4 matches found
siddheshtea (=1.1.6) potentially affected by unknown CVE via ruji-32 (=1.0.0)
ruji-32 NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on ruji-32 and may be impacted: - siddheshtea =1.1.6 Source cves: unknown CVE Source advisory: OSV:MAL-2025-165258...
CVE-2024-3566
A command inject vulnerability allows an attacker to perform command injection on Windows applications that indirectly depend on the CreateProcess function when the specific conditions are satisfied...
matrix-synapse-testutils (>=1.66.0.0 <=1.92.2.0) potentially affected by CVE-2023-41335 via matrix-synapse (>=1.66.0 <=1.92.2)
matrix-synapse PYPI version =1.66.0, =1.66.0.0, =1.92.2.0 Source cves: CVE-2023-41335 Source advisory: OSV:PYSEC-2023-185...
@accordproject/cicero-cli (>=0.3.4 <=0.24.1-20231019073743), @accordproject/cicero-common (>=0.3.4 <=0.3.12) +450 more potentially affected by CVE-2022-1233 via urijs (>=1.16.1 <=1.19.10)
urijs NPM version =1.16.1, =0.3.4, =0.3.4, =0.3.4, =0.3.4, =0.4.5-20180705184508, =0.11.2-20190326183124, =0.10.2-20190213145246, =0.0.5, =0.71.8-20190915045234, =0.80.2, =0.80.4-20191003231621, =0.61.2-20190916200303, =0.90.1-20200514190616, =0.6.0-alpha.0, =0.6.0, =0.91.1-20200514222339 and mor...