26517 matches found
org.apache.ranger:ranger-kylin-plugin (>=2.5.0 <=2.8.0), org.apache.ranger:ranger-kylin-plugin-shim (>=2.5.0 <=2.8.0) potentially affected by CVE-2025-61734 via org.apache.kylin:kylin-core-metadata (=4.0.4)
org.apache.kylin:kylin-core-metadata MAVEN version =4.0.4 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.kylin:kylin-core-metadata and may be impacted: - org.apache.ranger:ranger-kylin-plugin =2.5.0, =2.5.0, =2.8.0 Source cves: CVE-2025-617...
chromatrace (>=0.1.6 <=0.1.7), ddos-blocker (>=0.0.3 <=0.0.13) +21 more potentially affected by CVE-2025-59681 via django (>=5.1.0 <=5.1.12)
django PYPI version =5.1.0, =0.1.6, =0.0.3, =0.0.15, =2.7.0, =1.0.3, =0.6.2, =5.1.0, =0.2.30, =1.42.2, =1.21.0, =1.21.1.dev5 and more Source cves: CVE-2025-59681 Source advisory: OSV:GHSA-HPR9-3M2G-3J9P...
aldryn-django (>=4.2.10.0 <=4.2.18.0), alertwise (=1.0.0) +113 more potentially affected by CVE-2025-59681 via django (>=4.2.0 <=4.2.24)
django PYPI version =4.2.0, =4.2.10.0, =65.10.0, =7.5.1, =1.0.2, =0.0.1, =1.3.9, =0.4.0, =0.0.1, =4.16.2, =4.8.0, =0.0.4.dev0, =8.0.0, =8.5.1 and more Source cves: CVE-2025-59681 Source advisory: OSV:PYSEC-2025-106...
01os (=0.0.14), 21cmpsdenoiser (>=1.0.0 <=1.0.2) +25839 more potentially affected by CVE-2025-55552 via torch (>=1.0.0 <=2.8.0)
torch PYPI version =1.0.0, =1.0.0, =0.1.0, =1.0.0, =0.1.0, =0.1.0, =0.1.3, =0.1.0, =0.1.0, =0.0.1, =0.0.1, =0.0.16 - a1facts =0.2.6 and more Source cves: CVE-2025-55552 Source advisory: OSV:PYSEC-2025-204...
a2grunnerp (>=0.1.0 <=0.1.8), abba-python (>=0.1.6 <=0.3.0) +1445 more potentially affected by CVE-2025-55556 via tensorflow (>=1.0.1 <=2.20.0rc0)
tensorflow PYPI version =1.0.1, =0.1.0, =0.1.6, =0.0.6, =0.1.0, =0.0.1, =1.1.2, =0.1.0, =0.1.0, =0.0.1, =2.0.0, =0.3.26, =0.2.1, =0.9.0 and more Source cves: CVE-2025-55556 Source advisory: SNYK:PYTHON-TENSORFLOW-13052809...
@extplug/cors-proxy (>=1.0.0 <=1.0.1), @ir-engine/server-core (=1.6.0) +34 more potentially affected by CVE-2020-36851 via cors-anywhere (>=0.2.5 <=0.4.4)
cors-anywhere NPM version =0.2.5, =1.0.0, =0.0.7, =0.1.0, =0.13.0, =0.0.19, =0.5.0, =0.5.0, =1.0.0, =1.2.0, =1.1.0, =4.0.0, =5.0.0 and more Source cves: CVE-2020-36851 Source advisory: OSV:GHSA-R3JV-XFGX-GJ24...
01os (=0.0.14), 21cmpsdenoiser (>=1.0.0 <=1.0.2) +24551 more potentially affected by CVE-2025-55560 via torch (>=2.0.0 <=2.7.1)
torch PYPI version =2.0.0, =1.0.0, =0.1.0, =0.1.3, =0.1.0, =0.1.0, =0.0.1, =0.0.1, =0.10.5, =0.1.0.dev1, =1.0.0, =1.2.0 and more Source cves: CVE-2025-55560 Source advisory: SNYK:PYTHON-TORCH-13052821...
0x-relayer-cat (>=0.0.3 <=0.0.10), @1-dao-protocol/juice-contracts-v3 (>=3.1.3 <=3.1.4) +1436 more potentially affected by CVE-2025-57329 via web3-core-method (>=1.0.0-beta.52 <=1.10.3)
web3-core-method NPM version =1.0.0-beta.52, =0.0.3, =3.1.3, =1.0.2, =2.0.3, =1.14.5, =1.0.7, =0.1.0, =10.4.0, =9.0.0, =9.2.0 - @acentswap/aceswap-sdk =9.0.0 and more Source cves: CVE-2025-57329 Source advisory: OSV:GHSA-2J4C-9QQQ-896R...
@amoscmc/dummy-package (>=1.3.1 <=1.3.3), @bitrefill/airfill-widget (>=4.2.2 <=4.8.3) +88 more potentially affected by CVE-2025-57318 via csvjson (>=1.0.5 <=5.1.0)
csvjson NPM version =1.0.5, =1.3.1, =4.2.2, =1.0.0, =1.0.6, =1.0.93, =0.0.4, =0.1.0, =0.5.1, =1.0.0, =0.1.0, =0.1.0, =1.0.0, =1.1.1 and more Source cves: CVE-2025-57318 Source advisory: OSV:GHSA-XQ4F-3JXP-QV6M...
graphos-cli (>=1.0.0 <=1.0.1), panshi-client (>=0.0.7 <=0.0.8) potentially affected by CVE-2025-57320 via json-schema-editor-visual (>=1.1.1 <=2.0.0)
json-schema-editor-visual NPM version =1.1.1, =1.0.0, =0.0.7, =0.0.8 Source cves: CVE-2025-57320 Source advisory: OSV:GHSA-3C3P-XH4F-PFH7...
@advclb/sassdoc-loader (=0.1.0), @alifd/sassdoc-parser (>=0.1.0 <=2.0.1) +148 more potentially affected by CVE-2025-57326 via sassdoc-extras (>=1.0.3 <=3.0.0)
sassdoc-extras NPM version =1.0.3, =0.1.0, =0.0.3, =0.0.3, =0.0.8, =3.0.0, =3.2.0, =2.3.0, =0.0.1, =0.1.2, =10.1.0, =10.18.0, =0.1.18, =99.0.372 and more Source cves: CVE-2025-57326 Source advisory: OSV:GHSA-3MPM-JX38-9M8W...
1shot (>=0.0.3 <=0.0.9), @4xian/ccapi (=1.0.6) +210 more potentially affected by CVE-2025-59828 via @anthropic-ai/claude-code (>=1.0.108 <=1.0.24)
@anthropic-ai/claude-code NPM version =1.0.108, =0.0.3, =0.1.18, =1.0.0, =0.4.0, =0.2.3, =0.0.1, =0.6.0-rc34, =1.0.0, =1.3.2-canary.5af7e49 - @chittycorp/chittychat =3.0.0 and more Source cves: CVE-2025-59828 Source advisory: SNYK:JS-ANTHROPICAICLAUDECODE-13109605...
@4geit/rct-data-table-component (>=1.68.0 <=1.103.2), @adishare/strapi-plugin-import-export-entries (=1.23.2) +301 more potentially affected by CVE-2025-57350 via csvtojson (>=0.1.7 <=2.0.10)
csvtojson NPM version =0.1.7, =1.68.0, =0.0.1, =6.1.3, =3.0.1, =3.13.19, =0.0.0, =0.0.2, =5.2.0, =1.0.0, =1.0.6 - @cocopina/table-filter =0.0.1 and more Source cves: CVE-2025-57350 Source advisory: OSV:GHSA-VRW9-G62V-7FMF...
dev.hnaderi:scala-k8s-http4s-ember_native0.4_2.13 (>=0.11.0 <=0.25.0), dev.hnaderi:scala-k8s-http4s_native0.4_2.13 (>=0.4.0 <=0.10.0) +33 more potentially affected by CVE-2025-59822 via org.http4s:http4s-ember-core_native0.4_2.13 (>=0.23.16 <=0.23.30)
org.http4s:http4s-ember-corenative0.42.13 MAVEN version =0.23.16, =0.11.0, =0.4.0, =0.0.1, =0.1.0+0.0.1, =2.14.0+0.0.1, =0.9.0+0.0.1, =2.12.0+0.0.1, =0.15.0+0.0.1, =2.13.0+0.0.1, =2.34.0+0.0.1, =2.20.0+0.0.1, =1.11.0+0.0.1, =1.44.0+0.0.6 - io.chrisdavenport:http...
org.http4s:http4s-ember-client_native0.4_2.13 (>=1.0.0-M37 <=1.0.0-M44), org.http4s:http4s-ember-server_native0.4_2.13 (>=1.0.0-M37 <=1.0.0-M44) potentially affected by CVE-2025-59822 via org.http4s:http4s-ember-core_native0.4_2.13 (>=1.0.0-M37 <=1.0.0-M44)
org.http4s:http4s-ember-corenative0.42.13 MAVEN version =1.0.0-M37, =1.0.0-M37, =1.0.0-M37, =1.0.0-M44 Source cves: CVE-2025-59822 Source advisory: SNYK:JAVA-ORGHTTP4S-13019562...
ai.starlake:quack-on-demand_3 (>=0.1.0 <=0.3.1), com.47deg:energy-monitor-persistence-app_3 (=0.2.0) +78 more potentially affected by CVE-2025-59822 via org.http4s:http4s-ember-server_3 (>=0.22.14 <=0.23.30)
org.http4s:http4s-ember-server3 MAVEN version =0.22.14, =0.1.0, =0.17.0, =0.17.0, =0.17.0, =0.17.0, =0.0.1, =0.12.1, =7.1.0, =0.22.0, =1.9.3, =6.9.0, =1.0.0, =1.0.0, =5.0.0 - com.xebia:karat-scalacheck-http4s3 =0.0.6 and more Source cves: CVE-2025-59822 Source advisory: SNYK:JAVA-ORGHTTP4S-130195...
com.47deg:energy-monitor-persistence-app_sjs1_2.13 (=0.2.0), com.disneystreaming.smithy4s:smithy4s-tests_sjs1_2.13 (>=0.12.1 <=0.16.1) +25 more potentially affected by CVE-2025-59822 via org.http4s:http4s-ember-server_sjs1_2.13 (>=0.23.10 <=0.23.30)
org.http4s:http4s-ember-serversjs12.13 MAVEN version =0.23.10, =0.12.1, =0.1.0+0.0.1, =2.14.0+0.0.1, =0.9.0+0.0.1, =2.12.0+0.0.1, =0.15.0+0.0.1, =2.13.0+0.0.1, =2.34.0+0.0.1, =2.20.0+0.0.1, =1.11.0+0.0.1, =3.9.0+0.0.1, =3.21.4+0.0.6 - io.chrisdavenport:http4s-grpc-google-cloud...
org.wso2.carbon.devicemgt:org.wso2.carbon.device.mgt.common (>=1.2.0 <=2.0.19) potentially affected by CVE-2025-4760 via org.wso2.carbon.apimgt:org.wso2.carbon.apimgt.api (>=5.0.5 <=6.1.35)
org.wso2.carbon.apimgt:org.wso2.carbon.apimgt.api MAVEN version =5.0.5, =1.2.0, =2.0.19 Source cves: CVE-2025-4760 Source advisory: OSV:GHSA-CMJC-QP7J-XGWR...
@andrewzagorski/admin (>=4.25.19-patch.1 <=4.25.19-patch.3), @applitools/core (>=2.3.7 <=4.57.1) +147 more potentially affected by CVE-2025-9960 via is-localhost-ip (>=1.4.0 <=3.0.1)
is-localhost-ip NPM version =1.4.0, =4.25.19-patch.1, =2.3.7, =1.0.0, =1.2.11, =0.5.1, =1.0.6, =1.0.0, =1.13.7, =1.0.0, =3.30.0, =4.22.1, =1.14.0, =1.14.1, =1.14.1, =13.11.30, =13.11.34-legacy.1 and more Source cves: CVE-2025-9960 Source advisory: SNYK:JS-ISLOCALHOSTIP-13004668...
tom-microservice (=3.2.28) potentially affected by CVE-2025-59526 via mailgen (=2.0.20)
mailgen NPM version =2.0.20 is affected by a known vulnerability. The following packages have a transitive dependency on mailgen and may be impacted: - tom-microservice =3.2.28 Source cves: CVE-2025-59526 Source advisory: OSV:GHSA-J2XJ-H7W5-R7VP...
@akala/semantic-release (>=2.0.11 <=3.0.62), @blinkbooks/types (>=1.0.5 <=1.0.43) +32 more potentially affected by CVE-2025-59433 via @conventional-changelog/git-client (=1.0.1)
@conventional-changelog/git-client NPM version =1.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on @conventional-changelog/git-client and may be impacted: - @akala/semantic-release =2.0.11, =1.0.5, =4.0.0, =1.19.0, =2.10.0, =1.0.0, =1.0.0, =11.0.0,...
ai.starlake:starlake-streaming_2.13 (>=1.3.3 <=1.3.5), chat.octet:llama-java-core (>=1.4.1 <=1.4.2) +296 more potentially affected by CVE-2025-59340 via com.hubspot.jinjava:jinjava (>=2.0.5 <=2.8.0)
com.hubspot.jinjava:jinjava MAVEN version =2.0.5, =1.3.3, =1.4.1, =0.0.80, =1.0.6, =1.0.6, =1.0.6, =1.0.2, =1.0.2, =0.1.0, =1.3.0, =0.3.0, =0.3.0, =0.1.0, =0.1.0, =0.1.0, =0.1.6 and more Source cves: CVE-2025-59340 Source advisory: SNYK:JAVA-COMHUBSPOTJINJAVA-12878604...
@shadypixel/mssql-mcp (=1.0.0) potentially affected by CVE-2025-59333 via @executeautomation/database-server (=1.1.0)
@executeautomation/database-server NPM version =1.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on @executeautomation/database-server and may be impacted: - @shadypixel/mssql-mcp =1.0.0 Source cves: CVE-2025-59333 Source advisory:...
@cosla/sensemaking-web-ui (>=1.0.0 <=1.0.4) potentially affected by CVE-2025-59052 via @angular/ssr (=18.2.13)
@angular/ssr NPM version =18.2.13 is affected by a known vulnerability. The following packages have a transitive dependency on @angular/ssr and may be impacted: - @cosla/sensemaking-web-ui =1.0.0, =1.0.4 Source cves: CVE-2025-59052 Source advisory: SNYK:JS-ANGULARSSR-12613576...
2404-segmentation-pipeline (>=0.1.0 <=1.0.0), abdomenatlas (>=0.1.0 <=0.1.1) +44 more potentially affected by CVE-2025-58756 via monai (>=1.0.0 <=1.5.0)
monai PYPI version =1.0.0, =0.1.0, =0.1.0, =0.0.1, =1.0.0, =0.0.0, =0.0.1, =2.0.1, =0.1.5, =0.4.2, =1.0.12, =1.0.0, =0.0.5, =0.0.6 and more Source cves: CVE-2025-58756 Source advisory: SNYK:PYTHON-MONAI-12670800...
2404-segmentation-pipeline (>=0.1.0 <=1.0.0), abdomenatlas (>=0.1.0 <=0.1.1) +44 more potentially affected by CVE-2025-58755 via monai (>=1.0.0 <=1.5.0)
monai PYPI version =1.0.0, =0.1.0, =0.1.0, =0.0.1, =1.0.0, =0.0.0, =0.0.1, =2.0.1, =0.1.5, =0.4.2, =1.0.12, =1.0.0, =0.0.5, =0.0.6 and more Source cves: CVE-2025-58755 Source advisory: SNYK:PYTHON-MONAI-12670016...
@altipla/directus-sdk-utils (=0.7.2), @angular/build (>=20.2.0 <=21.0.0-rc.1) +48 more potentially affected by CVE-2025-58751 via vite (>=7.1.0 <=7.1.4)
vite NPM version =7.1.0, =20.2.0, =2.1.2-alpha.0, =0.0.0, =2.14.0, =5.0.0-beta.4, =30.0.0, =16.0.1, =2.19.8, =2.19.8, =14.314.0, =9.6.3, =0.0.12, =2.14.2, =2.14.4 and more Source cves: CVE-2025-58751 Source advisory: OSV:GHSA-G4JQ-H2W9-997C...
2404-segmentation-pipeline (>=0.1.0 <=1.0.0), abdomenatlas (>=0.1.0 <=0.1.1) +58 more potentially affected by CVE-2025-58757 via monai (>=0.4.0 <=1.5.1)
monai PYPI version =0.4.0, =0.1.0, =0.1.0, =0.0.1, =1.0.0, =0.0.0, =0.0.1, =2.0.1, =0.1.5, =0.4.2, =0.1.0, =1.0.12, =1.0.0, =1.2.0 and more Source cves: CVE-2025-58757 Source advisory: OSV:PYSEC-2025-142...
2404-segmentation-pipeline (>=0.1.0 <=1.0.0), abdomenatlas (>=0.1.0 <=0.1.1) +58 more potentially affected by CVE-2025-58755 via monai (>=0.4.0 <=1.5.1)
monai PYPI version =0.4.0, =0.1.0, =0.1.0, =0.0.1, =1.0.0, =0.0.0, =0.0.1, =2.0.1, =0.1.5, =0.4.2, =0.1.0, =1.0.12, =1.0.0, =1.2.0 and more Source cves: CVE-2025-58755 Source advisory: OSV:PYSEC-2025-140...
@altipla/directus-sdk-utils (=0.7.2), @angular/build (>=20.2.0 <=21.0.0-rc.1) +48 more potentially affected by CVE-2025-58752 via vite (>=7.1.0 <=7.1.4)
vite NPM version =7.1.0, =20.2.0, =2.1.2-alpha.0, =0.0.0, =2.14.0, =5.0.0-beta.4, =30.0.0, =16.0.1, =2.19.8, =2.19.8, =14.314.0, =9.6.3, =0.0.12, =2.14.2, =2.14.4 and more Source cves: CVE-2025-58752 Source advisory: SNYK:JS-VITE-12558116...
ai.ancf.lmos-router:lmos-router-llm-in-spring-cloud-gateway-demo (>=0.2.0 <=0.28.0), ai.ancf.lmos:lmos-router-llm-in-spring-cloud-gateway-demo (=0.1.0) +111 more potentially affected by CVE-2025-41243 via org.springframework.cloud:spring-cloud-gateway-server (>=4.0.0 <=4.2.4)
org.springframework.cloud:spring-cloud-gateway-server MAVEN version =4.0.0, =0.2.0, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =1.0.0, =1.0.0, =2023.4.1.0, =1.0.5, =1.0.4, =3.0.0.1, =jdk17-0.0.1 - cn.warpin.maven-central:common-gateway-security =0.0.15 and more Source cves: CVE-2025-41243 Source...
com.adobe.cq.commerce:cq-commerce-hybris-impl (>=5.6.100 <=6.4.4), com.adobe.cq.media:cq-media-publishing-dps-integration (=5.6.16) +119 more potentially affected by CVE-2025-58782 via org.apache.jackrabbit:jackrabbit-core (>=1.2.1 <=2.22.1)
org.apache.jackrabbit:jackrabbit-core MAVEN version =1.2.1, =5.6.100, =2.0.6, =1.0.10, =1.0.8, =2.0.5, =2.0.0, =0.0.1, =2.1.1, =2.5.0, =2.1.1, =2.5.0, =2.1.1, =4.3.5 and more Source cves: CVE-2025-58782 Source advisory: OSV:GHSA-CXVC-G8F2-4GMM...
com.adobe.cq.commerce:cq-commerce-hybris-impl (>=5.6.100 <=6.4.4), com.adobe.cq.media:cq-media-publishing-dps-integration (=5.6.16) +93 more potentially affected by CVE-2025-58782 via org.apache.jackrabbit:jackrabbit-core (>=2.0-beta1 <=2.22.1)
org.apache.jackrabbit:jackrabbit-core MAVEN version =2.0-beta1, =5.6.100, =2.0.6, =1.0.10, =1.0.8, =2.0.5, =2.0.0, =0.0.1, =2.1.1, =2.5.0, =2.1.1, =2.5.0, =2.1.1, =4.3.5 and more Source cves: CVE-2025-58782 Source advisory: SNYK:JAVA-ORGAPACHEJACKRABBIT-12578562...
com.47deg:freestyle-http-http4s_2.11 (=0.1.0), com.azavea.geotrellis:geotrellis-server-core_2.11 (>=4.0.1 <=4.2.0) +173 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_2.11 (>=0.9.1 <=2.1.0)
co.fs2:fs2-io2.11 MAVEN version =0.9.1, =4.0.1, =4.0.1, =4.0.1, =0.4.0, =0.4.0, =5.0.0, =2.0.0, =0.12.7, =0.12.7, =0.12.7, =0.14.1, =0.12.7, =1.1.0, =1.2.1 and more Source cves: CVE-2025-58369 Source advisory: SNYK:JAVA-COFS2-13180115...
co.fs2:fs2-protocols_2.12 (>=3.10-4b5f50b <=3.12.0-RC2), com.47deg:github4s_2.12 (>=0.29.0 <=0.29.1) +435 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_2.12 (>=3.0.0 <=3.12.0)
co.fs2:fs2-io2.12 MAVEN version =3.0.0, =3.10-4b5f50b, =0.29.0, =1.0.0, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898,...
ch.j3t:zio-prefetcher_2.12 (>=0.3.0 <=0.7.0), com.47deg:embedded-cassandra-core_2.12 (=0.0.7) +465 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_2.12 (>=2.0.0 <=2.5.12)
co.fs2:fs2-io2.12 MAVEN version =2.0.0, =0.3.0, =0.22.0, =0.0.1, =0.13.2, =0.2.6, =0.3.0, =0.2.0, =0.1.0, =0.7.0, =0.7.0, =0.18.1, =0.17.0, =0.17.0, =0.1.21, =0.19.3 and more Source cves: CVE-2025-58369 Source advisory: SNYK:JAVA-COFS2-12669991...
ba.sake:hepek-http4s_3 (>=0.31.0 <=0.34.0), ch.linkyard.mcp:jsonrpc2-stdio_3 (>=0.1.0 <=0.3.2) +661 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_3 (>=3.0-117-375521f <=3.12.1)
co.fs2:fs2-io3 MAVEN version =3.0-117-375521f, =0.31.0, =0.1.0, =0.2.0, =0.1.0, =3.10-4b5f50b, =0.29.0, =0.2.1, =1.0.0, =0.1.0, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-377-020cf9e and more Source cves: CVE-2025-58369 Source advisory:...
ca.qc.ircm:plate-layout (=0.8), com.github.ilgun:expandingtextarea (=2.0) +100 more potentially affected by CVE-2025-9467 via com.vaadin:vaadin-server (>=8.0.0 <=8.28.1)
com.vaadin:vaadin-server MAVEN version =8.0.0, =1.0.0, =1.0.0, =1.1.20, =1.1.8, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.5 and more Source cves: CVE-2025-9467 Source advisory: OSV:GHSA-9GFH-4FWJ-W3RJ...
aana (>=0.2.1 <=0.2.2), acdc-aws-etl-pipeline (>=0.1.7 <=0.5.9) +487 more potentially affected by CVE-2025-58367 via deepdiff (>=5.0.1 <=8.6.0)
deepdiff PYPI version =5.0.1, =0.2.1, =0.1.7, =3.0.0b853, =0.1.0, =0.0.1, =0.1.0, =1.8.15, =1.8.17, =1.8.14, =1.0.0, =2.8.5, =0.1.6, =0.2.0 and more Source cves: CVE-2025-58367 Source advisory: SNYK:PYTHON-DEEPDIFF-12485343...
aa-altcorp (>=0.1.2b0 <=1.1.1), aa-alumni (>=0.0.1a1 <=1.0.1) +1461 more potentially affected by CVE-2025-57833 via django (>=5.2.0 <=5.2.5)
django PYPI version =5.2.0, =0.1.2b0, =0.0.1a1, =0.1.1, =3.1.0b1, =1.0.3, =0.0.1a2, =0.1.0, =0.2.0, =1.0.0, =1.1.0b3, =0.1.0b1, =0.1.0, =1.1.0 and more Source cves: CVE-2025-57833 Source advisory: OSV:PYSEC-2025-105...
@ainsleydev/payload-helper (>=0.0.1 <=0.0.32), @anjy7/navbar-cms (=0.0.5) +63 more potentially affected by CVE-2025-4643 +1 more via payload (>=0.12.3 <=3.35.1)
payload NPM version =0.12.3, =0.0.1, =1.0.1, =1.0.0, =1.0.6, =0.1.0, =1.0.0, =0.0.1, =0.0.1, =0.0.1, =0.0.7, =1.0.0, =1.1.8 and more Source cves: CVE-2025-4643, CVE-2025-4644 Source advisory: OSV:GHSA-26RV-H2HF-3FW4...
@cedarjs/api-server (>=0.0.4 <=9.0.0-canary.1784), @cedarjs/cli (>=0.0.4 <=9.0.0-canary.1784) +49 more potentially affected by unknown CVE via @escape.tech/graphql-armor-max-depth (>=2.0.0 <=2.4.1)
@escape.tech/graphql-armor-max-depth NPM version =2.0.0, =0.0.4, =0.0.4, =0.0.4, =0.0.4, =0.0.4, =0.0.4, =0.0.4, =0.0.4, =0.9.1-next.19, =0.0.4, =0.0.4, =0.0.2, =2.0.0, =2.0.6, =2.2.2, =2.19.6 and more Source cves: unknown CVE Source advisory: SNYK:JS-ESCAPETECHGRAPHQLARMORMAXDEPTH-12219686...
org.webjars.bower:jspdf-autotable (>=2.0.2 <=2.1.0) potentially affected by CVE-2025-57810 via org.webjars.bower:jspdf (>=1.0.272 <=1.4.1)
org.webjars.bower:jspdf MAVEN version =1.0.272, =2.0.2, =2.1.0 Source cves: CVE-2025-57810 Source advisory: SNYK:JAVA-ORGWEBJARSBOWER-12205534...
org.webjars.bowergithub.hhurz:tableexport.jquery.plugin (=1.26.0) potentially affected by CVE-2025-57810 via org.webjars.bowergithub.parallax:jspdf (=2.4.0)
org.webjars.bowergithub.parallax:jspdf MAVEN version =2.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.bowergithub.parallax:jspdf and may be impacted: - org.webjars.bowergithub.hhurz:tableexport.jquery.plugin =1.26.0 Source cves:...
@n8n/task-runner (>=1.37.0 <=1.42.3), n8n-node-dev (>=1.0.0 <=1.104.3) +10 more potentially affected by CVE-2025-57749 via n8n-core (>=1.0.0 <=1.105.3)
n8n-core NPM version =1.0.0, =1.37.0, =1.0.0, =0.1.0, =0.3.3, =0.3.1, =1.1.0, =0.1.4, =0.4.10, =0.2.0, =0.1.0, =0.4.28 Source cves: CVE-2025-57749 Source advisory: SNYK:JS-N8NCORE-12081401...
ai.driftkit:driftkit-context-engineering-spring-ai-starter (>=0.6.0 <=0.8.7), ai.driftkit:driftkit-context-engineering-spring-boot-starter (>=0.5.0 <=0.8.7) +326 more potentially affected by CVE-2025-54988 via org.apache.tika:tika-parser-pdf-module (>=2.0.0-ALPHA <=3.2.1)
org.apache.tika:tika-parser-pdf-module MAVEN version =2.0.0-ALPHA, =0.6.0, =0.5.0, =0.7.0, =0.7.0, =0.5.0, =0.8.3, =0.8.3, =0.8.3, =0.5.0, =0.5.0, =1.2.0, =1.0.3.1-JDK21, =1.0.0, =1.0.0, =1.0, =1.4 and more Source cves: CVE-2025-54988 Source advisory: OSV:GHSA-P72G-PV48-7W9X...
ai.driftkit:driftkit-context-engineering-spring-ai-starter (>=0.6.0 <=0.8.7), ai.driftkit:driftkit-context-engineering-spring-boot-starter (>=0.5.0 <=0.8.7) +324 more potentially affected by CVE-2025-54988 +1 more via org.apache.tika:tika-parser-pdf-module (>=2.0.0 <=3.2.1)
org.apache.tika:tika-parser-pdf-module MAVEN version =2.0.0, =0.6.0, =0.5.0, =0.7.0, =0.7.0, =0.5.0, =0.8.3, =0.8.3, =0.8.3, =0.5.0, =0.5.0, =1.2.0, =1.0.3.1-JDK21, =1.0.0, =1.0.0, =1.0, =1.4 and more Source cves: CVE-2025-54988, CVE-2025-66516 Source advisory: SNYK:JAVA-ORGAPACHETIKA-12238980...
https-curl (=1.7.9), multi-installer (=0.0.1) +1 more potentially affected by CVE-2025-55294 via screenshot-desktop (>=1.15.0 <=1.15.1)
screenshot-desktop NPM version =1.15.0, =1.0.0, =1.0.1 Source cves: CVE-2025-55294 Source advisory: SNYK:JS-SCREENSHOTDESKTOP-12028632...
40au-isteven-angular-multiselect (=4.0.0), @0negativ/hawtio-integration (>=4.13.7-rc4 <=4.13.7-rc5) +502 more potentially affected by CVE-2025-4690 via angular-sanitize (>=1.2.27 <=1.8.3)
angular-sanitize NPM version =1.2.27, =4.13.7-rc4, =0.0.1, =0.0.1, =0.1.0, =2.0.0, =0.3.2, =0.2.7, =1.0.0, =1.0.0, =0.2.1, =0.0.1, =1.0.0, =3.0.2, =4.16.5 and more Source cves: CVE-2025-4690 Source advisory: SNYK:JS-ANGULARSANITIZE-12177871...
aella-gateway-admin (>=1.0.5 <=1.0.9), angus-router (>=0.1.0 <=0.1.4) +5 more potentially affected by CVE-2025-9095 via express-gateway (=1.16.11)
express-gateway NPM version =1.16.11 is affected by a known vulnerability. The following packages have a transitive dependency on express-gateway and may be impacted: - aella-gateway-admin =1.0.5, =0.1.0, =1.0.0, =0.0.1, =0.0.5, =0.0.6 - factoria.rae.identity =1.0.0 - wawole-gateway =1.0.0 Source...