26517 matches found
@pakasa/duuka-airtel-money-pay (>=0.0.12 <=0.0.16), @pakasa/duuka-checkout (>=0.0.1 <=0.0.9) +9 more potentially affected by CVE-2025-67419 via @evershop/evershop (>=1.0.0-rc.5 <=1.2.2)
@evershop/evershop NPM version =1.0.0-rc.5, =0.0.12, =0.0.1, =0.0.5, =0.0.1, =1.0.0, =0.0.2, =0.0.2, =0.0.4, =0.1.2, =1.1.0 Source cves: CVE-2025-67419 Source advisory: OSV:GHSA-M2Q5-XHQG-92R2...
0xgasless-mcp (>=1.0.3 <=1.0.5), 12306-adk-mcp (=0.3.4) +6209 more potentially affected by CVE-2026-0621 via @modelcontextprotocol/sdk (>=0.4.0 <=1.25.1)
@modelcontextprotocol/sdk NPM version =0.4.0, =1.0.3, =0.3.3, =1.0.0, =1.0.0, =0.0.1-beta.0, =0.1.0, =1.14.1, =1.0.0, =0.0.1, =0.1.0, =0.1.0, =1.0.0, =1.0.0, =1.0.3 and more Source cves: CVE-2026-0621 Source advisory: OSV:GHSA-8R9Q-7V3J-JR4G...
@zentity/fhevm-contracts (>=0.1.0 <=0.2.0) potentially affected by unknown CVE via @openzeppelin/confidential-contracts (=0.3.0)
@openzeppelin/confidential-contracts NPM version =0.3.0 is affected by a known vulnerability. The following packages have a transitive dependency on @openzeppelin/confidential-contracts and may be impacted: - @zentity/fhevm-contracts =0.1.0, =0.2.0 Source cves: unknown CVE Source advisory:...
ai.stainless:grails-tika (=0.1.0), au.com.turingg:turingg-files (=0.0.1) +489 more potentially affected by CVE-2025-68280 via org.apache.sis.core:sis-metadata (>=0.4 <=1.5)
org.apache.sis.core:sis-metadata MAVEN version =0.4, =1.1.0, =3.6.0, =3.6.1, =3.11.0, =3.19.0 - cloud.testload:jmeter-clickhouse-listener =2.00 and more Source cves: CVE-2025-68280 Source advisory: OSV:GHSA-JQMR-2PG9-VFX7...
ai.stainless:grails-tika (=0.1.0), au.com.turingg:turingg-files (=0.0.1) +489 more potentially affected by CVE-2025-68280 via org.apache.sis.core:sis-metadata (>=0.4 <=1.5)
org.apache.sis.core:sis-metadata MAVEN version =0.4, =1.1.0, =3.6.0, =3.6.1, =3.11.0, =3.19.0 - cloud.testload:jmeter-clickhouse-listener =2.00 and more Source cves: CVE-2025-68280 Source advisory: SNYK:JAVA-ORGAPACHESISCORE-14874786...
ai.mantik:ds_2.12 (>=0.3.0 <=0.3.1-rc2), ai.mantik:ds_2.13 (>=0.4.0 <=0.4.0-rc1) +1285 more potentially affected by CVE-2026-21452 via org.msgpack:msgpack-core (>=0.7.0-M1 <=0.9.10)
org.msgpack:msgpack-core MAVEN version =0.7.0-M1, =0.3.0, =0.4.0, =0.3.0, =0.4.0, =0.3.0, =0.4.0, =0.3.0, =0.4.0, =0.4.0, =0.3.0, =0.4.0, =0.3.0, =0.4.0, =0.3.0, =0.4.0, =0.4.0-rc1 and more Source cves: CVE-2026-21452 Source advisory: OSV:GHSA-CW39-R4H6-8J3X...
acme-compilers (>=0.2.2 <=0.2.4), acvm (>=0.23.0 <=0.26.1) +286 more potentially affected by unknown CVE via rkyv (>=0.1.1 <=0.7.45)
rkyv CARGO version =0.1.1, =0.2.2, =0.23.0, =0.23.0, =0.0.1, =0.2.0, =0.39.0, =0.23.0, =0.26.1 - cairn-import-geonames =0.0.2-alpha - cairn-import-oa =0.0.2-alpha - cairn-import-osm =0.0.2-alpha - cairn-import-wof =0.0.2-alpha and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2026-00...
com.vaadin:vaadin (>=24.9.0 <=24.9.18) potentially affected by CVE-2025-15022 via com.vaadin:vaadin-spreadsheet-flow (>=24.9.0 <=24.9.6)
com.vaadin:vaadin-spreadsheet-flow MAVEN version =24.9.0, =24.9.0, =24.9.18 Source cves: CVE-2025-15022 Source advisory: OSV:GHSA-7WWV-79XW-RVVG...
com.vaadin:vaadin (>=24.7.0 <=24.10.7) potentially affected by CVE-2025-15022 via com.vaadin:vaadin-spreadsheet-flow (>=24.10.0-beta1 <=24.8.13)
com.vaadin:vaadin-spreadsheet-flow MAVEN version =24.10.0-beta1, =24.7.0, =24.10.7 Source cves: CVE-2025-15022 Source advisory: OSV:GHSA-7WWV-79XW-RVVG...
ca.qc.ircm:plate-layout (=0.8), com.github.ilgun:expandingtextarea (=2.0) +107 more potentially affected by CVE-2025-15022 via com.vaadin:vaadin-server (>=8.0.0 <=8.2.1)
com.vaadin:vaadin-server MAVEN version =8.0.0, =1.0.0, =1.0.0, =1.1.20, =1.0.9, =1.0.9, =1.1.8, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.5 and more Source cves: CVE-2025-15022 Source advisory: OSV:GHSA-7WWV-79XW-RVVG...
biz.grundner.vaadin-in-spring:spring-vaadin (=1.0), cn.jhc:umeditor-vaadin-js (=0.0.1) +141 more potentially affected by CVE-2025-15022 via com.vaadin:vaadin-server (>=7.0.0 <=7.7.5)
com.vaadin:vaadin-server MAVEN version =7.0.0, =0.5, =1.1, =1.0, =1.3, =5.0.0, =5.0.0, =5.0.0, =5.2.4 and more Source cves: CVE-2025-15022 Source advisory: OSV:GHSA-7WWV-79XW-RVVG...
com.vaadin:vaadin (>=23.1.0 <=23.1.17), com.vaadin:vaadin-jandex (>=23.1.0 <=23.1.17) +2 more potentially affected by CVE-2025-15022 via com.vaadin:vaadin-spreadsheet-flow (>=23.1.0 <=23.1.9)
com.vaadin:vaadin-spreadsheet-flow MAVEN version =23.1.0, =23.1.0, =23.1.0, =23.1.0, =2.5.2, =2.5.3 Source cves: CVE-2025-15022 Source advisory: OSV:GHSA-7WWV-79XW-RVVG...
biz.grundner.vaadin-in-spring:spring-vaadin (=1.0), cn.jhc:umeditor-vaadin-js (=0.0.1) +141 more potentially affected by CVE-2025-15022 via com.vaadin:vaadin-server (>=7.0.0 <=7.7.5)
com.vaadin:vaadin-server MAVEN version =7.0.0, =0.5, =1.1, =1.0, =1.3, =5.0.0, =5.0.0, =5.0.0, =5.2.4 and more Source cves: CVE-2025-15022 Source advisory: SNYK:JAVA-COMVAADIN-14860883...
com.vaadin:vaadin (>=24.9.0 <=24.9.18) potentially affected by CVE-2025-15022 via com.vaadin:vaadin-spreadsheet-flow (>=24.9.0 <=24.9.5)
com.vaadin:vaadin-spreadsheet-flow MAVEN version =24.9.0, =24.9.0, =24.9.18 Source cves: CVE-2025-15022 Source advisory: SNYK:JAVA-COMVAADIN-14860869...
com.vaadin:vaadin (>=23.1.0 <=23.1.17), com.vaadin:vaadin-jandex (>=23.1.0 <=23.1.17) +2 more potentially affected by CVE-2025-15022 via com.vaadin:vaadin-spreadsheet-flow (>=23.1.0 <=23.1.9)
com.vaadin:vaadin-spreadsheet-flow MAVEN version =23.1.0, =23.1.0, =23.1.0, =23.1.0, =2.5.2, =2.5.3 Source cves: CVE-2025-15022 Source advisory: SNYK:JAVA-COMVAADIN-14860869...
ca.qc.ircm:plate-layout (=0.8), com.github.ilgun:expandingtextarea (=2.0) +107 more potentially affected by CVE-2025-15022 via com.vaadin:vaadin-server (>=8.0.0 <=8.2.1)
com.vaadin:vaadin-server MAVEN version =8.0.0, =1.0.0, =1.0.0, =1.1.20, =1.0.9, =1.0.9, =1.1.8, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.5 and more Source cves: CVE-2025-15022 Source advisory: SNYK:JAVA-COMVAADIN-14860883...
com.vaadin:vaadin (>=24.7.0 <=24.10.7) potentially affected by CVE-2025-15022 via com.vaadin:vaadin-spreadsheet-flow (>=24.10.0-beta1 <=24.8.13)
com.vaadin:vaadin-spreadsheet-flow MAVEN version =24.10.0-beta1, =24.7.0, =24.10.7 Source cves: CVE-2025-15022 Source advisory: SNYK:JAVA-COMVAADIN-14860869...
ai.mantik:ds_2.12 (>=0.3.0 <=0.3.1-rc2), ai.mantik:ds_2.13 (>=0.4.0 <=0.4.0-rc1) +1283 more potentially affected by CVE-2026-21452 via org.msgpack:msgpack-core (>=0.7.0-M6 <=0.9.10)
org.msgpack:msgpack-core MAVEN version =0.7.0-M6, =0.3.0, =0.4.0, =0.3.0, =0.4.0, =0.3.0, =0.4.0, =0.3.0, =0.4.0, =0.4.0, =0.3.0, =0.4.0, =0.3.0, =0.4.0, =0.3.0, =0.4.0, =0.4.0-rc1 and more Source cves: CVE-2026-21452 Source advisory: SNYK:JAVA-ORGMSGPACK-14857714...
current-impact (=1.0.0), nmea-streamer (>=1.0.1 <=2.2.0) potentially affected by CVE-2025-68620 via signalk-server (=1.46.3)
signalk-server NPM version =1.46.3 is affected by a known vulnerability. The following packages have a transitive dependency on signalk-server and may be impacted: - current-impact =1.0.0 - nmea-streamer =1.0.1, =2.2.0 Source cves: CVE-2025-68620 Source advisory: OSV:GHSA-FQ56-HVG6-WVM5...
current-impact (=1.0.0), nmea-streamer (>=1.0.1 <=2.2.0) potentially affected by CVE-2025-69203 via signalk-server (=1.46.3)
signalk-server NPM version =1.46.3 is affected by a known vulnerability. The following packages have a transitive dependency on signalk-server and may be impacted: - current-impact =1.0.0 - nmea-streamer =1.0.1, =2.2.0 Source cves: CVE-2025-69203 Source advisory: OSV:GHSA-VFRF-VCJ7-WVR8...
current-impact (=1.0.0), nmea-streamer (>=1.0.1 <=2.2.0) potentially affected by CVE-2025-68619 via signalk-server (=1.46.3)
signalk-server NPM version =1.46.3 is affected by a known vulnerability. The following packages have a transitive dependency on signalk-server and may be impacted: - current-impact =1.0.0 - nmea-streamer =1.0.1, =2.2.0 Source cves: CVE-2025-68619 Source advisory: OSV:GHSA-93JC-VQQC-VVVH...
current-impact (=1.0.0), nmea-streamer (>=1.0.1 <=2.2.0) potentially affected by CVE-2025-68273 via signalk-server (=1.46.3)
signalk-server NPM version =1.46.3 is affected by a known vulnerability. The following packages have a transitive dependency on signalk-server and may be impacted: - current-impact =1.0.0 - nmea-streamer =1.0.1, =2.2.0 Source cves: CVE-2025-68273 Source advisory: OSV:GHSA-FPF5-W967-RR2M...
current-impact (=1.0.0), nmea-streamer (>=1.0.1 <=2.2.0) potentially affected by CVE-2025-68272 via signalk-server (=1.46.3)
signalk-server NPM version =1.46.3 is affected by a known vulnerability. The following packages have a transitive dependency on signalk-server and may be impacted: - current-impact =1.0.0 - nmea-streamer =1.0.1, =2.2.0 Source cves: CVE-2025-68272 Source advisory: OSV:GHSA-7RQC-FF8M-7J23...
current-impact (=1.0.0), nmea-streamer (>=1.0.1 <=2.2.0) potentially affected by CVE-2025-66398 via signalk-server (=1.46.3)
signalk-server NPM version =1.46.3 is affected by a known vulnerability. The following packages have a transitive dependency on signalk-server and may be impacted: - current-impact =1.0.0 - nmea-streamer =1.0.1, =2.2.0 Source cves: CVE-2025-66398 Source advisory: OSV:GHSA-W3X5-7C4C-66P9...
elemeno-ai-sdk (>=0.3.1 <=0.6.11), feast-gridgain (=1.0.0) +16 more potentially affected by CVE-2025-11157 via feast (>=0.24.1 <=0.49.0)
feast PYPI version =0.24.1, =0.3.1, =1.0.0, =0.1.0, =0.1.33, =0.1.0, =0.0.1, =0.1.0, =1.0.2, =0.1.0, =0.2.2, =0.2.3 and more Source cves: CVE-2025-11157 Source advisory: OSV:GHSA-34WM-4HW7-QFJV...
elemeno-ai-sdk (>=0.0.77 <=0.6.11), elemeno-mlops-cli (>=0.0.1 <=0.0.4) +22 more potentially affected by CVE-2025-11157 via feast (>=0.14.1 <=0.49.0)
feast PYPI version =0.14.1, =0.0.77, =0.0.1, =0.1.0, =0.3.0, =0.0.2, =1.0.0, =0.1.0, =0.1.33, =0.1.0, =0.6.19 and more Source cves: CVE-2025-11157 Source advisory: SNYK:PYTHON-FEAST-14830622...
airflow-provider-skypilot (=0.1.3), inferiallm (>=1.0.2 <=1.0.5) potentially affected by unknown CVE via skypilot (>=0.10.3 <=0.10.3.post2)
skypilot PYPI version =0.10.3, =1.0.2, =1.0.5 Source cves: unknown CVE Source advisory: SNYK:PYTHON-SKYPILOT-14860868...
mm-read (>=0.0.1 <=0.0.3.2), ozi (>=1.29.0 <=2.1.16) +2 more potentially affected by unknown CVE via niquests (>=3.11.4 <=3.14.1)
niquests PYPI version =3.11.4, =0.0.1, =1.29.0, =1.8.0, =2.19.2, =2.29.8 Source cves: unknown CVE Source advisory: SNYK:PYTHON-NIQUESTS-14862286...
abadpour (>=6.13.1 <=7.24.1), abcli (>=9.273.1 <=9.572.1) +702 more potentially affected by unknown CVE via mlflow (>=3.0.0rc2 <=3.6.0rc0)
mlflow PYPI version =3.0.0rc2, =6.13.1, =9.273.1, =2.0.0, =0.1.0, =0.1.0, =0.4.4, =0.3.0, =0.1.0, =1.0.0, =0.1.0, =1.0.0, =1.0.1 and more Source cves: unknown CVE Source advisory: SNYK:PYTHON-MLFLOW-14829280...
abadpour (>=6.13.1 <=7.24.1), abcli (>=9.273.1 <=9.572.1) +702 more potentially affected by unknown CVE via mlflow (>=3.0.0rc2 <=3.6.0rc0)
mlflow PYPI version =3.0.0rc2, =6.13.1, =9.273.1, =2.0.0, =0.1.0, =0.1.0, =0.4.4, =0.3.0, =0.1.0, =1.0.0, =0.1.0, =1.0.0, =1.0.1 and more Source cves: unknown CVE Source advisory: SNYK:PYTHON-MLFLOW-14806999...
01os (>=0.0.1 <=0.0.14), aaf (>=0.3.5 <=0.3.9) +594 more potentially affected by unknown CVE via litellm (>=1.0.0 <=1.80.10)
litellm PYPI version =1.0.0, =0.0.1, =0.3.5, =0.1.0, =0.4.0, =0.8.1, =0.1.0, =0.1.39, =0.2.1, =0.1.0, =0.14.1a0, =0.4.1, =0.1.0, =0.4.0 and more Source cves: unknown CVE Source advisory: SNYK:PYTHON-LITELLM-14807072...
galaxy (>=25.0.1 <=25.0.4) potentially affected by unknown CVE via galaxy-web-apps (>=25.0.1 <=25.0.4)
galaxy-web-apps PYPI version =25.0.1, =25.0.1, =25.0.4 Source cves: unknown CVE Source advisory: SNYK:PYTHON-GALAXYWEBAPPS-14859127...
aas-middleware (>=0.1.0 <=0.2.6), agency-skej-framework (>=0.0.1 <=0.0.7) +89 more potentially affected by unknown CVE via datamodel-code-generator (>=0.10.3 <=0.30.2)
datamodel-code-generator PYPI version =0.10.3, =0.1.0, =0.0.1, =0.2.5, =0.1.0a0, =0.0.0, =0.1.6, =0.1.4, =0.1.0, =0.1.0, =1.0.0, =0.10.2, =0.1.0, =2024.12.13.post0, =2024.12.13.post1 and more Source cves: unknown CVE Source advisory: SNYK:PYTHON-DATAMODELCODEGENERATOR-14829603...
agentengine-sdk-python (>=0.2.0 <=0.4.0), agentic-chat-ui (>=0.1.0 <=0.2.4) +42 more potentially affected by CVE-2026-22218 via chainlit (>=2.0.0 <=2.6.3)
chainlit PYPI version =2.0.0, =0.2.0, =0.1.0, =0.3.0, =0.0.3, =0.14.0, =0.0.0, =0.1.1, =0.1.0, =0.1.0, =0.1.0, =1.0.0, =0.1.1, =0.1.0, =1.3.0 and more Source cves: CVE-2026-22218 Source advisory: SNYK:PYTHON-CHAINLIT-14829575...
@9troisquarts/ant-form (>=2.3.0 <=4.0.5), @beliantech/bt-components (>=0.8.0 <=0.33.11) +55 more potentially affected by unknown CVE via trix (>=0.10.2 <=2.1.15)
trix NPM version =0.10.2, =2.3.0, =0.8.0, =0.1.1, =4.0.0-alpha.1, =4.0.0-alpha.1, =4.0.0-alpha.1, =4.0.0-alpha.5, =4.0.0-alpha.1, =0.1.18, =0.1.85, =0.2.0, =0.0.1, =0.1.0, =0.1.1, =1.32.0, =3.15.1 and more Source cves: unknown CVE Source advisory: OSV:GHSA-G9JG-W8VM-G96V...
@burger-editor/blocks (>=4.0.0-alpha.1 <=4.0.0-alpha.7), @burger-editor/client (>=4.0.0-alpha.1 <=4.0.0-alpha.7) +4 more potentially affected by unknown CVE via trix (>=2.0.10 <=2.1.15)
trix NPM version =2.0.10, =4.0.0-alpha.1, =4.0.0-alpha.1, =4.0.0-alpha.1, =4.0.0-alpha.5, =4.0.0-alpha.1, =1.0.1, =1.0.3 Source cves: unknown CVE Source advisory: SNYK:JS-TRIX-14825036...
ai-box-lib (>=0.1.0 <=0.2.1), aligned-py (>=0.1.0 <=0.2.0a0) +86 more potentially affected by CVE-2025-68131 via cbor2 (>=4.1.2 <=5.7.1)
cbor2 PYPI version =4.1.2, =0.1.0, =0.1.0, =0.13.0, =0.5.5.post5, =0.5.5.post4, =0.2.0, =0.10.6, =0.7.1a0, =0.1.0, =2.0.1, =1.0.0, =0.0.1, =0.0.5 and more Source cves: CVE-2025-68131 Source advisory: OSV:GHSA-WCJ4-JW5J-44WH...
@vietmoney/react-native-smart-gallery (=1.2.2) potentially affected by unknown CVE via @vietmoney/react-native-smart-page (=1.1.2)
@vietmoney/react-native-smart-page NPM version =1.1.2 is affected by a known vulnerability. The following packages have a transitive dependency on @vietmoney/react-native-smart-page and may be impacted: - @vietmoney/react-native-smart-gallery =1.2.2 Source cves: unknown CVE Source advisory:...
@vietmoney/react-native-smart-gallery (=1.2.2) potentially affected by unknown CVE via @vietmoney/react-native-smart-page (=1.1.2)
@vietmoney/react-native-smart-page NPM version =1.1.2 is affected by a known vulnerability. The following packages have a transitive dependency on @vietmoney/react-native-smart-page and may be impacted: - @vietmoney/react-native-smart-gallery =1.2.2 Source cves: unknown CVE Source advisory:...
muaddib-scanner (>=1.1.0 <=1.1.1) potentially affected by unknown CVE via @vietmoney/react-big-calendar (=0.0.1-security)
@vietmoney/react-big-calendar NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on @vietmoney/react-big-calendar and may be impacted: - muaddib-scanner =1.1.0, =1.1.1 Source cves: unknown CVE Source advisory:...
atomkraft (>=0.0.1 <=0.1.2), bitcoin-utils (>=0.6.1 <=0.7.1) +14 more potentially affected by CVE-2025-69277 via hdwallet (>=0.2.0 <=3.4.0)
hdwallet PYPI version =0.2.0, =0.0.1, =0.6.1, =1.3.6, =0.1.5, =0.1.4, =0.1.6, =0.1.0, =0.1.0, =0.0.2, =0.2.3, =0.1.0, =5.1.0, =0.3.0, =0.5.0a1 and more Source cves: CVE-2025-69277 Source advisory: OSV:GHSA-MRFV-M5WM-5W6W...
0lever-utils (>=0.0.2 <=0.0.7), a2grunnerp (>=0.1.0 <=0.1.8) +440 more potentially affected by CVE-2025-69277 via pynacl (>=1.0.1 <=1.6.1)
pynacl PYPI version =1.0.1, =0.0.2, =0.1.0, =1.1.0, =1.0.1, =0.1.0, =0.5.6, =0.1.0.post1, =0.5.1, =0.18.0.3, =1.0.0, =1.1.0, =1.0.5, =1.0.6 and more Source cves: CVE-2025-69277 Source advisory: OSV:GHSA-MRFV-M5WM-5W6W...
ai-box-lib (>=0.1.0 <=0.2.1), aligned-py (>=0.1.0 <=0.2.0a0) +78 more potentially affected by CVE-2025-68131 via cbor2 (>=5.0.1 <=5.7.1)
cbor2 PYPI version =5.0.1, =0.1.0, =0.1.0, =0.13.0, =0.5.5.post5, =0.5.5.post4, =0.2.0, =0.10.6, =0.7.1a0, =0.1.0, =2.0.1, =1.0.0, =0.0.1, =0.0.5 and more Source cves: CVE-2025-68131 Source advisory: SNYK:PYTHON-CBOR2-14742478...
ai-box-lib (>=0.1.0 <=0.2.1), aligned-py (>=0.1.0 <=0.2.0a0) +86 more potentially affected by CVE-2025-68131 via cbor2 (>=4.1.2 <=5.7.1)
cbor2 PYPI version =4.1.2, =0.1.0, =0.1.0, =0.13.0, =0.5.5.post5, =0.5.5.post4, =0.2.0, =0.10.6, =0.7.1a0, =0.1.0, =2.0.1, =1.0.0, =0.0.1, =0.0.5 and more Source cves: CVE-2025-68131 Source advisory: OSV:PYSEC-2025-90...
00ld8nuivn (=2.1.0), 00rqiw31nd (=2.1.0) +42013 more potentially affected by CVE-2025-15284 via qs (>=0.1.0 <=6.14.0)
qs NPM version =0.1.0, =6.14.0 is affected by a known vulnerability. The following packages have a transitive dependency on qs and may be impacted: - 00ld8nuivn =2.1.0 - 00rqiw31nd =2.1.0 - 01dk01majk =2.1.0 - 02rjq8i863 =1.1.0 - 02vx8qsp01 =2.1.0 - 05y6tjgmws =1.1.0 - 066m7q8o0z =2.1.0 -...
@0xecho/button (>=0.0.1 <=0.0.17), @anguyenguy/frontend-platform (>=1.0.1 <=1.0.2) +68 more potentially affected by CVE-2025-69202 via axios-cache-interceptor (>=0.10.7 <=1.0.0)
axios-cache-interceptor NPM version =0.10.7, =0.0.1, =1.0.1, =0.4.0, =0.0.1, =5.0.2-alpha.1-nelp.1, =0.1.0-testing, =3.3.0-alpha.1, =1.1.0, =1.0.0, =1.0.0-semantically-released, =11.7.0, =4.8.1, =5.5.0 and more Source cves: CVE-2025-69202 Source advisory: OSV:GHSA-X4M5-4CW8-VC44...
1k-utils (>=2.1.0 <=2.2.3), 22ndtech-angular-lib (>=0.0.7 <=0.0.57) +8828 more potentially affected by CVE-2025-15284 via qs (>=6.0.0 <=6.14.0)
qs NPM version =6.0.0, =2.1.0, =0.0.7, =0.2.0, =1.0.0, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1-beta.1, =1.7.1-next.1, =0.0.1-alpha.3, =0.0.1-alpha.9, =0.0.1-alpha.1, =0.0.1-alpha.1, =0.0.1-alpha.2 and more Source cves: CVE-2025-15284 Source advisory: SNYK:JS-QS-14724253...
org.webjars.npm:body-parser (>=1.20.0 <=1.20.3), org.webjars.npm:express (=4.18.1) +1 more potentially affected by CVE-2025-15284 via org.webjars.npm:qs (>=6.10.3 <=6.13.0)
org.webjars.npm:qs MAVEN version =6.10.3, =1.20.0, =8.4.7, =9.0.0-next.2 Source cves: CVE-2025-15284 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-14724254...
@tutkli/jikan-ts (>=0.6.1 <=0.6.3) potentially affected by CVE-2025-69202 via axios-cache-interceptor (=1.0.0)
axios-cache-interceptor NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on axios-cache-interceptor and may be impacted: - @tutkli/jikan-ts =0.6.1, =0.6.3 Source cves: CVE-2025-69202 Source advisory: SNYK:JS-AXIOSCACHEINTERCEPTOR-1472426...
aenvironment (=0.1.7rc1), agentfetch-mcp (>=1.0.0 <=1.0.1) +291 more potentially affected by CVE-2025-66416 via fastmcp (>=0.1.0 <=2.13.3)
fastmcp PYPI version =0.1.0, =1.0.0, =0.4.6, =1.8.0, =0.1.1, =3.2.0, =3.2.0, =4.2.2, =3.0.2, =0.1.0, =0.2.7, =1.0.0rc1, =0.1.0, =0.2.7, =0.3.1 and more Source cves: CVE-2025-66416 Source advisory: OSV:GHSA-RCFX-77HG-W2WV...