26517 matches found
openwebui-token-tracking (=0.1.7) potentially affected by CVE-2026-0765 via open-webui (=0.6.0)
open-webui PYPI version =0.6.0 is affected by a known vulnerability. The following packages have a transitive dependency on open-webui and may be impacted: - openwebui-token-tracking =0.1.7 Source cves: CVE-2026-0765 Source advisory: SNYK:PYTHON-OPENWEBUI-15092093...
ai.catboost:catboost-spark_2.11 (>=0.25-rc1 <=0.25-rc3), ai.catboost:catboost-spark_2.12 (>=0.25-rc1 <=0.25-rc3) +15043 more potentially affected by CVE-2025-12183 via org.lz4:lz4-java (>=1.4 <=1.8.0)
org.lz4:lz4-java MAVEN version =1.4, =0.25-rc1, =0.25-rc1, =0.25, =0.25, =0.25, =0.25, =1.0.1, =1.0.6, =1.0.6, =1.1, =1.1.1, =1.2, =1.2, =1.2.3, =1.2.3, =1.2.10 and more Source cves: CVE-2025-12183 Source advisory: OSV:GHSA-VQF4-7M7X-WGFC...
albibong (>=1.0.0 <=1.2.0), am-viewer (>=1.1.0 <=4.0.1) +70 more potentially affected by unknown CVE via scapy (>=2.2.0.dev0 <=2.6.1)
scapy PYPI version =2.2.0.dev0, =1.0.0, =1.1.0, =1.0.3, =1.2.0, =1.2.0, =0.0.1, =1.2.5, =1.0.8, =0.0.4, =0.1.8, =0.2.5, =0.1.3, =1.2.1b0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-CQ46-M9X9-J8W2...
2d-json-schema-editor-visual (>=1.0.2 <=1.0.7), 37sy-build (>=1.0.0 <=1.3.3) +3989 more potentially affected by CVE-2025-9288 via sha.js (>=2.1.1 <=2.4.11)
sha.js NPM version =2.1.1, =1.0.2, =1.0.0, =1.0.0, =1.0.1, =1.0.0, =0.1.6, =1.0.0, =0.0.4, =0.1.0, =7.13.4, =18.0.0, =18.1.2 - @ajhyndman/relay =1.6.0-1 and more Source cves: CVE-2025-9288 Source advisory: SNYK:JS-SHAJS-12089400...
23march (=1.0.0), @castyiglitchxz/alert-box-package (>=1.0.0 <=1.2.5) +30 more potentially affected by unknown CVE via node.js (=0.0.1-security)
node.js NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on node.js and may be impacted: - 23march =1.0.0 - @castyiglitchxz/alert-box-package =1.0.0, =1.0.0, =1.0.0, =0.0.1, =1.0.1, =1.0.5, =1.0.0, =1.2.5, =1.2.1, =0.0.1, =2.2.0...
bismagul_project08_quiz (>=1.0.0 <=1.0.1), cli-advanture-game (=1.0.0) +5 more potentially affected by unknown CVE via calk (=0.0.1-security)
calk NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on calk and may be impacted: - bismagulproject08quiz =1.0.0, =1.0.0, =1.0.0, =1.0.1 - todoterminallist =1.0.0 - zhs-cli-advanture-game =1.0.0 Source cves: unknown CVE Source...
com.ericsson.bss.cassandra.ecaudit:ecaudit_c4.1 (>=3.0.0 <=3.1.0), com.instaclustr:cassandra-ldap-4.1.0 (=1.0.0) +20 more potentially affected by CVE-2024-27137 via org.apache.cassandra:cassandra-all (>=4.1.0 <=4.1.6)
org.apache.cassandra:cassandra-all MAVEN version =4.1.0, =3.0.0, =4.1.0, =4.1.0, =4.1.0, =2.1.0-ALPHA-8, =0.13.0, =2.6.0, =2.10.0, =2.17.0 and more Source cves: CVE-2024-27137 Source advisory: OSV:GHSA-RGFX-7P65-3FF4...
at.stderr:archetype-simple (=1.4.1), at.stderr:maven-parent (=2.3.1) +1 more potentially affected by CVE-2024-47197 via org.apache.maven.plugins:maven-archetype-plugin (=3.2.1)
org.apache.maven.plugins:maven-archetype-plugin MAVEN version =3.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.maven.plugins:maven-archetype-plugin and may be impacted: - at.stderr:archetype-simple =1.4.1 - at.stderr:maven-parent =2.3....
@alfresco/adf-core (>=4.12.0-35591 <=6.0.0-A.1-github-run-3758819331), @bigbossstudio/strapi-plugin-editorjs (>=0.0.1 <=0.0.4) +44 more potentially affected by CVE-2022-23474 via @editorjs/editorjs (>=2.15.1 <=2.25.0)
@editorjs/editorjs NPM version =2.15.1, =4.12.0-35591, =0.0.1, =1.1.3, =1.1.7, =1.0.2, =0.0.0-ee-vpcs.549378cf03, =0.0.0-ee-vpcs.549378cf03, =0.0.0-ee-vpcs.549378cf03, =0.0.0-ee-vpcs.549378cf03, =0.0.0-ee-vpcs.549378cf03, =0.0.0-unstable.1e66d121db, =0.0.0-ee-vpcs.549378cf03,...
tauri-async-handler (>=0.1.0 <=0.4.0), tauri-react (=0.1.0) potentially affected by CVE-2024-35222 via tauri (>=0.10.0 <=0.9.2)
tauri CARGO version =0.10.0, =0.1.0, =0.4.0 - tauri-react =0.1.0 Source cves: CVE-2024-35222 Source advisory: OSV:GHSA-57FM-592M-34R7...
6brain (>=0.0.1 <=0.0.2), 6sense (>=0.0.1 <=1.1.5) +1841 more potentially affected by unknown CVE via moment-timezone (>=0.1.0 <=0.5.34)
moment-timezone NPM version =0.1.0, =0.0.1, =0.0.1, =4.11.0, =4.13.7-rc4, =1.70.1, =1.16.0, =1.16.0, =1.16.1, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =2.4.4 and more Source cves: unknown CVE Source advisory: OSV:GHSA-56X4-J7P9-FCF9...
a10-octavia (>=1.0.0 <=2.2.0) potentially affected by CVE-2021-3563 via keystone (>=15.0.1 <=18.0.0)
keystone PYPI version =15.0.1, =1.0.0, =2.2.0 Source cves: CVE-2021-3563 Source advisory: OSV:GHSA-CC99-WHM5-MMQ3...
@across-ui/example (>=0.0.1-alpha.4 <=0.0.4-alpha.5), @agreejs/api (>=0.0.1 <=3.2.14) +797 more potentially affected by CVE-2021-23337 via lodash-es (>=3.0.0 <=4.17.20)
lodash-es NPM version =3.0.0, =0.0.1-alpha.4, =0.0.1, =0.0.2, =3.2.1, =3.2.1, =3.2.1, =0.0.1, =3.2.1, =3.2.1, =0.1.0, =0.3.14, =0.4.63, =0.4.64 and more Source cves: CVE-2021-23337 Source advisory: OSV:GHSA-35JH-R3H4-6JHM...
safe-transfers (=0.1.0), sn_transfers (=0.2.0) potentially affected by unknown CVE via safe-nd (>=0.11.7 <=0.9.0)
safe-nd CARGO version =0.11.7, =0.9.0 is affected by a known vulnerability. The following packages have a transitive dependency on safe-nd and may be impacted: - safe-transfers =0.1.0 - sntransfers =0.2.0 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2020-0063...
@anacoelhovicente/primecore (=0.3.4-beta.1-webhook), @axonish/core (>=0.2.0 <=0.3.0) +29 more potentially affected by unknown CVE via type-graphql (>=0.12.3 <=0.17.5)
type-graphql NPM version =0.12.3, =0.2.0, =0.0.2, =1.0.0, =1.0.0, =0.0.5, =0.0.1, =0.0.0-4d6c2e0, =0.1.0, =0.3.0-alpha.1, =0.0.1, =5.2.0, =0.0.1, =0.0.2 and more Source cves: unknown CVE Source advisory: OSV:GHSA-XF64-2F9P-6PQQ...
h2 (=1.0.0) potentially affected by CVE-2016-6581 via hpack (=1.1.0)
hpack PYPI version =1.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on hpack and may be impacted: - h2 =1.0.0 Source cves: CVE-2016-6581 Source advisory: OSV:GHSA-FFQ8-576R-V26G...
be.fluid-it.reactive-microservice.bundle:bootique-vertx (=0.1-8), be.fluid-it.reactive-microservice.bundle:reactive-microservice-bundle-core (=0.1-8) +762 more potentially affected by CVE-2018-12544 via io.vertx:vertx-core (>=3.5.0 <=3.5.3.CR1)
io.vertx:vertx-core MAVEN version =3.5.0, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.5 and more Source cves: CVE-2018-12544 Source advisory: OSV:GHSA-QH3M-QW6V-QVHG...
@redhat-cloud-services/frontend-components-inventory-compliance (>=0.0.1 <=3.4.4), @redhat-cloud-services/frontend-components-inventory-insights (>=0.0.1 <=3.2.3) +2 more potentially affected by unknown CVE via @redhat-cloud-services/frontend-components-remediations (=4.9.1)
@redhat-cloud-services/frontend-components-remediations NPM version =4.9.1 is affected by a known vulnerability. The following packages have a transitive dependency on @redhat-cloud-services/frontend-components-remediations and may be impacted: -...
@antv/f6 (>=0.0.2 <=0.0.19), @antv/f6-element (=0.0.1) +4 more potentially affected by unknown CVE via @antv/f6-core (=0.0.2)
@antv/f6-core NPM version =0.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/f6-core and may be impacted: - @antv/f6 =0.0.2, =1.0.0, =1.1.2-5.2, =2.0.1, =1.0.0, =1.0.2 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVF6CORE-16754479...
@bassist/eslint-config (>=0.3.0 <=0.5.0), @bassist/oxc-integration (>=0.1.0 <=0.2.0) +10 more potentially affected by unknown CVE via @lint-md/parser (>=0.0.11 <=0.0.9)
@lint-md/parser NPM version =0.0.11, =0.3.0, =0.1.0, =2.0.0, =2.0.0, =2.1.4, =2.1.4, =4.1.0, =1.1.0, =1.19.7, =1.1.0, =1.0.0, =1.3.4, =1.3.5 Source cves: unknown CVE Source advisory: SNYK:JS-LINTMDPARSER-16755088...
@antv/gpt-vis-ssr (>=0.3.4 <=0.3.8), @tiangong-ai/vis-server (>=0.0.1 <=0.0.5) potentially affected by unknown CVE via @antv/s2-ssr (>=0.0.2 <=0.1.1)
@antv/s2-ssr NPM version =0.0.2, =0.3.4, =0.0.1, =0.0.5 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVS2SSR-16754942...
@antv/g2-extension-3d (>=0.2.0 <=1.0.0), @antv/g6-extension-3d (>=0.1.0 <=0.1.23) potentially affected by unknown CVE via @antv/g-plugin-3d (>=2.0.42 <=2.1.1)
@antv/g-plugin-3d NPM version =2.0.42, =0.2.0, =0.1.0, =0.1.23 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVGPLUGIN3D-16754819...
@bassist/eslint-config (>=0.3.0 <=0.5.0), @bassist/oxc-integration (>=0.1.0 <=0.2.0) +10 more potentially affected by unknown CVE via @lint-md/parser (>=0.0.11 <=0.0.9)
@lint-md/parser NPM version =0.0.11, =0.3.0, =0.1.0, =2.0.0, =2.0.0, =2.1.4, =2.1.4, =4.1.0, =1.1.0, =1.19.7, =1.1.0, =1.0.0, =1.3.4, =1.3.5 Source cves: unknown CVE Source advisory: SNYK:JS-LINTMDPARSER-16754919...
@jsr2npm/yao__gpt-vis-mcp (>=0.0.1 <=0.1.1), @ly_agent/ly-vis-mcp-server (=0.1.14) +3 more potentially affected by unknown CVE via @antv/gpt-vis-ssr (>=0.1.10 <=0.3.8)
@antv/gpt-vis-ssr NPM version =0.1.10, =0.0.1, =0.0.1, =1.0.0, =1.0.0, =1.0.2 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVGPTVISSSR-16754871...
hubzoid (>=0.2.2 <=0.6.0), openwebui-token-tracking (>=0.1.7 <=0.1.10) +1 more potentially affected by unknown CVE via open-webui (>=0.6.0 <=0.8.8)
open-webui PYPI version =0.6.0, =0.2.2, =0.1.7, =0.1.0, =0.1.5 Source cves: unknown CVE Source advisory: OSV:GHSA-3WGJ-C2HG-VM6Q...
11x-wagtail-blog (>=0.0.0 <=0.2.0), adede (=4.1.0) +202 more potentially affected by CVE-2026-44201 via wagtail (>=1.0.0 <=7.0.0)
wagtail PYPI version =1.0.0, =0.0.0, =0.57.1, =0.1.0a0.dev0, =4.1.0, =4.3.0, =2.28.0, =0.5.0, =0.3.1, =6.3.8 and more Source cves: CVE-2026-44201 Source advisory: OSV:PYSEC-2026-150...
@bentwnghk/chat (>=1.91.2 <=1.91.6), @lobehub/chat (>=1.49.5 <=1.49.12) +2 more potentially affected by CVE-2026-42349 via @clerk/nextjs (>=6.10.2 <=6.28.1)
@clerk/nextjs NPM version =6.10.2, =1.91.2, =1.49.5, =0.0.2, =0.17.1, =0.17.3-centauri.0 Source cves: CVE-2026-42349 Source advisory: SNYK:JS-CLERKNEXTJS-16347747...
ai.ancf.lmos:lmos-operator (>=0.5.0 <=0.6.0), ai.telosforge:kimaira-starter-dms (>=1.2.4 <=1.2.6) +5116 more potentially affected by CVE-2026-22741 via org.springframework:spring-webmvc (>=6.2.0 <=6.2.17)
org.springframework:spring-webmvc MAVEN version =6.2.0, =0.5.0, =1.2.4, =1.2.4, =1.17.0, =0.3.0, =0.0.1, =0.1.0, =0.1.0, =0.1.0, =8.6.0, =8.6.0, =8.6.0, =8.6.0, =8.6.0, =8.8.1 and more Source cves: CVE-2026-22741 Source advisory: OSV:GHSA-WG35-8JPF-2XV3...
ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess (>=0.1.0 <=0.2.0), ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess-storage-jpa (>=0.1.0 <=0.2.0) +5714 more potentially affected by CVE-2026-40973 via org.springframework.boot:spring-boot (>=3.5.0 <=3.5.13)
org.springframework.boot:spring-boot MAVEN version =3.5.0, =0.1.0, =0.1.0, =0.8.0, =0.7.0, =0.7.0, =0.8.0, =0.7.0, =1.0.0, =1.0.0, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.6 and more Source cves: CVE-2026-40973 Source advisory: OSV:GHSA-WWPQ-F5C3-7HVX...
IMAPServer (=0.2.0), IMAPServer-cli (=0.1.0) +386 more potentially affected by unknown CVE via diesel (>=0.10.1 <=2.3.4)
diesel CARGO version =0.10.1, =0.1.0, =0.1.0, =0.1.0, =0.4.0, =0.1.4, =0.1.11, =0.1.0, =0.5.0, =0.1.0, =0.1.2 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2026-0136...
charms-sdk (>=0.3.0 <=0.6.3), kzg-rs (>=0.2.3-sp1-4.0.0 <=0.2.5) +77 more potentially affected by unknown CVE via p3-symmetric (>=0.1.0 <=0.4.3)
p3-symmetric CARGO version =0.1.0, =0.3.0, =0.2.3-sp1-4.0.0, =0.20.0, =0.11.0, =5.2.2, =5.2.5, =5.2.2, =0.1.0, =0.4.0, =0.1.0, =0.4.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.4.3-succinct and more Source cves: unknown CVE Source advisory: OSV:GHSA-3G92-F9CH-QJCM...
org.webjars.npm:solid-js (=1.9.5) potentially affected by CVE-2026-24006 via org.webjars.npm:seroval (=1.2.1)
org.webjars.npm:seroval MAVEN version =1.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:seroval and may be impacted: - org.webjars.npm:solid-js =1.9.5 Source cves: CVE-2026-24006 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-15054528...
0lever-utils (>=0.0.2 <=0.0.7), 0xdegenmo-lighter-mcp (=0.1.1) +16205 more potentially affected by CVE-2026-21441 via urllib3 (>=1.22.0 <=2.6.2)
urllib3 PYPI version =1.22.0, =0.0.2, =0.3.0, =0.0.1a0, =1.1.2, =0.1.0, =0.1.0, =0.0.2, =0.0.5, =0.0.7 - a-mailx =0.1.0 - a-texam =1.1.0 - a16z =0.0.1 and more Source cves: CVE-2026-21441 Source advisory: SNYK:PYTHON-URLLIB3-14896210...
adopt-a-doodle (>=0.0.1 <=0.0.3), bark-simulator (>=0.0.1 <=0.1.0) +107 more potentially affected by CVE-2026-22189 via panda3d (>=1.10.10 <=1.10.9)
panda3d PYPI version =1.10.10, =0.0.1, =0.0.1, =0.1.0, =0.0.2, =0.1.0, =0.1.1, =0.0.3, =0.1.0, =21.2.0, =22.4.0, =20.12.0, =1.0.0, =0.0.1, =1.0.6, =0.0.2, =0.0.9 and more Source cves: CVE-2026-22189 Source advisory: SNYK:PYTHON-PANDA3D-14931108...
@aurehxa/componentstest (>=1.0.0 <=1.0.1), @codesyntax/ionic-react-photo-viewer (>=1.0.0 <=1.7.0) +58 more potentially affected by CVE-2025-5092 via lightgallery (>=1.10.0 <=2.9.0)
lightgallery NPM version =1.10.0, =1.0.0, =1.0.0, =0.1.139, =2.9.6, =1.7.8, =1.0.183, =1.0.1, =2.0.1, =1.0.0, =0.0.2, =0.0.1, =3.3.0, =1.0.3, =1.0.57 and more Source cves: CVE-2025-5092 Source advisory: SNYK:JS-LIGHTGALLERY-14101882...
-tompan-reacttemplate (>=1.0.1 <=1.1.0), 007-nodejs (>=2.5.0 <=2.5.3) +46037 more potentially affected by CVE-2024-29415 +1 more via ip (>=0.0.1 <=2.0.1)
ip NPM version =0.0.1, =1.0.1, =2.5.0, =2.5.3 - 0726react =0.1.1 - 0me.sh =0.1.15 - 0x0.icu.anima =0.1.0 - 0xgank-tea-advice-pull =1.0.0 - 0xgank-tea-balance-pencil =1.0.0 - 0xgank-tea-brick-bell =1.0.0 - 0xgank-tea-cake-victory =1.0.0 - 0xgank-tea-central-compound =1.0.0 -...
ai-dynamo-vllm (>=0.8.4 <=0.8.4.post4), arbor-ai (>=0.2.2 <=0.2.4) +36 more potentially affected by CVE-2025-57809 via xgrammar (>=0.1.11 <=0.1.19)
xgrammar PYPI version =0.1.11, =0.8.4, =0.2.2, =0.0.2, =0.1.1, =0.1.1, =0.0.2, =1.1.4, =0.1.1, =0.2.0a1, =0.1.2, =0.2.2 - lightrft =0.1.0 - llama-index-postprocessor-rankllm-rerank =0.6.2 and more Source cves: CVE-2025-57809 Source advisory: SNYK:PYTHON-XGRAMMAR-12201487...
fox (>=1.1.0 <=1.6.2), prova (>=0.0.0 <=0.0.2) potentially affected by unknown CVE via simple.io (=2.0.0)
simple.io NPM version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on simple.io and may be impacted: - fox =1.1.0, =0.0.0, =0.0.2 Source cves: unknown CVE Source advisory: OSV:MAL-2025-33280...
platzi-virtual-machine (=1.0.0) potentially affected by unknown CVE via pvm (=0.0.1-security)
pvm NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on pvm and may be impacted: - platzi-virtual-machine =1.0.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-30899...
alertwise (=1.0.0) potentially affected by CVE-2025-48994 via signxml (=4.0.2)
signxml PYPI version =4.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on signxml and may be impacted: - alertwise =1.0.0 Source cves: CVE-2025-48994 Source advisory: SNYK:PYTHON-SIGNXML-10303863...
com.easy-flowable:easy-flowable-solon-plugin (>=1.0.0 <=1.0.2), com.luomor.pcsms:pcsms-solon-plugin-example (>=1.0.0 <=1.0.1) +17 more potentially affected by CVE-2025-1584 via org.noear:solon-web-staticfiles (>=2.9.2-M1 <=3.0.9-M2)
org.noear:solon-web-staticfiles MAVEN version =2.9.2-M1, =1.0.0, =1.0.0, =2024.3.0, =1.3.0, =20250107, =3.3.4, =1.8.4, =1.3.1, =1.7.8, =1.8.0, =2.9.2, =2.9.2, =2.9.2, =2.9.2, =3.0.10-M1 and more Source cves: CVE-2025-1584 Source advisory: OSV:GHSA-X8Q6-CCHR-P7M6...
de.gsi.acc:chartfx-acc (>=11.2.2 <=11.2.7), de.gsi.report:chartfx-report (>=11.2.2 <=11.2.7) +16 more potentially affected by CVE-2024-57083 via org.webjars.npm:redoc (>=2.0.0-rc.23 <=2.1.4)
org.webjars.npm:redoc MAVEN version =2.0.0-rc.23, =11.2.2, =11.2.2, =11.2.2, =11.2.2, =5.0.0, =5.0.0, =3.9.0, =3.9.0, =2.5.0, =2.5.0, =3.0.0, =11.0.0, =0.7.13, =0.7.13, =0.8.3, =0.8.4 and more Source cves: CVE-2024-57083 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-8664935...
intelligenzaartificiale (>=0.0.0.35 <=0.0.0.38), nexus-corr-discovery (=0.0.1.post2) +1 more potentially affected by CVE-2024-45595 via dtale (>=2.16.0 <=3.12.0)
dtale PYPI version =2.16.0, =0.0.0.35, =0.1.0, =0.1.5 Source cves: CVE-2024-45595 Source advisory: OSV:GHSA-PW44-4H99-WQFF...
@adobe/helix-deploy (>=11.0.11 <=11.1.13) potentially affected by CVE-2024-38375 via @fastly/js-compute (>=3.11.0 <=3.15.0)
@fastly/js-compute NPM version =3.11.0, =11.0.11, =11.1.13 Source cves: CVE-2024-38375 Source advisory: OSV:GHSA-MP3G-VPM9-9VQV...
@hubbleprotocol/hubble-sdk (>=1.0.48 <=2.0.24), @streamflow/stream (>=3.0.14-dev <=3.0.19) +1 more potentially affected by CVE-2024-30253 via @solana/web3.js (=1.42.0)
@solana/web3.js NPM version =1.42.0 is affected by a known vulnerability. The following packages have a transitive dependency on @solana/web3.js and may be impacted: - @hubbleprotocol/hubble-sdk =1.0.48, =3.0.14-dev, =2.0.0, =2.0.2 Source cves: CVE-2024-30253 Source advisory: OSV:GHSA-8M45-2RJM-J...
2vyper (=0.3.0), ape-safe (=0.6.0) +27 more potentially affected by CVE-2023-30837 via vyper (>=0.1.0b12 <=0.3.7)
vyper PYPI version =0.1.0b12, =0.7.1, =0.1.0, =0.0.0, =0.0.0, =0.0.5, =0.1.0, =0.1.0, =0.7.2, =0.1.10.0, =1.0.1, =0.1.0, =1.4.0, =0.2.1, =0.3.5 and more Source cves: CVE-2023-30837 Source advisory: OSV:GHSA-MGV8-GGGW-MRG6...
demo-joplin (>=1.0.1 <=1.0.8) potentially affected by CVE-2022-45598 via joplin (=0.10.93)
joplin NPM version =0.10.93 is affected by a known vulnerability. The following packages have a transitive dependency on joplin and may be impacted: - demo-joplin =1.0.1, =1.0.8 Source cves: CVE-2022-45598 Source advisory: OSV:GHSA-H6C2-879R-JFFH...
aggmap (>=1.1.1 <=1.2.1), molmap (>=1.3.1 <=1.4.0) potentially affected by unknown CVE via tensorflow-gpu (=2.9.1)
tensorflow-gpu PYPI version =2.9.1 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - aggmap =1.1.1, =1.3.1, =1.4.0 Source cves: unknown CVE Source advisory: OSV:GHSA-XF83-Q765-XM6M...
a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +103 more potentially affected by CVE-2022-36002 via tensorflow-cpu (>=1.15.0 <=2.7.0)
tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2022-36002 Source advisory: OSV:GHSA-MH3M-62V7-68XG...
1batch (=1.0.0), 30-lines-telegram-bot (>=1.0.0 <=1.0.1) +4707 more potentially affected by CVE-2022-25896 via passport (>=0.1.10 <=0.5.3)
passport NPM version =0.1.10, =1.0.0, =1.1.0, =4.11.0, =0.1.0, =0.0.1, =1.0.3, =1.0.0, =1.0.0, =1.0.0, =0.0.1, =1.1.18 and more Source cves: CVE-2022-25896 Source advisory: OSV:GHSA-V923-W3X8-WH69...