4 matches found
bit-docs-generate-html (>=0.0.1 <=0.7.1), bit-docs-generate-searchmap (>=0.0.1-0 <=0.2.0-pre.3) +5 more potentially affected by CVE-2021-23429 via transpile (>=0.9.7 <=2.4.0-pre.0)
transpile NPM version =0.9.7, =0.0.1, =0.0.1-0, =0.5.0, =5.0.0, =0.16.6, =1.4.0-pre.1 Source cves: CVE-2021-23429 Source advisory: OSV:GHSA-7XRJ-F5RP-J55H...
CVE-2021-23429
CVE-2021-23429 affects the npm package transpile. Concrete details in connected docs show a DoS due to insufficient input sanitization/whitelisting and improper exception handling in the .to() function, with the DoS capable of causing crashes or service unavailability (availability impact HIGH). ...
CVE-2021-23429 Denial of Service (DoS)
All versions of package transpile are vulnerable to Denial of Service DoS due to a lack of input sanitization or whitelisting, coupled with improper exception handling in the .to function...
@tucows/donejs-carousel-plugin (>=0.1.0 <=3.3.0), @tucows/tucows-carousel-plugin (>=0.1.0 <=0.2.0) +22 more potentially affected by CVE-2021-23429 via transpile (>=0.9.7 <=2.8.0)
transpile NPM version =0.9.7, =0.1.0, =0.1.0, =0.0.1, =0.0.1-0, =1.0.0, =0.5.0, =0.3.0-beta.0, =5.0.0, =0.0.1, =0.0.5 and more Source cves: CVE-2021-23429 Source advisory: SNYK:JS-TRANSPILE-1290774...