26517 matches found
albibong (>=1.0.0 <=1.2.0), am-viewer (>=1.1.0 <=4.0.1) +70 more potentially affected by unknown CVE via scapy (>=2.2.0.dev0 <=2.6.1)
scapy PYPI version =2.2.0.dev0, =1.0.0, =1.1.0, =1.0.3, =1.2.0, =1.2.0, =0.0.1, =1.2.5, =1.0.8, =0.0.4, =0.1.8, =0.2.5, =0.1.3, =1.2.1b0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-CQ46-M9X9-J8W2...
2d-json-schema-editor-visual (>=1.0.2 <=1.0.7), 37sy-build (>=1.0.0 <=1.3.3) +3989 more potentially affected by CVE-2025-9288 via sha.js (>=2.1.1 <=2.4.11)
sha.js NPM version =2.1.1, =1.0.2, =1.0.0, =1.0.0, =1.0.1, =1.0.0, =0.1.6, =1.0.0, =0.0.4, =0.1.0, =7.13.4, =18.0.0, =18.1.2 - @ajhyndman/relay =1.6.0-1 and more Source cves: CVE-2025-9288 Source advisory: SNYK:JS-SHAJS-12089400...
23march (=1.0.0), @castyiglitchxz/alert-box-package (>=1.0.0 <=1.2.5) +30 more potentially affected by unknown CVE via node.js (=0.0.1-security)
node.js NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on node.js and may be impacted: - 23march =1.0.0 - @castyiglitchxz/alert-box-package =1.0.0, =1.0.0, =1.0.0, =0.0.1, =1.0.1, =1.0.5, =1.0.0, =1.2.5, =1.2.1, =0.0.1, =2.2.0...
bismagul_project08_quiz (>=1.0.0 <=1.0.1), cli-advanture-game (=1.0.0) +5 more potentially affected by unknown CVE via calk (=0.0.1-security)
calk NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on calk and may be impacted: - bismagulproject08quiz =1.0.0, =1.0.0, =1.0.0, =1.0.1 - todoterminallist =1.0.0 - zhs-cli-advanture-game =1.0.0 Source cves: unknown CVE Source...
com.ericsson.bss.cassandra.ecaudit:ecaudit_c4.1 (>=3.0.0 <=3.1.0), com.instaclustr:cassandra-ldap-4.1.0 (=1.0.0) +20 more potentially affected by CVE-2024-27137 via org.apache.cassandra:cassandra-all (>=4.1.0 <=4.1.6)
org.apache.cassandra:cassandra-all MAVEN version =4.1.0, =3.0.0, =4.1.0, =4.1.0, =4.1.0, =2.1.0-ALPHA-8, =0.13.0, =2.6.0, =2.10.0, =2.17.0 and more Source cves: CVE-2024-27137 Source advisory: OSV:GHSA-RGFX-7P65-3FF4...
at.stderr:archetype-simple (=1.4.1), at.stderr:maven-parent (=2.3.1) +1 more potentially affected by CVE-2024-47197 via org.apache.maven.plugins:maven-archetype-plugin (=3.2.1)
org.apache.maven.plugins:maven-archetype-plugin MAVEN version =3.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.maven.plugins:maven-archetype-plugin and may be impacted: - at.stderr:archetype-simple =1.4.1 - at.stderr:maven-parent =2.3....
@alfresco/adf-core (>=4.12.0-35591 <=6.0.0-A.1-github-run-3758819331), @bigbossstudio/strapi-plugin-editorjs (>=0.0.1 <=0.0.4) +44 more potentially affected by CVE-2022-23474 via @editorjs/editorjs (>=2.15.1 <=2.25.0)
@editorjs/editorjs NPM version =2.15.1, =4.12.0-35591, =0.0.1, =1.1.3, =1.1.7, =1.0.2, =0.0.0-ee-vpcs.549378cf03, =0.0.0-ee-vpcs.549378cf03, =0.0.0-ee-vpcs.549378cf03, =0.0.0-ee-vpcs.549378cf03, =0.0.0-ee-vpcs.549378cf03, =0.0.0-unstable.1e66d121db, =0.0.0-ee-vpcs.549378cf03,...
tauri-async-handler (>=0.1.0 <=0.4.0), tauri-react (=0.1.0) potentially affected by CVE-2024-35222 via tauri (>=0.10.0 <=0.9.2)
tauri CARGO version =0.10.0, =0.1.0, =0.4.0 - tauri-react =0.1.0 Source cves: CVE-2024-35222 Source advisory: OSV:GHSA-57FM-592M-34R7...
6brain (>=0.0.1 <=0.0.2), 6sense (>=0.0.1 <=1.1.5) +1841 more potentially affected by unknown CVE via moment-timezone (>=0.1.0 <=0.5.34)
moment-timezone NPM version =0.1.0, =0.0.1, =0.0.1, =4.11.0, =4.13.7-rc4, =1.70.1, =1.16.0, =1.16.0, =1.16.1, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =2.4.4 and more Source cves: unknown CVE Source advisory: OSV:GHSA-56X4-J7P9-FCF9...
safe-transfers (=0.1.0), sn_transfers (=0.2.0) potentially affected by unknown CVE via safe-nd (>=0.11.7 <=0.9.0)
safe-nd CARGO version =0.11.7, =0.9.0 is affected by a known vulnerability. The following packages have a transitive dependency on safe-nd and may be impacted: - safe-transfers =0.1.0 - sntransfers =0.2.0 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2020-0063...
@anacoelhovicente/primecore (=0.3.4-beta.1-webhook), @axonish/core (>=0.2.0 <=0.3.0) +29 more potentially affected by unknown CVE via type-graphql (>=0.12.3 <=0.17.5)
type-graphql NPM version =0.12.3, =0.2.0, =0.0.2, =1.0.0, =1.0.0, =0.0.5, =0.0.1, =0.0.0-4d6c2e0, =0.1.0, =0.3.0-alpha.1, =0.0.1, =5.2.0, =0.0.1, =0.0.2 and more Source cves: unknown CVE Source advisory: OSV:GHSA-XF64-2F9P-6PQQ...
h2 (=1.0.0) potentially affected by CVE-2016-6581 via hpack (=1.1.0)
hpack PYPI version =1.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on hpack and may be impacted: - h2 =1.0.0 Source cves: CVE-2016-6581 Source advisory: OSV:GHSA-FFQ8-576R-V26G...
@redhat-cloud-services/frontend-components-inventory-compliance (>=0.0.1 <=3.4.4), @redhat-cloud-services/frontend-components-inventory-insights (>=0.0.1 <=3.2.3) +2 more potentially affected by unknown CVE via @redhat-cloud-services/frontend-components-remediations (=4.9.1)
@redhat-cloud-services/frontend-components-remediations NPM version =4.9.1 is affected by a known vulnerability. The following packages have a transitive dependency on @redhat-cloud-services/frontend-components-remediations and may be impacted: -...
@antv/f6 (>=0.0.2 <=0.0.19), @antv/f6-element (=0.0.1) +4 more potentially affected by unknown CVE via @antv/f6-core (=0.0.2)
@antv/f6-core NPM version =0.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/f6-core and may be impacted: - @antv/f6 =0.0.2, =1.0.0, =1.1.2-5.2, =2.0.1, =1.0.0, =1.0.2 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVF6CORE-16754479...
@bassist/eslint-config (>=0.3.0 <=0.5.0), @bassist/oxc-integration (>=0.1.0 <=0.2.0) +10 more potentially affected by unknown CVE via @lint-md/parser (>=0.0.11 <=0.0.9)
@lint-md/parser NPM version =0.0.11, =0.3.0, =0.1.0, =2.0.0, =2.0.0, =2.1.4, =2.1.4, =4.1.0, =1.1.0, =1.19.7, =1.1.0, =1.0.0, =1.3.4, =1.3.5 Source cves: unknown CVE Source advisory: SNYK:JS-LINTMDPARSER-16755088...
@antv/gpt-vis-ssr (>=0.3.4 <=0.3.8), @tiangong-ai/vis-server (>=0.0.1 <=0.0.5) potentially affected by unknown CVE via @antv/s2-ssr (>=0.0.2 <=0.1.1)
@antv/s2-ssr NPM version =0.0.2, =0.3.4, =0.0.1, =0.0.5 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVS2SSR-16754942...
@antv/g2-extension-3d (>=0.2.0 <=1.0.0), @antv/g6-extension-3d (>=0.1.0 <=0.1.23) potentially affected by unknown CVE via @antv/g-plugin-3d (>=2.0.42 <=2.1.1)
@antv/g-plugin-3d NPM version =2.0.42, =0.2.0, =0.1.0, =0.1.23 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVGPLUGIN3D-16754819...
@bassist/eslint-config (>=0.3.0 <=0.5.0), @bassist/oxc-integration (>=0.1.0 <=0.2.0) +10 more potentially affected by unknown CVE via @lint-md/parser (>=0.0.11 <=0.0.9)
@lint-md/parser NPM version =0.0.11, =0.3.0, =0.1.0, =2.0.0, =2.0.0, =2.1.4, =2.1.4, =4.1.0, =1.1.0, =1.19.7, =1.1.0, =1.0.0, =1.3.4, =1.3.5 Source cves: unknown CVE Source advisory: SNYK:JS-LINTMDPARSER-16754919...
@jsr2npm/yao__gpt-vis-mcp (>=0.0.1 <=0.1.1), @ly_agent/ly-vis-mcp-server (=0.1.14) +3 more potentially affected by unknown CVE via @antv/gpt-vis-ssr (>=0.1.10 <=0.3.8)
@antv/gpt-vis-ssr NPM version =0.1.10, =0.0.1, =0.0.1, =1.0.0, =1.0.0, =1.0.2 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVGPTVISSSR-16754871...
hubzoid (>=0.2.2 <=0.6.0), openwebui-token-tracking (>=0.1.7 <=0.1.10) +1 more potentially affected by unknown CVE via open-webui (>=0.6.0 <=0.8.8)
open-webui PYPI version =0.6.0, =0.2.2, =0.1.7, =0.1.0, =0.1.5 Source cves: unknown CVE Source advisory: OSV:GHSA-3WGJ-C2HG-VM6Q...
11x-wagtail-blog (>=0.0.0 <=0.2.0), adede (=4.1.0) +202 more potentially affected by CVE-2026-44201 via wagtail (>=1.0.0 <=7.0.0)
wagtail PYPI version =1.0.0, =0.0.0, =0.57.1, =0.1.0a0.dev0, =4.1.0, =4.3.0, =2.28.0, =0.5.0, =0.3.1, =6.3.8 and more Source cves: CVE-2026-44201 Source advisory: OSV:PYSEC-2026-150...
@bentwnghk/chat (>=1.91.2 <=1.91.6), @lobehub/chat (>=1.49.5 <=1.49.12) +2 more potentially affected by CVE-2026-42349 via @clerk/nextjs (>=6.10.2 <=6.28.1)
@clerk/nextjs NPM version =6.10.2, =1.91.2, =1.49.5, =0.0.2, =0.17.1, =0.17.3-centauri.0 Source cves: CVE-2026-42349 Source advisory: SNYK:JS-CLERKNEXTJS-16347747...
ai.ancf.lmos:lmos-operator (>=0.5.0 <=0.6.0), ai.telosforge:kimaira-starter-dms (>=1.2.4 <=1.2.6) +5116 more potentially affected by CVE-2026-22741 via org.springframework:spring-webmvc (>=6.2.0 <=6.2.17)
org.springframework:spring-webmvc MAVEN version =6.2.0, =0.5.0, =1.2.4, =1.2.4, =1.17.0, =0.3.0, =0.0.1, =0.1.0, =0.1.0, =0.1.0, =8.6.0, =8.6.0, =8.6.0, =8.6.0, =8.6.0, =8.8.1 and more Source cves: CVE-2026-22741 Source advisory: OSV:GHSA-WG35-8JPF-2XV3...
IMAPServer (=0.2.0), IMAPServer-cli (=0.1.0) +386 more potentially affected by unknown CVE via diesel (>=0.10.1 <=2.3.4)
diesel CARGO version =0.10.1, =0.1.0, =0.1.0, =0.1.0, =0.4.0, =0.1.4, =0.1.11, =0.1.0, =0.5.0, =0.1.0, =0.1.2 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2026-0136...
NeteaseCloudMusicRustApi (=0.1.1), RustMusic (=0.1.0) +535 more potentially affected by unknown CVE via actix-http (>=0.1.5 <=3.0.0)
actix-http CARGO version =0.1.5, =0.1.0, =0.1.0, =0.8.0, =0.1.8, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.3.1 - actix-delay =0.1.0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-XHJ4-VRGC-HR34...
charms-sdk (>=0.3.0 <=0.6.3), kzg-rs (>=0.2.3-sp1-4.0.0 <=0.2.5) +77 more potentially affected by unknown CVE via p3-symmetric (>=0.1.0 <=0.4.3)
p3-symmetric CARGO version =0.1.0, =0.3.0, =0.2.3-sp1-4.0.0, =0.20.0, =0.11.0, =5.2.2, =5.2.5, =5.2.2, =0.1.0, =0.4.0, =0.1.0, =0.4.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.4.3-succinct and more Source cves: unknown CVE Source advisory: OSV:GHSA-3G92-F9CH-QJCM...
org.webjars.npm:solid-js (=1.9.5) potentially affected by CVE-2026-24006 via org.webjars.npm:seroval (=1.2.1)
org.webjars.npm:seroval MAVEN version =1.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:seroval and may be impacted: - org.webjars.npm:solid-js =1.9.5 Source cves: CVE-2026-24006 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-15054528...
0lever-utils (>=0.0.2 <=0.0.7), 0xdegenmo-lighter-mcp (=0.1.1) +16205 more potentially affected by CVE-2026-21441 via urllib3 (>=1.22.0 <=2.6.2)
urllib3 PYPI version =1.22.0, =0.0.2, =0.3.0, =0.0.1a0, =1.1.2, =0.1.0, =0.1.0, =0.0.2, =0.0.5, =0.0.7 - a-mailx =0.1.0 - a-texam =1.1.0 - a16z =0.0.1 and more Source cves: CVE-2026-21441 Source advisory: SNYK:PYTHON-URLLIB3-14896210...
adopt-a-doodle (>=0.0.1 <=0.0.3), bark-simulator (>=0.0.1 <=0.1.0) +107 more potentially affected by CVE-2026-22189 via panda3d (>=1.10.10 <=1.10.9)
panda3d PYPI version =1.10.10, =0.0.1, =0.0.1, =0.1.0, =0.0.2, =0.1.0, =0.1.1, =0.0.3, =0.1.0, =21.2.0, =22.4.0, =20.12.0, =1.0.0, =0.0.1, =1.0.6, =0.0.2, =0.0.9 and more Source cves: CVE-2026-22189 Source advisory: SNYK:PYTHON-PANDA3D-14931108...
ai-dynamo-vllm (>=0.8.4 <=0.8.4.post4), arbor-ai (>=0.2.2 <=0.2.4) +36 more potentially affected by CVE-2025-57809 via xgrammar (>=0.1.11 <=0.1.19)
xgrammar PYPI version =0.1.11, =0.8.4, =0.2.2, =0.0.2, =0.1.1, =0.1.1, =0.0.2, =1.1.4, =0.1.1, =0.2.0a1, =0.1.2, =0.2.2 - lightrft =0.1.0 - llama-index-postprocessor-rankllm-rerank =0.6.2 and more Source cves: CVE-2025-57809 Source advisory: SNYK:PYTHON-XGRAMMAR-12201487...
fox (>=1.1.0 <=1.6.2), prova (>=0.0.0 <=0.0.2) potentially affected by unknown CVE via simple.io (=2.0.0)
simple.io NPM version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on simple.io and may be impacted: - fox =1.1.0, =0.0.0, =0.0.2 Source cves: unknown CVE Source advisory: OSV:MAL-2025-33280...
platzi-virtual-machine (=1.0.0) potentially affected by unknown CVE via pvm (=0.0.1-security)
pvm NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on pvm and may be impacted: - platzi-virtual-machine =1.0.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-30899...
alertwise (=1.0.0) potentially affected by CVE-2025-48994 via signxml (=4.0.2)
signxml PYPI version =4.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on signxml and may be impacted: - alertwise =1.0.0 Source cves: CVE-2025-48994 Source advisory: SNYK:PYTHON-SIGNXML-10303863...
com.easy-flowable:easy-flowable-solon-plugin (>=1.0.0 <=1.0.2), com.luomor.pcsms:pcsms-solon-plugin-example (>=1.0.0 <=1.0.1) +17 more potentially affected by CVE-2025-1584 via org.noear:solon-web-staticfiles (>=2.9.2-M1 <=3.0.9-M2)
org.noear:solon-web-staticfiles MAVEN version =2.9.2-M1, =1.0.0, =1.0.0, =2024.3.0, =1.3.0, =20250107, =3.3.4, =1.8.4, =1.3.1, =1.7.8, =1.8.0, =2.9.2, =2.9.2, =2.9.2, =2.9.2, =3.0.10-M1 and more Source cves: CVE-2025-1584 Source advisory: OSV:GHSA-X8Q6-CCHR-P7M6...
de.gsi.acc:chartfx-acc (>=11.2.2 <=11.2.7), de.gsi.report:chartfx-report (>=11.2.2 <=11.2.7) +16 more potentially affected by CVE-2024-57083 via org.webjars.npm:redoc (>=2.0.0-rc.23 <=2.1.4)
org.webjars.npm:redoc MAVEN version =2.0.0-rc.23, =11.2.2, =11.2.2, =11.2.2, =11.2.2, =5.0.0, =5.0.0, =3.9.0, =3.9.0, =2.5.0, =2.5.0, =3.0.0, =11.0.0, =0.7.13, =0.7.13, =0.8.3, =0.8.4 and more Source cves: CVE-2024-57083 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-8664935...
intelligenzaartificiale (>=0.0.0.35 <=0.0.0.38), nexus-corr-discovery (=0.0.1.post2) +1 more potentially affected by CVE-2024-45595 via dtale (>=2.16.0 <=3.12.0)
dtale PYPI version =2.16.0, =0.0.0.35, =0.1.0, =0.1.5 Source cves: CVE-2024-45595 Source advisory: OSV:GHSA-PW44-4H99-WQFF...
@adobe/helix-deploy (>=11.0.11 <=11.1.13) potentially affected by CVE-2024-38375 via @fastly/js-compute (>=3.11.0 <=3.15.0)
@fastly/js-compute NPM version =3.11.0, =11.0.11, =11.1.13 Source cves: CVE-2024-38375 Source advisory: OSV:GHSA-MP3G-VPM9-9VQV...
@hubbleprotocol/hubble-sdk (>=1.0.48 <=2.0.24), @streamflow/stream (>=3.0.14-dev <=3.0.19) +1 more potentially affected by CVE-2024-30253 via @solana/web3.js (=1.42.0)
@solana/web3.js NPM version =1.42.0 is affected by a known vulnerability. The following packages have a transitive dependency on @solana/web3.js and may be impacted: - @hubbleprotocol/hubble-sdk =1.0.48, =3.0.14-dev, =2.0.0, =2.0.2 Source cves: CVE-2024-30253 Source advisory: OSV:GHSA-8M45-2RJM-J...
2vyper (=0.3.0), ape-safe (=0.6.0) +27 more potentially affected by CVE-2023-30837 via vyper (>=0.1.0b12 <=0.3.7)
vyper PYPI version =0.1.0b12, =0.7.1, =0.1.0, =0.0.0, =0.0.0, =0.0.5, =0.1.0, =0.1.0, =0.7.2, =0.1.10.0, =1.0.1, =0.1.0, =1.4.0, =0.2.1, =0.3.5 and more Source cves: CVE-2023-30837 Source advisory: OSV:GHSA-MGV8-GGGW-MRG6...
demo-joplin (>=1.0.1 <=1.0.8) potentially affected by CVE-2022-45598 via joplin (=0.10.93)
joplin NPM version =0.10.93 is affected by a known vulnerability. The following packages have a transitive dependency on joplin and may be impacted: - demo-joplin =1.0.1, =1.0.8 Source cves: CVE-2022-45598 Source advisory: OSV:GHSA-H6C2-879R-JFFH...
aggmap (>=1.1.1 <=1.2.1), molmap (>=1.3.1 <=1.4.0) potentially affected by unknown CVE via tensorflow-gpu (=2.9.1)
tensorflow-gpu PYPI version =2.9.1 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - aggmap =1.1.1, =1.3.1, =1.4.0 Source cves: unknown CVE Source advisory: OSV:GHSA-XF83-Q765-XM6M...
a62-emotion (>=0.10.12 <=0.11.4), agent-atm (>=0.1.0 <=0.1.1) +103 more potentially affected by CVE-2022-36002 via tensorflow-cpu (>=1.15.0 <=2.7.0)
tensorflow-cpu PYPI version =1.15.0, =0.10.12, =0.1.0, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.1.0.dev202107081840 and more Source cves: CVE-2022-36002 Source advisory: OSV:GHSA-MH3M-62V7-68XG...
1batch (=1.0.0), 30-lines-telegram-bot (>=1.0.0 <=1.0.1) +4707 more potentially affected by CVE-2022-25896 via passport (>=0.1.10 <=0.5.3)
passport NPM version =0.1.10, =1.0.0, =1.1.0, =4.11.0, =0.1.0, =0.0.1, =1.0.3, =1.0.0, =1.0.0, =1.0.0, =0.0.1, =1.1.18 and more Source cves: CVE-2022-25896 Source advisory: OSV:GHSA-V923-W3X8-WH69...
adiscord (>=0.0.1 <=0.0.3), alpaca-data-api (>=0.1.0 <=0.1.2) +20 more potentially affected by unknown CVE via dotenv_codegen (>=0.10.0 <=0.9.3)
dotenvcodegen CARGO version =0.10.0, =0.0.1, =0.1.0, =0.5.0, =0.1.0, =0.1.0, =0.1.2, =0.7.0, =0.1.0, =0.1.0, =0.3.0 - meep =1.0.1 - ncrsdk =0.1.0 - new-rawr =0.0.1 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2021-0142...
complaintclassify (=0.0.9) potentially affected by CVE-2021-29616 via tensorflow-cpu (=2.4.0)
tensorflow-cpu PYPI version =2.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - complaintclassify =0.0.9 Source cves: CVE-2021-29616 Source advisory: OSV:GHSA-4HVV-7X94-7VQ8...
aiproteomics (=0.2.1), alpharing (>=1.0.0 <=2.0.0) +25 more potentially affected by CVE-2021-29610 via tensorflow-cpu (>=1.15.0 <=2.1.0)
tensorflow-cpu PYPI version =1.15.0, =1.0.0, =0.0.1, =1.0.0.4, =0.1.0, =0.2.3, =0.0.5, =0.1.2, =1.0.0, =1.8.2, =1.6.1, =1.8.3 - netfl =1.5.0 and more Source cves: CVE-2021-29610 Source advisory: OSV:GHSA-MQ5C-PRH3-3F3H...
@across-ui/example (>=0.0.1-alpha.4 <=0.0.4-alpha.5), @agreejs/api (>=0.0.1 <=3.2.14) +797 more potentially affected by CVE-2021-23337 via lodash-es (>=3.0.0 <=4.17.20)
lodash-es NPM version =3.0.0, =0.0.1-alpha.4, =0.0.1, =0.0.2, =3.2.1, =3.2.1, =3.2.1, =0.0.1, =3.2.1, =3.2.1, =0.1.0, =0.3.14, =0.4.63, =0.4.64 and more Source cves: CVE-2021-23337 Source advisory: OSV:GHSA-35JH-R3H4-6JHM...
com.alibaba.rsocket:alibaba-broker-server (>=1.0.0.M1 <=1.0.0.RC3), com.dorkbox.GradleVaadin:com.dorkbox.GradleVaadin.gradle.plugin (=0.1) +240 more potentially affected by CVE-2020-36321 via com.vaadin:flow-server (>=2.0.0 <=2.4.1)
com.vaadin:flow-server MAVEN version =2.0.0, =1.0.0.M1, =1.4.0, =1.0, =0.0.1, =14.0.0, =14.0.0, =0.0.3, =1.0.0, =0.3.1, =1.0.0, =1.0.0, =0.5.1, =2.0.1, =2.2.3 and more Source cves: CVE-2020-36321 Source advisory: OSV:GHSA-49R2-73M6-PP8F...
group-lunches (>=0.0.2 <=0.0.10), lets-chat-ldap (>=0.1.0 <=0.4.0) +5 more potentially affected by CVE-2015-7294 via ldapauth-fork (=2.2.19)
ldapauth-fork NPM version =2.2.19 is affected by a known vulnerability. The following packages have a transitive dependency on ldapauth-fork and may be impacted: - group-lunches =0.0.2, =0.1.0, =0.0.2, =0.1.0, =0.0.0, =0.0.1 Source cves: CVE-2015-7294 Source advisory: OSV:GHSA-82MG-X548-GQ3J...
be.fluid-it.tools.swagger:swagger-ng-module-codegen (>=0.1-1 <=0.1-5), ch.docksnet.codegen:decoupledspringmvc-swagger-codegen (=0.0.2) +163 more potentially affected by CVE-2017-1000207 +1 more via io.swagger:swagger-parser (>=1.0.0 <=1.0.30)
io.swagger:swagger-parser MAVEN version =1.0.0, =0.1-1, =1.0.2, =1.0.2, =1.1.0, =1.0.2, =1.0.2, =1.2.0, =1.0.2, =0.0.1, =0.0.1, =1.1, =1.0.0, =2.0.0, =2.0.0, =2.0.1 and more Source cves: CVE-2017-1000207, CVE-2017-1000208 Source advisory: OSV:GHSA-VGVF-9JH3-FG75https://vulners...