Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

npm

@backstage/backend-defaults

npm

Backend defaults used by Backstage backend apps

View on github.com · View on npmjs.org

Security Advisories for @backstage/backend-defaults in npm

Low
4 months ago

Backstage has a Possible SSRF when reading from allowed URL's in `backend.reading.allow` GSA_kwCzR0hTQS1xMng1LTR4angtYzZwOc4ABRXZ

npm @backstage/backend-defaults
High
4 months ago

Backstage has a Possible Symlink Path Traversal in Scaffolder Actions GSA_kwCzR0hTQS1ycTZxLXdyMnEtN3BncM4ABRXX

npm @backstage/plugin-scaffolder-node, @backstage/plugin-scaffolder-backend, @backstage/backend-defaults
Potential
Moderate
almost 4 years ago

Path traversal for local publishers in TechDocs backend GSA_kwCzR0hTQS00anFjLWp2aDItcHhnOc4AArtF

npm @backstage/techdocs-common, @backstage/plugin-techdocs-node
Potential
High
over 4 years ago

Path Traversal in @backstage/plugin-scaffolder-backend GSA_kwCzR0hTQS1tZzNtLWY0NzUtMjhods0YQg

npm @backstage/plugin-scaffolder-backend

Filter by Severity

High 2 Moderate 1 Low 1