26517 matches found
1shot (>=0.0.3 <=0.0.9), @4xian/ccapi (=1.0.6) +210 more potentially affected by CVE-2025-65099 via @anthropic-ai/claude-code (>=1.0.108 <=1.0.24)
@anthropic-ai/claude-code NPM version =1.0.108, =0.0.3, =0.1.18, =1.0.0, =0.4.0, =0.2.3, =0.0.1, =0.6.0-rc34, =1.0.0, =1.3.2-canary.5af7e49 - @chittycorp/chittychat =3.0.0 and more Source cves: CVE-2025-65099 Source advisory: SNYK:JS-ANTHROPICAICLAUDECODE-14073012...
@ampt/astro (=0.0.1-beta.1), @antonyfaris/prefix-node-builtins (>=1.0.0 <=1.0.1) +383 more potentially affected by CVE-2025-65019 via astro (>=0.20.12 <=5.15.6)
astro NPM version =0.20.12, =1.0.0, =0.5.0, =1.0.0, =0.0.17, =0.0.2, =0.0.1, =0.2.0, =0.0.0-experimental-7c2f356, =0.0.0-experimental-7c2f356, =0.5.1 - @astro-sanctuary/toolbar-drupal =0.1.1 - @astrojs/og =0.0.1 and more Source cves: CVE-2025-65019 Source advisory: OSV:GHSA-FVMW-CJ7J-J39Q...
@1771technologies/oneplay (>=0.0.1 <=0.0.6), @a1st/aix (>=0.0.3 <=0.5.1) +570 more potentially affected by CVE-2025-65019 via @astrojs/internal-helpers (>=0.0.0-markdoc-config-changes-20230626153541 <=0.7.4)
@astrojs/internal-helpers NPM version =0.0.0-markdoc-config-changes-20230626153541, =0.0.1, =0.0.3, =0.2.0, =1.1.0, =1.0.0, =1.3.0, =0.9.0, =0.5.2, =1.0.0, =0.5.0, =1.0.0, =1.0.0, =0.0.17, =0.0.18 and more Source cves: CVE-2025-65019 Source advisory: SNYK:JS-ASTROJSINTERNALHELPERS-14059660...
@antonyfaris/prefix-node-builtins (>=1.0.0 <=1.0.1), @anyauth/design-system (>=0.5.0 <=0.5.1) +18 more potentially affected by CVE-2025-64765 via astro (>=5.0.0-beta.5 <=5.15.6)
astro NPM version =5.0.0-beta.5, =1.0.0, =0.5.0, =0.0.1, =0.1.0, =0.0.1, =2.18.7, =0.1.2-alpha.1, =0.0.28, =0.0.28, =1.13.2, =0.1.8, =1.0.21, =1.0.22 and more Source cves: CVE-2025-64765 Source advisory: SNYK:JS-ASTRO-14059661...
@ampt/astro (=0.0.1-beta.1), @antonyfaris/prefix-node-builtins (>=1.0.0 <=1.0.1) +383 more potentially affected by CVE-2025-64765 +1 more via astro (>=0.20.12 <=5.15.6)
astro NPM version =0.20.12, =1.0.0, =0.5.0, =1.0.0, =0.0.17, =0.0.2, =0.0.1, =0.2.0, =0.0.0-experimental-7c2f356, =0.0.0-experimental-7c2f356, =0.5.1 - @astro-sanctuary/toolbar-drupal =0.1.1 - @astrojs/og =0.0.1 and more Source cves: CVE-2025-64765, CVE-2025-66202 Source advisory:...
@antonyfaris/prefix-node-builtins (>=1.0.0 <=1.0.1), @anyauth/design-system (>=0.5.0 <=0.5.1) +18 more potentially affected by CVE-2025-64764 via astro (>=5.0.0-beta.5 <=5.15.6)
astro NPM version =5.0.0-beta.5, =1.0.0, =0.5.0, =0.0.1, =0.1.0, =0.0.1, =2.18.7, =0.1.2-alpha.1, =0.0.28, =0.0.28, =1.13.2, =0.1.8, =1.0.21, =1.0.22 and more Source cves: CVE-2025-64764 Source advisory: SNYK:JS-ASTRO-14059122...
@antonyfaris/prefix-node-builtins (>=1.0.0 <=1.0.1), @awesome-myst/myst-awesome (>=0.0.1 <=0.0.7) +10 more potentially affected by CVE-2025-64757 via astro (>=5.0.0-beta.5 <=5.14.1)
astro NPM version =5.0.0-beta.5, =1.0.0, =0.0.1, =0.0.1, =2.18.7, =0.1.2-alpha.1, =1.13.2, =0.1.8, =1.0.21, =0.0.1, =0.0.1, =1.249.8, =1.271.1 Source cves: CVE-2025-64757 Source advisory: SNYK:JS-ASTRO-14059139...
@ampt/astro (=0.0.1-beta.1), @antonyfaris/prefix-node-builtins (>=1.0.0 <=1.0.1) +376 more potentially affected by CVE-2025-64757 via astro (>=0.20.12 <=5.14.1)
astro NPM version =0.20.12, =1.0.0, =1.0.0, =0.0.17, =0.0.2, =0.0.1, =0.2.0, =0.0.0-experimental-7c2f356, =0.0.0-experimental-7c2f356, =0.0.1, =0.0.1, =0.0.7 and more Source cves: CVE-2025-64757 Source advisory: OSV:GHSA-X3H8-62X9-952G...
@1771technologies/oneplay (>=0.0.1 <=0.0.6), @a1st/aix (>=0.0.3 <=0.5.1) +557 more potentially affected by CVE-2025-64757 via @astrojs/internal-helpers (>=0.0.0-markdoc-config-changes-20230626153541 <=0.7.3)
@astrojs/internal-helpers NPM version =0.0.0-markdoc-config-changes-20230626153541, =0.0.1, =0.0.3, =0.2.0, =1.1.0, =1.0.0, =1.3.0, =0.9.0, =0.5.2, =1.0.0, =1.0.0, =1.0.0, =0.0.17, =0.0.2, =0.0.10 - @astro-component/button =0.0.1 and more Source cves: CVE-2025-64757 Source advisory:...
choco-astro (>=0.3.1 <=0.4.0) potentially affected by CVE-2025-64757 via @astrojs/node (>=9.2.2 <=9.3.0)
@astrojs/node NPM version =9.2.2, =0.3.1, =0.4.0 Source cves: CVE-2025-64757 Source advisory: SNYK:JS-ASTROJSNODE-14059141...
dev.savantly.nexus:agents-module (=3.4.0), dev.savantly.nexus:common-types-module (=3.4.0) +152 more potentially affected by CVE-2025-64408 via org.apache.causeway.core:causeway-applib (>=2.0.0-RC1 <=3.4.0)
org.apache.causeway.core:causeway-applib MAVEN version =2.0.0-RC1, =3.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.causeway.core:causeway-applib and may be impacted: - dev.savantly.nexus:agents-module =3.4.0 -...
dev.savantly.nexus:agents-module (=3.4.0), dev.savantly.nexus:common-types-module (=3.4.0) +156 more potentially affected by CVE-2025-64408 via org.apache.causeway.commons:causeway-commons (>=2.0.0-RC1 <=3.4.0)
org.apache.causeway.commons:causeway-commons MAVEN version =2.0.0-RC1, =3.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.causeway.commons:causeway-commons and may be impacted: - dev.savantly.nexus:agents-module =3.4.0 -...
dev.savantly.nexus:agents-module (=3.4.0), dev.savantly.nexus:flow-module (=3.4.0) +135 more potentially affected by CVE-2025-64408 via org.apache.causeway.core:causeway-core-config (>=2.0.0-RC1 <=3.4.0)
org.apache.causeway.core:causeway-core-config MAVEN version =2.0.0-RC1, =3.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.causeway.core:causeway-core-config and may be impacted: - dev.savantly.nexus:agents-module =3.4.0 -...
org.apache.causeway.core:causeway-applib (=4.0.0-M1), org.apache.causeway.core:causeway-core-codegen-bytebuddy (=4.0.0-M1) +107 more potentially affected by CVE-2025-64408 via org.apache.causeway.commons:causeway-commons (=4.0.0-M1)
org.apache.causeway.commons:causeway-commons MAVEN version =4.0.0-M1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.causeway.commons:causeway-commons and may be impacted: - org.apache.causeway.core:causeway-applib =4.0.0-M1 -...
org.apache.causeway.extensions:causeway-extensions-audittrail-applib (=4.0.0-M1), org.apache.causeway.extensions:causeway-extensions-audittrail-persistence-jpa (=4.0.0-M1) +18 more potentially affected by CVE-2025-64408 via org.apache.causeway.core:causeway-core-runtimeservices (=4.0.0-M1)
org.apache.causeway.core:causeway-core-runtimeservices MAVEN version =4.0.0-M1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.causeway.core:causeway-core-runtimeservices and may be impacted: -...
dev.savantly.nexus:agents-module (=3.4.0), dev.savantly.nexus:flow-module (=3.4.0) +43 more potentially affected by CVE-2025-64408 via org.apache.causeway.core:causeway-core-runtimeservices (>=2.0.0-RC1 <=3.4.0)
org.apache.causeway.core:causeway-core-runtimeservices MAVEN version =2.0.0-RC1, =3.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.causeway.core:causeway-core-runtimeservices and may be impacted: - dev.savantly.nexus:agents-module =3.4....
org.apache.causeway.mavendeps:causeway-mavendeps-webapp (=4.0.0-M1) potentially affected by CVE-2025-64408 via org.apache.causeway.viewer:causeway-viewer-wicket-viewer (=4.0.0-M1)
org.apache.causeway.viewer:causeway-viewer-wicket-viewer MAVEN version =4.0.0-M1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.causeway.viewer:causeway-viewer-wicket-viewer and may be impacted: -...
dev.savantly.nexus:nexus-command-webapp (=3.4.0), org.apache.causeway.mavendeps:causeway-mavendeps-webapp (>=2.0.0 <=3.4.0) potentially affected by CVE-2025-64408 via org.apache.causeway.viewer:causeway-viewer-wicket-viewer (>=2.0.0-RC1 <=3.4.0)
org.apache.causeway.viewer:causeway-viewer-wicket-viewer MAVEN version =2.0.0-RC1, =2.0.0, =3.4.0 Source cves: CVE-2025-64408 Source advisory: SNYK:JAVA-ORGAPACHECAUSEWAYVIEWER-14052594...
org.apache.causeway.core:causeway-core-interaction (=4.0.0-M1), org.apache.causeway.core:causeway-core-metamodel (=4.0.0-M1) +93 more potentially affected by CVE-2025-64408 via org.apache.causeway.core:causeway-core-config (=4.0.0-M1)
org.apache.causeway.core:causeway-core-config MAVEN version =4.0.0-M1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.causeway.core:causeway-core-config and may be impacted: - org.apache.causeway.core:causeway-core-interaction =4.0.0-M1 -...
org.apache.causeway.core:causeway-core-interaction (=4.0.0-M1), org.apache.causeway.core:causeway-core-runtime (=4.0.0-M1) +87 more potentially affected by CVE-2025-64408 via org.apache.causeway.core:causeway-core-metamodel (=4.0.0-M1)
org.apache.causeway.core:causeway-core-metamodel MAVEN version =4.0.0-M1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.causeway.core:causeway-core-metamodel and may be impacted: - org.apache.causeway.core:causeway-core-interaction =4.0.0-M...
dev.savantly.nexus:agents-module (=3.4.0), dev.savantly.nexus:common-types-module (=3.4.0) +152 more potentially affected by CVE-2025-64408 via org.apache.causeway.core:causeway-applib (>=2.0.0-RC1 <=3.4.0)
org.apache.causeway.core:causeway-applib MAVEN version =2.0.0-RC1, =3.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.causeway.core:causeway-applib and may be impacted: - dev.savantly.nexus:agents-module =3.4.0 -...
dev.savantly.nexus:agents-module (=3.4.0), dev.savantly.nexus:common-types-module (=3.4.0) +156 more potentially affected by CVE-2025-64408 via org.apache.causeway.commons:causeway-commons (>=2.0.0-RC1 <=3.4.0)
org.apache.causeway.commons:causeway-commons MAVEN version =2.0.0-RC1, =3.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.causeway.commons:causeway-commons and may be impacted: - dev.savantly.nexus:agents-module =3.4.0 -...
org.apache.causeway.core:causeway-core-config (=4.0.0-M1), org.apache.causeway.core:causeway-core-interaction (=4.0.0-M1) +105 more potentially affected by CVE-2025-64408 via org.apache.causeway.core:causeway-applib (=4.0.0-M1)
org.apache.causeway.core:causeway-applib MAVEN version =4.0.0-M1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.causeway.core:causeway-applib and may be impacted: - org.apache.causeway.core:causeway-core-config =4.0.0-M1 -...
dev.savantly.nexus:agents-module (=3.4.0), dev.savantly.nexus:flow-module (=3.4.0) +129 more potentially affected by CVE-2025-64408 via org.apache.causeway.core:causeway-core-metamodel (>=2.0.0-RC1 <=3.4.0)
org.apache.causeway.core:causeway-core-metamodel MAVEN version =2.0.0-RC1, =3.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.causeway.core:causeway-core-metamodel and may be impacted: - dev.savantly.nexus:agents-module =3.4.0 -...
django-ninja-aio-crud (>=1.0.5 <=2.25.0) potentially affected by CVE-2025-65015 via joserfc (=1.4.1)
joserfc PYPI version =1.4.1 is affected by a known vulnerability. The following packages have a transitive dependency on joserfc and may be impacted: - django-ninja-aio-crud =1.0.5, =2.25.0 Source cves: CVE-2025-65015 Source advisory: SNYK:PYTHON-JOSERFC-14052498...
did-sdk-python (>=1.0.0 <=1.1.3), fds-sdk-utils (>=2.1.1 <=2.1.3) +4 more potentially affected by CVE-2025-65015 via joserfc (>=1.0.0 <=1.2.2)
joserfc PYPI version =1.0.0, =1.0.0, =2.1.1, =3.0.2, =0.21.2, =0.6.0, =0.1.0, =0.5.0rc2 Source cves: CVE-2025-65015 Source advisory: SNYK:PYTHON-JOSERFC-14052498...
ai-box-lib (>=0.1.0 <=0.2.1), aligned-py (>=0.1.0 <=0.2.0a0) +70 more potentially affected by CVE-2025-64076 via cbor2 (>=5.0.1 <=5.7.0)
cbor2 PYPI version =5.0.1, =0.1.0, =0.1.0, =0.13.0, =0.5.5.post5, =0.5.5.post4, =0.1.0, =2.0.1, =1.0.0, =0.0.1, =0.0.1, =0.0.1, =0.1.0, =0.1.4 and more Source cves: CVE-2025-64076 Source advisory: SNYK:PYTHON-CBOR2-14049181...
ai.catboost:catboost-spark_4.0_2.13 (=1.2.10), cloud.piranha.extension:piranha-extension-microprofile (>=21.1.0 <=21.5.0) +580 more potentially affected by CVE-2025-12383 via org.glassfish.jersey.core:jersey-client (>=3.0.0-M1 <=3.0.16)
org.glassfish.jersey.core:jersey-client MAVEN version =3.0.0-M1, =21.1.0, =2.0.14-spark-4.0, =3.149.2-beta, =3.149.2-beta, =3.149.2-beta, =3.149.2-beta, =3.149.2-beta, =3.149.2-beta, =4.43.0, =2.0.0, =2.0.0, =2.0.2 and more Source cves: CVE-2025-12383 Source advisory:...
ae.teletronics.nlp:w2vec (=1.0), ai.catboost:catboost-spark_2.11 (>=0.25-rc1 <=0.25-rc3) +11524 more potentially affected by CVE-2025-12383 via org.glassfish.jersey.core:jersey-client (>=2.0 <=2.45)
org.glassfish.jersey.core:jersey-client MAVEN version =2.0, =0.25-rc1, =0.25-rc1, =0.25, =0.25, =0.25, =0.25, =1.0.1, =1.0.6, =1.0.6, =1.1, =1.1.1, =1.2, =1.2, =1.2.3, =1.2.10 and more Source cves: CVE-2025-12383 Source advisory: SNYK:JAVA-ORGGLASSFISHJERSEYCORE-14049172...
ai.catboost:catboost-spark_4.0_2.13 (=1.2.10), com.amazon.deequ:deequ (>=2.0.14-spark-4.0 <=2.0.15-spark-4.0) +331 more potentially affected by CVE-2025-12383 via org.glassfish.jersey.core:jersey-client (=3.0.16)
org.glassfish.jersey.core:jersey-client MAVEN version =3.0.16 is affected by a known vulnerability. The following packages have a transitive dependency on org.glassfish.jersey.core:jersey-client and may be impacted: - ai.catboost:catboost-spark4.02.13 =1.2.10 - com.amazon.deequ:deequ...
cloud.piranha.dist:piranha-dist-micro (>=24.11.0 <=25.1.0), cloud.piranha.dist:piranha-dist-platform (>=24.11.0 <=25.1.0) +155 more potentially affected by CVE-2025-12383 via org.glassfish.jersey.core:jersey-client (=4.0.0-M1)
org.glassfish.jersey.core:jersey-client MAVEN version =4.0.0-M1 is affected by a known vulnerability. The following packages have a transitive dependency on org.glassfish.jersey.core:jersey-client and may be impacted: - cloud.piranha.dist:piranha-dist-micro =24.11.0, =24.11.0, =24.11.0, =24.11.0,...
com.axonivy.ivy.webtest:web-tester (>=12.0.1 <=13.1.0), com.exasol:extension-manager-client-java (>=0.5.13 <=0.5.16) +390 more potentially affected by CVE-2025-12383 via org.glassfish.jersey.core:jersey-client (=2.45)
org.glassfish.jersey.core:jersey-client MAVEN version =2.45 is affected by a known vulnerability. The following packages have a transitive dependency on org.glassfish.jersey.core:jersey-client and may be impacted: - com.axonivy.ivy.webtest:web-tester =12.0.1, =0.5.13, =0.5.13, =1.6.0, =2.2.19,...
au.net.causal.shoelaces:shoelaces-jersey (=3.0), au.net.causal.shoelaces:shoelaces-jersey-client (=3.0) +521 more potentially affected by CVE-2025-12383 via org.glassfish.jersey.core:jersey-client (>=3.1.0-M1 <=3.1.1)
org.glassfish.jersey.core:jersey-client MAVEN version =3.1.0-M1, =22.12.0, =22.11.0, =22.9.0, =22.7.0, =22.10.0, =22.11.0, =22.12.0, =22.7.0, =1.0.0.1, =4.0.3, =4.0.3, =4.0.0, =5.4.0 and more Source cves: CVE-2025-12383 Source advisory: SNYK:JAVA-ORGGLASSFISHJERSEYCORE-14049172...
django-ninja-aio-crud (>=1.0.5 <=2.25.0) potentially affected by CVE-2025-65015 via joserfc (=1.4.1)
joserfc PYPI version =1.4.1 is affected by a known vulnerability. The following packages have a transitive dependency on joserfc and may be impacted: - django-ninja-aio-crud =1.0.5, =2.25.0 Source cves: CVE-2025-65015 Source advisory: OSV:GHSA-FRFH-8V73-GJG4...
BiliupApi (>=0.1.0 <=0.1.7), SimpleBeatmapAnalyzer (>=0.9.0 <=0.9.2) +1346 more potentially affected by unknown CVE via number_prefix (>=0.2.8 <=0.4.0)
numberprefix CARGO version =0.2.8, =0.1.0, =0.9.0, =0.1.0, =0.1.0, =0.0.6, =0.0.7-alpha.3, =0.0.7-alpha.2, =0.0.7-alpha.1, =0.0.7-alpha.1, =0.1.0, =0.1.0, =0.1.7, =1.1.0, =0.1.0, =0.1.8 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0119...
Boa (>=0.1.8 <=0.3.0), GetPDB (>=0.1.0 <=1.0.1) +5823 more potentially affected by unknown CVE via rand_os (>=0.1.3 <=0.2.2)
randos CARGO version =0.1.3, =0.1.8, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.3.6, =0.22.6, =0.1.0, =0.8.4 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0124...
actix-web-opentelemetry (>=0.2.0 <=0.17.0), atomic-server (>=0.32.1 <=0.34.0) +39 more potentially affected by unknown CVE via opentelemetry-jaeger (>=0.10.0 <=0.9.0)
opentelemetry-jaeger CARGO version =0.10.0, =0.2.0, =0.32.1, =0.2.1, =4.1.0, =0.1.0, =0.4.0-prerelease1, =0.3.2, =0.2.0-rc-8, =0.2.0-rc-9, =0.2.0-rc-10, =0.2.0-rc, =0.1.0, =0.31.0, =0.1.0, =0.2.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0123...
ArmlabRadio (>=0.4.0 <=0.6.5), FPS (>=0.0.1 <=0.0.3) +2565 more potentially affected by unknown CVE via gcc (>=0.3.35 <=0.3.55)
gcc CARGO version =0.3.35, =0.4.0, =0.0.1, =0.2.4, =0.2.0-beta.4, =0.1.0, =0.0.1, =0.1.0, =0.1.0, =0.1.0, =0.0.1, =0.3.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0121...
a10-octavia (>=1.0.0 <=2.2.0) potentially affected by CVE-2025-65073 via keystone (>=15.0.1 <=18.0.0)
keystone PYPI version =15.0.1, =1.0.0, =2.2.0 Source cves: CVE-2025-65073 Source advisory: OSV:GHSA-HCQG-5G63-7J9H...
a10-octavia (>=1.0.0 <=2.2.0) potentially affected by CVE-2025-65073 via keystone (>=15.0.1 <=18.0.0)
keystone PYPI version =15.0.1, =1.0.0, =2.2.0 Source cves: CVE-2025-65073 Source advisory: SNYK:PYTHON-KEYSTONE-14038400...
swift-scality-backend (=0.4.4) potentially affected by CVE-2025-65073 via swift (=2.37.1)
swift PYPI version =2.37.1 is affected by a known vulnerability. The following packages have a transitive dependency on swift and may be impacted: - swift-scality-backend =0.4.4 Source cves: CVE-2025-65073 Source advisory: SNYK:PYTHON-SWIFT-14038401...
io.github.wwwlike:vlife-boot-starter-web (>=1.0.4 <=1.0.7), io.github.wwwlike:vlife-core (>=1.0.4 <=1.0.7) +2 more potentially affected by CVE-2025-13266 via io.github.wwwlike:vlife-base (>=1.0.4 <=1.0.7)
io.github.wwwlike:vlife-base MAVEN version =1.0.4, =1.0.4, =1.0.4, =1.0.4, =1.0.2, =1.0.7 Source cves: CVE-2025-13266 Source advisory: SNYK:JAVA-IOGITHUBWWWLIKE-14038399...
io.github.wwwlike:vlife-boot-starter-web (>=1.0.4 <=1.0.7), io.github.wwwlike:vlife-core (>=1.0.4 <=1.0.7) +2 more potentially affected by CVE-2025-13266 via io.github.wwwlike:vlife-base (>=1.0.4 <=1.0.7)
io.github.wwwlike:vlife-base MAVEN version =1.0.4, =1.0.4, =1.0.4, =1.0.4, =1.0.2, =1.0.7 Source cves: CVE-2025-13266 Source advisory: OSV:GHSA-CG6M-9276-QPJJ...
@directus/api (>=15.0.0 <=31.0.0), @linotype/directus-extension-linotype (>=1.2.2 <=1.3.5) +2 more potentially affected by CVE-2025-64747 via directus (>=10.10.0 <=11.12.0)
directus NPM version =10.10.0, =15.0.0, =1.2.2, =1.0.0, =2.0.0 - directus-extension-blog-year-filter =1.0.0 Source cves: CVE-2025-64747 Source advisory: OSV:GHSA-VV2V-PW69-8CRF...
@directus/api (>=15.0.0 <=31.0.0), @linotype/directus-extension-linotype (>=1.2.2 <=1.3.5) +2 more potentially affected by CVE-2025-64746 via directus (>=10.10.0 <=11.12.0)
directus NPM version =10.10.0, =15.0.0, =1.2.2, =1.0.0, =2.0.0 - directus-extension-blog-year-filter =1.0.0 Source cves: CVE-2025-64746 Source advisory: OSV:GHSA-9X5G-62GJ-WQF2...
flowise (>=1.6.1 <=2.2.8), flowise-birat (>=1.0.0 <=1.2.5) +2 more potentially affected by unknown CVE via flowise-ui (>=1.8.4 <=2.2.8)
flowise-ui NPM version =1.8.4, =1.6.1, =1.0.0, =0.0.1, =0.0.2, =0.0.4 Source cves: unknown CVE Source advisory: OSV:GHSA-FJH6-8679-9PCH...
flowise (>=1.6.1 <=2.2.8), flowise-birat (>=1.0.0 <=1.2.5) +2 more potentially affected by unknown CVE via flowise-ui (>=1.8.4 <=2.2.8)
flowise-ui NPM version =1.8.4, =1.6.1, =1.0.0, =0.0.1, =0.0.2, =0.0.4 Source cves: unknown CVE Source advisory: OSV:GHSA-X39M-3393-3QP4...
10minions-engine (>=0.0.1 <=0.0.4), 3ui (>=0.1.0 <=0.1.8) +1277 more potentially affected by CVE-2025-13204 via expr-eval (>=0.12.0 <=2.0.2)
expr-eval NPM version =0.12.0, =0.0.1, =0.1.0, =1.0.2, =1.2.0, =1.0.0, =0.1.4, =0.0.1, =0.4.2, =0.2.3, =0.2.4 - @activepieces/piece-apitable =0.1.5 and more Source cves: CVE-2025-13204 Source advisory: OSV:GHSA-8GW3-RXH4-V6JX...
200-ok-boomer (>=2.0.0 <=2.1.0), 20190403-utils (=1.0.0) +10109 more potentially affected by CVE-2025-64718 via js-yaml (>=0.3.5 <=3.14.1)
js-yaml NPM version =0.3.5, =2.0.0, =1.0.0, =0.0.2, =1.0.0, =0.1.1, =0.1.0, =1.0.0, =0.2.39, =0.0.1, =1.0.2, =2.0.3, =2.0.7 and more Source cves: CVE-2025-64718 Source advisory: OSV:GHSA-MH29-5H37-FV8M...
02.aula (=1.0.0), 0xsodium (>=0.2.0 <=0.14.0) +7962 more potentially affected by CVE-2025-64718 via js-yaml (>=4.0.0 <=4.1.0)
js-yaml NPM version =4.0.0, =0.2.0, =0.0.3, =4.11.0, =0.0.1, =0.1.23, =0.1.4, =6.1.5, =0.2.0, =0.2.0, =1.0.0, =1.1.0 and more Source cves: CVE-2025-64718 Source advisory: OSV:GHSA-MH29-5H37-FV8M...