Privilege Escalation

@oneuptime/common is vulnerable to privilege escalation. The vulnerability is due to improper validation of the isMasterAdmin parameter in the login response, which allows an attacker to manipulate its value and gain unauthorized access to the admin dashboard...

SQL Injection

Overview @oneuptime/common is a The OneUptime Common UI Library is a collection of shared components, utilities that are used across the OneUptime platform. It is designed to be easy to install and use, and to be extensible. This library is built with React and TypeScript. It includes c Affected...

Insertion of Sensitive Information into Log File

Overview @oneuptime/common is a The OneUptime Common UI Library is a collection of shared components, utilities that are used across the OneUptime platform. It is designed to be easy to install and use, and to be extensible. This library is built with React and TypeScript. It includes c Affected...

SQL Injection

Overview @oneuptime/common is a The OneUptime Common UI Library is a collection of shared components, utilities that are used across the OneUptime platform. It is designed to be easy to install and use, and to be extensible. This library is built with React and TypeScript. It includes c Affected...

@oneuptime/cli (>=10.0.10 <=10.0.20) potentially affected by CVE-2026-30959 via @oneuptime/common (>=10.0.10 <=10.0.20)

@oneuptime/common NPM version =10.0.10, =10.0.10, =10.0.20 Source cves: CVE-2026-30959 Source advisory: OSV:GHSA-CW6X-MW64-Q6PV...

Exposed Dangerous Method or Function

Overview @oneuptime/common is a The OneUptime Common UI Library is a collection of shared components, utilities that are used across the OneUptime platform. It is designed to be easy to install and use, and to be extensible. This library is built with React and TypeScript. It includes c Affected...

Missing Authorization

Overview @oneuptime/common is a The OneUptime Common UI Library is a collection of shared components, utilities that are used across the OneUptime platform. It is designed to be easy to install and use, and to be extensible. This library is built with React and TypeScript. It includes c Affected...

@oneuptime/cli (>=10.0.10 <=10.0.20) potentially affected by CVE-2026-30956 via @oneuptime/common (>=10.0.10 <=10.0.20)

@oneuptime/common NPM version =10.0.10, =10.0.10, =10.0.20 Source cves: CVE-2026-30956 Source advisory: OSV:GHSA-R5V6-2599-9G3M...

Missing Authorization

Overview @oneuptime/common is a The OneUptime Common UI Library is a collection of shared components, utilities that are used across the OneUptime platform. It is designed to be easy to install and use, and to be extensible. This library is built with React and TypeScript. It includes c Affected...

@oneuptime/cli (>=10.0.10 <=10.0.18) potentially affected by CVE-2026-30920 via @oneuptime/common (>=10.0.10 <=10.0.18)

@oneuptime/common NPM version =10.0.10, =10.0.10, =10.0.18 Source cves: CVE-2026-30920 Source advisory: OSV:GHSA-656W-6F6C-M9R6...

Exposed Dangerous Method or Function

Overview @oneuptime/common is a The OneUptime Common UI Library is a collection of shared components, utilities that are used across the OneUptime platform. It is designed to be easy to install and use, and to be extensible. This library is built with React and TypeScript. It includes c Affected...

@oneuptime/cli (>=10.0.10 <=10.0.17) potentially affected by CVE-2026-30887 via @oneuptime/common (>=10.0.10 <=10.0.17)

@oneuptime/common NPM version =10.0.10, =10.0.10, =10.0.17 Source cves: CVE-2026-30887 Source advisory: OSV:GHSA-H343-GG57-2Q67...

@oneuptime/cli (>=10.0.10 <=10.0.11) potentially affected by CVE-2026-28787 via @oneuptime/common (>=10.0.10 <=10.0.11)

@oneuptime/common NPM version =10.0.10, =10.0.10, =10.0.11 Source cves: CVE-2026-28787 Source advisory: OSV:GHSA-GJJC-PCWP-C74M...

Arbitrary Code Injection

Overview @oneuptime/common is a The OneUptime Common UI Library is a collection of shared components, utilities that are used across the OneUptime platform. It is designed to be easy to install and use, and to be extensible. This library is built with React and TypeScript. It includes c Affected...

Incorrect Authorization

Overview @oneuptime/common is a The OneUptime Common UI Library is a collection of shared components, utilities that are used across the OneUptime platform. It is designed to be easy to install and use, and to be extensible. This library is built with React and TypeScript. It includes c Affected...

Incorrect Authorization

Overview @oneuptime/common is a The OneUptime Common UI Library is a collection of shared components, utilities that are used across the OneUptime platform. It is designed to be easy to install and use, and to be extensible. This library is built with React and TypeScript. It includes c Affected...