Lucene search
+L

4 matches found

vulnersOsv
vulnersOsv
added 2021/09/02 5:10 p.m.39 views

bit-docs-generate-html (>=0.0.1 <=0.7.1), bit-docs-generate-searchmap (>=0.0.1-0 <=0.2.0-pre.3) +5 more potentially affected by CVE-2021-23429 via transpile (>=0.9.7 <=2.4.0-pre.0)

transpile NPM version =0.9.7, =0.0.1, =0.0.1-0, =0.5.0, =5.0.0, =0.16.6, =1.4.0-pre.1 Source cves: CVE-2021-23429 Source advisory: OSV:GHSA-7XRJ-F5RP-J55H...

7.5CVSS7.1AI score0.01016EPSS
Exploits1
CVE
CVE
added 2021/08/24 7:45 a.m.44 views

CVE-2021-23429

CVE-2021-23429 affects the npm package transpile. Concrete details in connected docs show a DoS due to insufficient input sanitization/whitelisting and improper exception handling in the .to() function, with the DoS capable of causing crashes or service unavailability (availability impact HIGH). ...

7.5CVSS6.8AI score0.01016EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/08/24 7:45 a.m.16 views

CVE-2021-23429 Denial of Service (DoS)

All versions of package transpile are vulnerable to Denial of Service DoS due to a lack of input sanitization or whitelisting, coupled with improper exception handling in the .to function...

6.5CVSS7.7AI score0.01016EPSS
Exploits1References2
vulnersOsv
vulnersOsv
added 2021/05/11 4:8 p.m.4 views

@tucows/donejs-carousel-plugin (>=0.1.0 <=3.3.0), @tucows/tucows-carousel-plugin (>=0.1.0 <=0.2.0) +22 more potentially affected by CVE-2021-23429 via transpile (>=0.9.7 <=2.8.0)

transpile NPM version =0.9.7, =0.1.0, =0.1.0, =0.0.1, =0.0.1-0, =1.0.0, =0.5.0, =0.3.0-beta.0, =5.0.0, =0.0.1, =0.0.5 and more Source cves: CVE-2021-23429 Source advisory: SNYK:JS-TRANSPILE-1290774...

7.5CVSS7.1AI score0.01016EPSS
Exploits1
Rows per page
Query Builder