Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

npm

devalue

npm

Gets the job done when JSON.stringify can't

View on github.com · View on npmjs.org

Security Advisories for devalue in npm

High
19 days ago

Svelte devalue: DoS via sparse array deserialization GSA_kwCzR0hTQS03N3ZnLTk0cm0taHgzcM4ABW43

npm devalue
Low
3 months ago

Sveltejs devalue's `devalue.parse` and `devalue.unflatten` emit objects with `__proto__` own properties GSA_kwCzR0hTQS1td3Y5LWdwNWgtZnJyNM4ABTjX

npm devalue
Moderate
3 months ago

devalue has prototype pollution in devalue.parse and devalue.unflatten GSA_kwCzR0hTQS1jZnc1LTJ2eGgtaHI4NM4ABTif

npm devalue
Low
3 months ago

devalue affected by CPU and memory amplification from sparse arrays GSA_kwCzR0hTQS0zM2hxLWZ2d3ItNTZwbc4ABSml

npm devalue
Low
3 months ago

devalue `uneval`ed code can create objects with polluted prototypes when `eval`ed GSA_kwCzR0hTQS04cW0zLTc0Nngtcjc0cs4ABSmk

npm devalue
High
5 months ago

devalue vulnerable to denial of service due to memory/CPU exhaustion in devalue.parse GSA_kwCzR0hTQS1nMnBnLTY0MzgtandwZs4ABRJZ

npm devalue
High
5 months ago

Devalue is vulnerable to denial of service due to memory exhaustion in devalue.parse GSA_kwCzR0hTQS12dzVwLThjcTgtbTdtds4ABRHx

npm devalue
High
9 months ago

devalue prototype pollution vulnerability GSA_kwCzR0hTQS12ajU0LTcyZjMtcDVqds4ABLc2

npm devalue

Filter by Severity

High 4 Low 3 Moderate 1