
Blast Radius: 19.2
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWgzYzIteDc3Yy03cHZy
Command Injection in git-dummy-commitEcosystems: npm
Packages: git-dummy-commit
Source: GitHub Advisory Database
Blast Radius: 19.2
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: cryo
Source: GitHub Advisory Database
Blast Radius: 13.2
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM4ZjUtZ2hjMi1mY212
Code Injection in cryoEcosystems: npm
Packages: cryo
Source: GitHub Advisory Database
Blast Radius: 13.2
Published: about 6 years ago
High
Ecosystems: npm
Packages: haxe3
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJyOWMtNDZ2My00M2Zj
Downloads Resources over HTTP in haxe3Ecosystems: npm
Packages: haxe3
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: fis-sass-all
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZjZnAtcHBxdy1tZjIz
fis-sass-all downloads Resources over HTTPEcosystems: npm
Packages: fis-sass-all
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: aedes
Source: GitHub Advisory Database
Blast Radius: 16.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRjbXgtaHJxOS1jMjNw
Improper Authorization in aedesEcosystems: npm
Packages: aedes
Source: GitHub Advisory Database
Blast Radius: 16.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: cmake
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRqNTktaGZ3Ni02dzdo
Downloads Resources over HTTP in cmakeEcosystems: npm
Packages: cmake
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: jstestdriver
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBoOHAtMmc5Ny05NjU0
Downloads Resources over HTTP in jstestdriverEcosystems: npm
Packages: jstestdriver
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: slimerjs-edge
Source: GitHub Advisory Database
Blast Radius: 7.7
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVyYzYtMnIzci1mdjc5
slimerjs-edge downloads Resources over HTTPEcosystems: npm
Packages: slimerjs-edge
Source: GitHub Advisory Database
Blast Radius: 7.7
Published: about 6 years ago
High
Ecosystems: npm
Packages: grunt-images
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg3cTMtNjd2Yy13dmNm
grunt-images downloads Resources over HTTPEcosystems: npm
Packages: grunt-images
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: resourcehacker
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA2NWgtMjMzYy1qeHZt
Downloads Resources over HTTP in resourcehackerEcosystems: npm
Packages: resourcehacker
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: marionette-socket-host
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTh3ZzktOTJmci02ajd2
marionette-socket-host downloads Resources over HTTPEcosystems: npm
Packages: marionette-socket-host
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
High
Ecosystems: npm
Packages: sshpk
Source: GitHub Advisory Database
Blast Radius: 27.1
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJtMzktNjJmbS1xOHIz
Regular Expression Denial of Service in sshpkEcosystems: npm
Packages: sshpk
Source: GitHub Advisory Database
Blast Radius: 27.1
Published: about 6 years ago
Critical
Ecosystems: npm
Packages: url-parse
Source: GitHub Advisory Database
Blast Radius: 64.1
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXB2NGMtcDJqNS0zOGo0
Open Redirect in url-parseEcosystems: npm
Packages: url-parse
Source: GitHub Advisory Database
Blast Radius: 64.1
Published: about 6 years ago
High
Ecosystems: npm
Packages: charset
Source: GitHub Advisory Database
Blast Radius: 27.6
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTljcDMtZmg1eC14ZmNq
Regular Expression Denial of Service in charsetEcosystems: npm
Packages: charset
Source: GitHub Advisory Database
Blast Radius: 27.6
Published: about 6 years ago
Low
Ecosystems: npm
Packages: debug
Source: GitHub Advisory Database
Blast Radius: 22.8
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd4cGotY3g3Zy04NThj
Regular Expression Denial of Service in debugEcosystems: npm
Packages: debug
Source: GitHub Advisory Database
Blast Radius: 22.8
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: superagent
Source: GitHub Advisory Database
Blast Radius: 33.2
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTgyMjUtNmN2ci04cHFw
superagent vulnerable to zip bomb attacksEcosystems: npm
Packages: superagent
Source: GitHub Advisory Database
Blast Radius: 33.2
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: metascraper
Source: GitHub Advisory Database
Blast Radius: 20.4
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThmNjQtcTdqYy1jY2dw
metascraper before v5.2.0 vulnerable to stored cross-site scriptingEcosystems: npm
Packages: metascraper
Source: GitHub Advisory Database
Blast Radius: 20.4
Published: about 6 years ago
High
Ecosystems: npm
Packages: discordi.js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZ2OW0tZjd3NC04ODlj
discordi.js is malwareEcosystems: npm
Packages: discordi.js
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: jquey
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZmanItbTd2Ni1mcGc5
jquey is malwareEcosystems: npm
Packages: jquey
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: desafio
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY0OTktanY0Ny05d3hm
Directory Traversal in desafioEcosystems: npm
Packages: desafio
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
Moderate
Ecosystems: npm
Packages: jikes
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNwcDItcTY2eC1mcTQ0
Directory Traversal in jikesEcosystems: npm
Packages: jikes
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 6 years ago
Statistics
Advisories: 20,468
Packages: 8,969
Repositories: 1,483
Ecosystems: 12
Packages: 8,969
Repositories: 1,483
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
parse-server
31
directus
26
electron
26
@openzeppelin/contracts-upgradeable
21
@openzeppelin/contracts
20
next
18
tinymce
16
sequelize
16
ckeditor4
15
ghost
15
swagger-ui
14
angular
13
undici
13
joplin
13
strapi
13
vm2
12
marked
11
tinymce/tinymce
11
TinyMCE
11
nodebb
11
handlebars
11
bootstrap
10
flowise
10
matrix-js-sdk
10
nocodb
10
@evershop/evershop
9
next-auth
9
@strapi/strapi
9
serve
9
bootstrap
9
matrix-react-sdk
9
bootstrap
9
twbs/bootstrap
9
org.webjars:bootstrap
9
steal
8
editor.md
8
systeminformation
8
url-parse
8
npm
8
node-forge
8
jquery
8
tar
8
org.webjars.npm:jquery
8
validator
8
express-cart
8
urijs
8
jquery-rails
8
jsrsasign
8
matrix-appservice-irc
8
snyk-broker
7
hermes-engine
7
jquery-ui
7
shescape
7
bootstrap.sass
7
total.js
7
jquery-ui-rails
7
uptime-kuma
7
org.webjars.npm:jquery-ui
7
bootstrap-sass
7
jQuery.UI.Combined
7
elliptic
7
sanitize-html
7
lunary
7
hapi
7
jQuery
7
vite
7
dompurify
7
lodash
7
safe-eval
6
bootstrap-sass
6
parse-url
6
@strapi/plugin-users-permissions
6
rsshub
6
aaptjs
6
@saltcorn/server
5
ejs
5
mysql2
5
openpgp
5
yarn
5
ws
5
mermaid
5
vditor
5
total4
5
prismjs
5
public
5
ua-parser-js
5
keystone
5
rendertron
5
mattermost-desktop
5
lodash-es
5
dojo
5
xlsx
5
mongoose
5
sweetalert2
5
axios
5
materialize-css
4
apollo-server-core
4
muhammara
4
awsiotsdk
4
hummus
4
fast-xml-parser
4
ecstatic
4
apostrophe
4
aws-iot-device-sdk-v2
4
vega
4
mongo-express
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
fastify
4
meshcentral
4
katex
4
simple-markdown
4
follow-redirects
4
engine.io
4
@keystone-6/core
4
@backstage/plugin-scaffolder-backend
4
hono
4
jsonwebtoken
4
realms-shim
4
safer-eval
4
valine
4
generator-jhipster
4
express
4
qs
4
simple-git
4
@lobehub/chat
4
remarkable
4
convert-svg-core
4
auth0-js
4
glance
4
moment
4
auth0-lock
4
@sequelize/core
3
renovate
3
fuxa-server
3
@ckeditor/ckeditor5-markdown-gfm
3
statics-server
3
jspdf
3
subtext
3
code-server
3
n8n
3
grunt
3
socket.io-parser
3
node-opcua
3
codecov
3
@hapi/subtext
3
bin-links
3
bson
3
highcharts
3
ids-enterprise
3
keycloak-connect
3
wrangler
3
buttle
3
json-pointer
3
ftp-srv
3
xdLocalStorage
3
slp-validate
3
tough-cookie
3
mysql
3
notevil
3
raneto
3
typeorm
3
@strapi/utils
3
loader-utils
3
@vrite/sdk
3
yapi-vendor
3
node-red-dashboard
3
passport-wsfed-saml2
3
@uppy/companion
3
agnai
3
@sveltejs/kit
3
@builder.io/qwik
3
xmldom
3
nuxt
3
@strapi/plugin-content-manager
3
@jmondi/url-to-png
3
@janhq/core
3
parsel
3
libxmljs
3
json-ptr
3
object-path
3
connect
3
node-jose
3
apollo-server
3
openmct
3
@apollo/server
3
serialize-to-js
3
llhttp
3
http-live-simulator
3
org.webjars.npm:xlsx
3
@cubejs-backend/api-gateway
3
node-ipc
3
slpjs
3
django-tinymce
3
@commercial/subtext
3
m-server
3
immer
3
stimulsoft-dashboards-js
3
@backstage/techdocs-common
3
localhost-now
3
browserify-shim
3
Filter by Repository
https://github.com/parse-community/parse-server
31
https://github.com/directus/directus
25
https://github.com/electron/electron
25
https://github.com/strapi/strapi
24
https://github.com/OpenZeppelin/openzeppelin-contracts
20
https://github.com/sequelize/sequelize
16
https://github.com/tinymce/tinymce
16
https://github.com/backstage/backstage
16
https://github.com/vercel/next.js
14
https://github.com/ckeditor/ckeditor4
14
https://github.com/TryGhost/Ghost
13
https://github.com/nodejs/undici
13
https://github.com/swagger-api/swagger-ui
13
https://github.com/patriksimek/vm2
12
https://github.com/laurent22/joplin
12
https://github.com/NodeBB/NodeBB
11
https://github.com/keystonejs/keystone
10
https://github.com/jquery/jquery
10
https://github.com/nocodb/nocodb
10
https://github.com/matrix-org/matrix-js-sdk
10
https://github.com/nextauthjs/next-auth
10
https://github.com/matrix-org/matrix-react-sdk
9
https://github.com/evershopcommerce/evershop
9
https://github.com/apollographql/apollo-server
8
https://github.com/kjur/jsrsasign
8
https://github.com/pandao/editor.md
8
https://github.com/FlowiseAI/Flowise
8
https://github.com/digitalbazaar/forge
8
https://github.com/stealjs/steal
8
https://github.com/sebhildebrandt/systeminformation
8
https://github.com/matrix-org/matrix-appservice-irc
8
https://github.com/cure53/DOMPurify
7
https://github.com/saltcorn/saltcorn
7
https://github.com/lodash/lodash
7
https://github.com/ericcornelissen/shescape
7
https://github.com/twbs/bootstrap
7
https://github.com/louislam/uptime-kuma
7
https://github.com/unshiftio/url-parse
7
https://github.com/indutny/elliptic
7
https://github.com/lunary-ai/lunary
7
https://github.com/vitejs/vite
7
https://github.com/npm/node-tar
6
https://github.com/DIYgod/RSSHub
6
https://github.com/ionicabizau/parse-url
6
https://github.com/facebook/hermes
6
https://github.com/shenzhim/aaptjs
6
https://github.com/totaljs/framework
6
https://github.com/jquery/jquery-ui
6
https://github.com/eclipse-theia/theia
6
https://github.com/panva/jose
6
https://github.com/axios/axios
5
https://github.com/npm/cli
5
https://github.com/BlackFan/client-side-prototype-pollution
5
https://github.com/sweetalert2/sweetalert2
5
https://github.com/gatsbyjs/gatsby
5
https://github.com/sidorares/node-mysql2
5
https://github.com/GoogleChrome/rendertron
5
https://github.com/hacksparrow/safe-eval
5
https://github.com/openpgpjs/openpgpjs
5
https://github.com/handlebars-lang/handlebars.js
5
https://github.com/apostrophecms/sanitize-html
5
https://github.com/markedjs/marked
5
https://github.com/faisalman/ua-parser-js
5
https://github.com/vega/vega
5
https://github.com/KaTeX/KaTeX
4
https://github.com/auth0/lock
4
https://github.com/auth0/node-jsonwebtoken
4
https://github.com/vendure-ecommerce/vendure
4
https://github.com/mrvautin/expressCart
4
https://github.com/aws/aws-iot-device-sdk-java-v2
4
https://github.com/ofirdagan/cross-domain-local-storage
4
https://github.com/PrismJS/prism
4
https://github.com/jhipster/generator-jhipster
4
https://github.com/Dogfalo/materialize
4
https://github.com/balderdashy/sails
4
https://github.com/honojs/hono
4
https://github.com/follow-redirects/follow-redirects
4
https://github.com/medialize/URI.js
4
https://github.com/medialize/uri.js
4
https://github.com/mde/ejs
4
https://github.com/steveukx/git-js
4
https://github.com/yarnpkg/yarn
4
https://github.com/hapijs/hapi
4
https://github.com/cloudflare/workers-sdk
4
https://github.com/lobehub/lobe-chat
4
https://github.com/ckeditor/ckeditor5
4
https://github.com/Ylianst/MeshCentral
4
https://github.com/socketio/engine.io
4
https://github.com/xCss/Valine
4
https://github.com/jonschlinkert/remarkable
4
https://github.com/npm/npm
4
https://github.com/angular/angular.js
4
https://github.com/websockets/ws
4
https://github.com/fastify/fastify
4
https://github.com/nuxt/nuxt
4
https://github.com/NaturalIntelligence/fast-xml-parser
4
https://github.com/expressjs/express
3
https://github.com/postcss/postcss
3
https://github.com/mariocasciaro/object-path
3
https://github.com/transloadit/uppy
3
https://github.com/actions/toolkit
3
https://github.com/Automattic/mongoose
3
https://github.com/nodejs/llhttp
3
https://github.com/auth0/passport-wsfed-saml2
3
https://github.com/webpack/loader-utils
3
https://github.com/mozilla/node-convict
3
https://github.com/facebook/react
3
https://github.com/HackAllSec/CVEs
3
https://github.com/node-fetch/node-fetch
3
https://github.com/soketi/soketi
3
https://github.com/mozilla/pdf.js
3
https://github.com/jarofghosts/glance
3
https://github.com/cisco/node-jose
3
https://github.com/salesforce/tough-cookie
3
https://github.com/node-opcua/node-opcua
3
https://github.com/zeit/next.js
3
https://github.com/thlorenz/browserify-shim
3
https://github.com/libxmljs/libxmljs
3
https://github.com/micromatch/braces
3
https://github.com/josdejong/mathjs
3
https://github.com/moment/moment
3
https://github.com/adaltas/node-mixme
3
https://github.com/clientIO/joint
3
https://github.com/docsifyjs/docsify
3
https://github.com/kujirahand/nadesiko3
3
https://github.com/mongodb/js-bson
3
https://github.com/highcharts/highcharts
3
https://github.com/renovatebot/renovate
3
https://github.com/YMFE/yapi
3
https://github.com/dojo/dojo
3
https://github.com/dojo/dojox
3
https://github.com/mongo-express/mongo-express
3
https://github.com/ag-grid/ag-grid
3
https://github.com/neocotic/convert-svg
3
https://github.com/zestedesavoir/zmarkdown
3
https://github.com/vanessa219/vditor
3
https://github.com/chjj/marked
3
https://github.com/koush/scrypted
3
https://github.com/infor-design/enterprise-ng
3
https://github.com/OpenZeppelin/openzeppelin-contracts-upgradeable
3
https://github.com/jasonraimondi/url-to-png
3
https://github.com/mermaid-js/mermaid
3
https://github.com/agnaistic/agnai
3
https://github.com/n8n-io/n8n
3
https://github.com/apostrophecms/apostrophe
3
https://github.com/skoranga/node-dns-sync
3
https://github.com/manuelstofer/json-pointer
3
https://github.com/simpleledger/slpjs
3
https://github.com/beerpwn/CVE
3
https://github.com/gruntjs/grunt
3
https://github.com/nasa/openmct
3
https://github.com/nodemailer/nodemailer
3
https://github.com/dwisiswant0/advisory
3
https://github.com/socketio/socket.io-parser
3
https://github.com/typeorm/typeorm
3
https://github.com/socketio/socket.io
3
https://github.com/immerjs/immer
3
https://github.com/ua-parser/uap-core
3
https://github.com/udecode/plate
3
https://github.com/hapijs/subtext
3
https://github.com/MrRio/jsPDF
3
https://github.com/RIAEvangelist/node-ipc
3
https://github.com/jquery-validation/jquery-validation
3
https://github.com/getsentry/sentry-javascript
3
https://github.com/Marak/colors.js
3
https://github.com/lukeed/dset
3
https://github.com/xmldom/xmldom
3
https://github.com/vriteio/vrite
3
https://github.com/jfhbrook/node-ecstatic
3
https://github.com/sveltejs/kit
3
https://github.com/feathersjs-ecosystem/feathers-sequelize
3
https://github.com/givanz/VvvebJs
2
https://github.com/node-red/node-red
2
https://github.com/commenthol/serialize-to-js
2
https://github.com/gilbitron/Raneto
2
https://github.com/gigafied/decal.js
2
https://github.com/rvagg/bl
2
https://github.com/cronvel/tree-kit
2
https://github.com/rs/node-netmask
2
https://github.com/cube-js/cube.js
2
https://github.com/curveball/a12n-server
2
https://github.com/RocketChat/Rocket.Chat
2
https://github.com/grpc/grpc-node
2
https://github.com/sindresorhus/is-svg
2
https://github.com/simpleledger/slp-validate.js
2
https://github.com/simonh1000/angular-http-server
2
https://github.com/manvel-khnkoyan/jpv
2
https://github.com/google/closure-library
2
https://github.com/chocobozzz/peertube
2
https://github.com/chriso/validator.js
2
https://github.com/nodeca/js-yaml
2
https://github.com/christian-bromann/rgb2hex
2
https://github.com/facebook/create-react-app
2
https://github.com/jcubic/jquery.terminal
2
https://github.com/shelljs/shelljs
2
https://github.com/markdown-it/markdown-it
2
https://github.com/expressjs/serve-static
2
https://github.com/senchalabs/connect
2
https://github.com/semantic-release/semantic-release
2