26517 matches found
@akylas/nativescript-sqlite (>=3.2.0 <=3.3.11) potentially affected by unknown CVE via @nativescript-community/typeorm (=0.2.29)
@nativescript-community/typeorm NPM version =0.2.29 is affected by a known vulnerability. The following packages have a transitive dependency on @nativescript-community/typeorm and may be impacted: - @akylas/nativescript-sqlite =3.2.0, =3.3.11 Source cves: unknown CVE Source advisory:...
@opencloning/opencloning-elabftw (>=1.6.0 <=1.9.2), @opencloning/opencloningdb (>=1.7.1 <=1.8.3) +4 more potentially affected by unknown CVE via @teselagen/ui (>=0.0.2 <=0.8.6)
@teselagen/ui NPM version =0.0.2, =1.6.0, =1.7.1, =1.0.1, =0.0.18, =18.3.3, =18.3.6, =18.3.24 Source cves: unknown CVE Source advisory: SNYK:JS-TESELAGENUI-12761782...
@teselagen/ove (>=0.0.18 <=0.8.25), @teselagen/ui (>=0.0.23 <=0.10.16) +4 more potentially affected by unknown CVE via @teselagen/file-utils (>=0.2.1 <=0.3.20)
@teselagen/file-utils NPM version =0.2.1, =0.0.18, =0.0.23, =15.0.0, =18.3.6, =30.14.19, =30.15.8 Source cves: unknown CVE Source advisory: SNYK:JS-TESELAGENFILEUTILS-12761783...
@lblod/ember-rdfa-editor (>=12.4.0-dev.1f5a5b71099288ff594f4d5de652b8af64917693 <=13.10.2) potentially affected by unknown CVE via ember-headless-form (=1.1.1)
ember-headless-form NPM version =1.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on ember-headless-form and may be impacted: - @lblod/ember-rdfa-editor =12.4.0-dev.1f5a5b71099288ff594f4d5de652b8af64917693, =13.10.2 Source cves: unknown CVE Source...
@nativescript-community/ble (>=3.1.8 <=3.1.22), @nativescript-community/sentry (>=4.6.19 <=4.6.49) +14 more potentially affected by unknown CVE via @nativescript-community/arraybuffers (=1.1.5)
@nativescript-community/arraybuffers NPM version =1.1.5 is affected by a known vulnerability. The following packages have a transitive dependency on @nativescript-community/arraybuffers and may be impacted: - @nativescript-community/ble =3.1.8, =4.6.19, =4.4.4, =1.0.11, =0.0.27, =6.0.0, =6.0.0,...
open-vector-editor (>=10.1.61 <=18.3.6), ove-electron (=1.2.8) +2 more potentially affected by unknown CVE via tg-client-query-builder (=2.14.3)
tg-client-query-builder NPM version =2.14.3 is affected by a known vulnerability. The following packages have a transitive dependency on tg-client-query-builder and may be impacted: - open-vector-editor =10.1.61, =18.3.6, =29.0.7, =30.15.8 Source cves: unknown CVE Source advisory:...
@aadharsh/orion-alpine-x934x (>=1.0.0 <=1.0.6), @idvidrine/create-express-app (>=1.0.0 <=1.1.5) +5 more potentially affected by CVE-2025-59364 via express-xss-sanitizer (>=1.2.1 <=2.0.2)
express-xss-sanitizer NPM version =1.2.1, =1.0.0, =1.0.0, =2.0.0, =1.0.0, =0.1.0, =1.0.0, =1.14.31, =1.15.2 Source cves: CVE-2025-59364 Source advisory: SNYK:JS-EXPRESSXSSSANITIZER-12670886...
3m (=0.1.0), aaa-ml-datasets-course (=1.0.0) +1855 more potentially affected by CVE-2025-6051 via transformers (>=2.10.0 <=4.52.4)
transformers PYPI version =2.10.0, =0.0.4.80, =0.1.0, =0.1.1, =0.1.0, =0.0.3, =0.0.1, =0.0.0.dev20230804, =0.1.0, =0.3.0, =0.1.0, =0.2.5, =0.2.11 and more Source cves: CVE-2025-6051 Source advisory: OSV:GHSA-RCV9-QM8P-9P6J...
3m (=0.1.0), aaa-ml-datasets-course (=1.0.0) +1759 more potentially affected by CVE-2025-6051 via transformers (>=4.0.0 <=4.52.4)
transformers PYPI version =4.0.0, =0.0.4.80, =0.1.0, =0.1.1, =0.1.0, =0.0.3, =0.0.0.dev20230804, =0.1.0, =0.3.0, =0.1.0, =0.2.5, =0.0.1, =0.1.2 and more Source cves: CVE-2025-6051 Source advisory: SNYK:PYTHON-TRANSFORMERS-12670879...
archivefs (>=1.0.0 <=1.0.1), arcon_compiler (>=0.1.0 <=0.1.1) +82 more potentially affected by unknown CVE via daemonize (>=0.2.3 <=0.5.0)
daemonize CARGO version =0.2.3, =1.0.0, =0.1.0, =0.3.1, =0.2.0, =0.5.0, =3.0.0, =0.1.0, =0.1.3, =0.0.1, =0.1.0, =0.1.2, =0.1.0, =0.1.1 - demoscene =0.1.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0069...
0agent (>=1.0.1 <=1.1.5), 0dot (=0.6.0) +60799 more potentially affected by CVE-2025-59139 via hono (>=0.5.10 <=4.9.6)
hono NPM version =0.5.10, =1.0.1, =1.0.0, =0.1.0, =0.1.0, =0.1.6, =0.1.0, =2.0.0, =1.0.0, =0.3.2, =0.1.0, =0.3.8 and more Source cves: CVE-2025-59139 Source advisory: OSV:GHSA-92VJ-G62V-JQHH...
com.liferay:com.liferay.my.account.web (>=1.0.0 <=1.0.12), com.liferay:com.liferay.portal.settings.web (>=1.0.0 <=1.2.4) potentially affected by CVE-2025-43787 via com.liferay:com.liferay.users.admin.web (>=1.0.0 <=2.3.0)
com.liferay:com.liferay.users.admin.web MAVEN version =1.0.0, =1.0.0, =1.0.0, =1.2.4 Source cves: CVE-2025-43787 Source advisory: SNYK:JAVA-COMLIFERAY-12704859...
0agent (>=1.0.1 <=1.1.5), 0dot (=0.6.0) +60584 more potentially affected by CVE-2025-59139 via hono (>=4.0.0 <=4.9.6)
hono NPM version =4.0.0, =1.0.1, =1.0.0, =0.1.0, =0.1.0, =0.1.6, =0.1.0, =2.0.0, =1.0.0, =0.3.2, =0.1.0, =0.3.8 and more Source cves: CVE-2025-59139 Source advisory: SNYK:JS-HONO-12668833...
3m (=0.1.0), aaa-ml-datasets-course (=1.0.0) +1855 more potentially affected by CVE-2025-6638 via transformers (>=2.10.0 <=4.52.4)
transformers PYPI version =2.10.0, =0.0.4.80, =0.1.0, =0.1.1, =0.1.0, =0.0.3, =0.0.1, =0.0.0.dev20230804, =0.1.0, =0.3.0, =0.1.0, =0.2.5, =0.2.11 and more Source cves: CVE-2025-6638 Source advisory: OSV:GHSA-59P9-H35M-WG4G...
3m (=0.1.0), aaa-ml-datasets-course (=1.0.0) +1759 more potentially affected by CVE-2025-6638 via transformers (>=4.0.0 <=4.52.4)
transformers PYPI version =4.0.0, =0.0.4.80, =0.1.0, =0.1.1, =0.1.0, =0.0.3, =0.0.0.dev20230804, =0.1.0, =0.3.0, =0.1.0, =0.2.5, =0.0.1, =0.1.2 and more Source cves: CVE-2025-6638 Source advisory: SNYK:PYTHON-TRANSFORMERS-12668722...
@0xsquid/deposit-widget (>=0.0.2-beta.0 <=0.2.0), @0xsquid/react-hooks (>=8.0.5 <=9.0.0-beta-bump-wagmi-viem.2) +805 more potentially affected by CVE-2025-58754 via axios (>=1.0.0 <=1.11.0)
axios NPM version =1.0.0, =0.0.2-beta.0, =8.0.5, =6.1.0, =0.0.1-alpha.3, =0.1.6-alpha.11, =0.7.0, =0.0.7, =1.3.0, =5.1.2, =7.8.4-0055f5bc.0, =7.12.1-f825bd46.0 - @amityco/ts-sdk-react-native =7.12.1-622940cf.0 and more Source cves: CVE-2025-58754 Source advisory: OSV:GHSA-4HJH-WCWX-XVWJ...
@0xjwlabs/discord-rpc (=0.1.0), @0xsquid/react-hooks (>=1.0.0 <=2.0.0) +681 more potentially affected by CVE-2025-58754 via axios (>=0.28.0 <=0.30.1)
axios NPM version =0.28.0, =1.0.0, =3.0.0-beta.0, =2.10.1, =1.0.0, =0.1.0, =13.0.0, =10.0.0, =10.0.0, =10.0.0, =10.0.0, =10.0.0, =10.0.0, =16.5.4 and more Source cves: CVE-2025-58754 Source advisory: OSV:GHSA-4HJH-WCWX-XVWJ...
abi-ds-utils (=1.0.1), acceldata-o2a (=1.0.0) +133 more potentially affected by CVE-2025-58065 via flask-appbuilder (>=4.1.2 <=4.6.3)
flask-appbuilder PYPI version =4.1.2, =0.9.5.1rc1, =1.4.0.3.post4, =1.4.0.3.post3, =0.2.1, =0.4.0, =0.1.0a1, =0.8.2, =0.1.1, =0.1.1, =1.10.6 - airflow-cyberark-secrets-backend =0.1.0 and more Source cves: CVE-2025-58065 Source advisory: SNYK:PYTHON-FLASKAPPBUILDER-12670878...
abi-ds-utils (=1.0.1), acceldata-o2a (=1.0.0) +250 more potentially affected by CVE-2025-58065 via flask-appbuilder (>=1.10.0 <=4.6.3)
flask-appbuilder PYPI version =1.10.0, =0.8.44.4, =1.4.0.3.post4, =1.4.0.3.post3, =0.1.0rc3, =0.1.0, =2022.9.19, =0.2.1, =0.2.9b1, =1.0.7, =0.4.0, =0.1.0a1, =0.1.0a7 and more Source cves: CVE-2025-58065 Source advisory: OSV:GHSA-765J-9R45-W2Q2...
better-config-loader (>=0.1.4 <=0.2.4), brainwires-skills (>=0.2.0 <=0.6.0) +61 more potentially affected by unknown CVE via serde_yml (>=0.0.10 <=0.0.9)
serdeyml CARGO version =0.0.10, =0.1.4, =0.2.0, =0.33.0, =0.14.0, =0.14.0, =0.3.0, =0.1.5, =0.9.0, =0.3.0, =0.8.0, =0.3.2, =0.1.0, =0.6.1 - fastconfig =1.2.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0068...
better-config-loader (>=0.1.4 <=0.2.4), brainwires-skills (>=0.2.0 <=0.6.0) +62 more potentially affected by unknown CVE via libyml (>=0.0.1 <=0.0.5)
libyml CARGO version =0.0.1, =0.1.4, =0.2.0, =0.33.0, =0.14.0, =0.14.0, =0.3.0, =0.1.5, =0.9.0, =0.3.0, =0.8.0, =0.3.2, =0.1.0, =0.6.1 - fastconfig =1.2.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0067...
0xble (>=14.0.0 <=21.9.1), 100xchat (>=1.1.5 <=1.3.5) +4341 more potentially affected by CVE-2025-9910 via jsondiffpatch (>=0.0.11 <=0.6.2)
jsondiffpatch NPM version =0.0.11, =14.0.0, =1.1.5, =1.0.0, =1.0.0, =1.0.4, =0.10.6, =0.1.6, =0.0.0-dev-nicolas-fix-publishing-aurora-mcp-1750279939, =0.0.65, =1.0.1, =0.1.0-alpha.1, =0.1.0, =0.3.1, =0.5.10, =1.2.4 and more Source cves: CVE-2025-9910 Source advisory: OSV:GHSA-33VC-WFWW-VJFV...
@manniwatch/client-desktop (>=0.30.0 <=0.30.1), @manniwatch/client-ng (>=0.30.0 <=0.30.1) +1 more potentially affected by CVE-2025-59052 via @angular/ssr (>=19.0.5 <=19.2.1)
@angular/ssr NPM version =19.0.5, =0.30.0, =0.30.0, =19.0.0-alpha.20, =19.0.0-alpha.24 Source cves: CVE-2025-59052 Source advisory: OSV:GHSA-68X2-MX4Q-78M7...
@adel-t/angular-ssr (>=1.0.0 <=1.0.2), @angularexpert/my-workspace (=0.0.0) +39 more potentially affected by CVE-2025-59052 via @angular/ssr (>=17.0.5 <=18.2.13)
@angular/ssr NPM version =17.0.5, =1.0.0, =1.0.0, =0.0.1, =0.0.1, =8.0.0, =0.0.0, =0.0.2, =0.0.11 - atlassian-components-library =0.0.0 - bwiser-workspace =0.0.6 - bworkman-resume =0.0.0 and more Source cves: CVE-2025-59052 Source advisory: OSV:GHSA-68X2-MX4Q-78M7...
@cosla/sensemaking-web-ui (>=1.0.0 <=1.0.4) potentially affected by CVE-2025-59052 via @angular/ssr (=18.2.13)
@angular/ssr NPM version =18.2.13 is affected by a known vulnerability. The following packages have a transitive dependency on @angular/ssr and may be impacted: - @cosla/sensemaking-web-ui =1.0.0, =1.0.4 Source cves: CVE-2025-59052 Source advisory: SNYK:JS-ANGULARSSR-12613576...
@manniwatch/client-desktop (>=0.30.0 <=0.30.1), @manniwatch/client-ng (>=0.30.0 <=0.30.1) +1 more potentially affected by CVE-2025-59052 via @angular/ssr (>=19.0.5 <=19.2.1)
@angular/ssr NPM version =19.0.5, =0.30.0, =0.30.0, =19.0.0-alpha.20, =19.0.0-alpha.24 Source cves: CVE-2025-59052 Source advisory: SNYK:JS-ANGULARSSR-12613576...
ak-frame-extractor (>=1.0.0 <=1.3.0), ak-video-analyser (=0.0.2) +111 more potentially affected by CVE-2025-59042 via pyinstaller (>=3.0.0 <=5.9.0)
pyinstaller PYPI version =3.0.0, =1.0.0, =0.2.4, =0.1.0, =0.2.0, =0.0.25, =0.1.0, =0.1.0, =0.99.6.2, =0.1.0, =0.3.0, =0.6.0 and more Source cves: CVE-2025-59042 Source advisory: OSV:GHSA-P2XP-XX3R-MFFC...
@4via6/relay (>=1.0.0 <=1.1.3), @axonpush/wizard (>=0.0.1 <=0.0.4) +10 more potentially affected by CVE-2025-59041 via @anthropic-ai/claude-code (>=0.2.126 <=0.2.35)
@anthropic-ai/claude-code NPM version =0.2.126, =1.0.0, =0.0.1, =0.0.55, =1.0.0, =0.0.1, =0.0.1, =1.8.0, =1.4.0, =0.0.1, =0.0.1, =0.0.5 Source cves: CVE-2025-59041 Source advisory: OSV:GHSA-J4H9-WV2M-WRF7...
@lightnet/decap-admin (>=2.0.9 <=2.4.1), trivet (>=2.1.0 <=2.1.1) potentially affected by CVE-2025-57520 via decap-cms (>=3.0.12 <=3.14.0)
decap-cms NPM version =3.0.12, =2.0.9, =2.1.0, =2.1.1 Source cves: CVE-2025-57520 Source advisory: OSV:GHSA-XP8G-32QH-MV28...
@lightnet/decap-admin (>=2.0.9 <=2.4.1), trivet (>=2.1.0 <=2.1.1) potentially affected by CVE-2025-57520 via decap-cms (>=3.0.12 <=3.14.0)
decap-cms NPM version =3.0.12, =2.0.9, =2.1.0, =2.1.1 Source cves: CVE-2025-57520 Source advisory: SNYK:JS-DECAPCMS-12997397...
@webrecorder/archivewebpage (>=0.9.2 <=0.12.8) potentially affected by CVE-2025-58765 via replaywebpage (=1.8.17)
replaywebpage NPM version =1.8.17 is affected by a known vulnerability. The following packages have a transitive dependency on replaywebpage and may be impacted: - @webrecorder/archivewebpage =0.9.2, =0.12.8 Source cves: CVE-2025-58765 Source advisory: OSV:GHSA-W765-JM6W-4HHJ...
@cllu/awp-sw (=0.4.4) potentially affected by CVE-2025-58765 via @webrecorder/wabac (=2.17.3)
@webrecorder/wabac NPM version =2.17.3 is affected by a known vulnerability. The following packages have a transitive dependency on @webrecorder/wabac and may be impacted: - @cllu/awp-sw =0.4.4 Source cves: CVE-2025-58765 Source advisory: OSV:GHSA-W765-JM6W-4HHJ...
@4via6/relay (>=1.0.0 <=1.1.3), @axonpush/wizard (>=0.0.1 <=0.0.4) +10 more potentially affected by CVE-2025-58764 via @anthropic-ai/claude-code (>=0.2.126 <=0.2.35)
@anthropic-ai/claude-code NPM version =0.2.126, =1.0.0, =0.0.1, =0.0.55, =1.0.0, =0.0.1, =0.0.1, =1.8.0, =1.4.0, =0.0.1, =0.0.1, =0.0.5 Source cves: CVE-2025-58764 Source advisory: OSV:GHSA-QXFV-FCPC-W36X...
com.alilitech:boot-plus-generator (>=1.1.0 <=1.3.7), com.alilitech:boot-plus-log (>=1.2.0 <=2.0.5) +33 more potentially affected by CVE-2025-58754 via org.webjars.npm:axios (>=0.15.3 <=0.26.0)
org.webjars.npm:axios MAVEN version =0.15.3, =1.1.0, =1.2.0, =1.1.0, =1.0.0, =1.0.1, =1.6.1, =1.1.71, =1.1.521 - org.webjars.npm:googlemapsgoogle-maps-services-js =3.1.13 - org.webjars.npm:grot-table =1.6.1 and more Source cves: CVE-2025-58754 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-12613774...
@0xsquid/deposit-widget (>=0.0.2-beta.0 <=0.2.0), @0xsquid/react-hooks (>=8.0.5 <=9.0.0-beta-bump-wagmi-viem.2) +810 more potentially affected by CVE-2025-58754 via axios (>=1.0.0-alpha.1 <=1.11.0)
axios NPM version =1.0.0-alpha.1, =0.0.2-beta.0, =8.0.5, =6.1.0, =0.0.1-alpha.3, =0.1.6-alpha.11, =0.7.0, =0.0.7, =1.3.0, =5.1.2, =7.8.4-0055f5bc.0, =7.12.1-f825bd46.0 - @amityco/ts-sdk-react-native =7.12.1-622940cf.0 and more Source cves: CVE-2025-58754 Source advisory: SNYK:JS-AXIOS-12613773...
arbor-ai (>=0.1.5 <=0.1.14), coreason-runtime (>=0.1.0 <=0.31.0) +10 more potentially affected by CVE-2025-10164 via sglang (>=0.4.5 <=0.5.2)
sglang PYPI version =0.4.5, =0.1.5, =0.1.0, =1.1.0, =2.0.0b40, =0.0.1, =0.1.0, =0.1.0, =0.0.1.post1, =0.0.0, =0.8.0, =0.10.7 Source cves: CVE-2025-10164 Source advisory: OSV:GHSA-9W53-XR52-MWGJ...
2404-segmentation-pipeline (>=0.1.0 <=1.0.0), abdomenatlas (>=0.1.0 <=0.1.1) +44 more potentially affected by CVE-2025-58757 via monai (>=1.0.0 <=1.5.0)
monai PYPI version =1.0.0, =0.1.0, =0.1.0, =0.0.1, =1.0.0, =0.0.0, =0.0.1, =2.0.1, =0.1.5, =0.4.2, =1.0.12, =1.0.0, =0.0.5, =0.0.6 and more Source cves: CVE-2025-58757 Source advisory: SNYK:PYTHON-MONAI-12670797...
2404-segmentation-pipeline (>=0.1.0 <=1.0.0), abdomenatlas (>=0.1.0 <=0.1.1) +58 more potentially affected by CVE-2025-58757 via monai (>=0.4.0 <=1.5.0)
monai PYPI version =0.4.0, =0.1.0, =0.1.0, =0.0.1, =1.0.0, =0.0.0, =0.0.1, =2.0.1, =0.1.5, =0.4.2, =0.1.0, =1.0.12, =1.0.0, =1.2.0 and more Source cves: CVE-2025-58757 Source advisory: OSV:GHSA-P8CM-MM2V-GWJM...
2404-segmentation-pipeline (>=0.1.0 <=1.0.0), abdomenatlas (>=0.1.0 <=0.1.1) +44 more potentially affected by CVE-2025-58756 via monai (>=1.0.0 <=1.5.0)
monai PYPI version =1.0.0, =0.1.0, =0.1.0, =0.0.1, =1.0.0, =0.0.0, =0.0.1, =2.0.1, =0.1.5, =0.4.2, =1.0.12, =1.0.0, =0.0.5, =0.0.6 and more Source cves: CVE-2025-58756 Source advisory: SNYK:PYTHON-MONAI-12670800...
2404-segmentation-pipeline (>=0.1.0 <=1.0.0), abdomenatlas (>=0.1.0 <=0.1.1) +58 more potentially affected by CVE-2025-58756 via monai (>=0.4.0 <=1.5.0)
monai PYPI version =0.4.0, =0.1.0, =0.1.0, =0.0.1, =1.0.0, =0.0.0, =0.0.1, =2.0.1, =0.1.5, =0.4.2, =0.1.0, =1.0.12, =1.0.0, =1.2.0 and more Source cves: CVE-2025-58756 Source advisory: OSV:GHSA-6VM5-6JV9-RJPJ...
2404-segmentation-pipeline (>=0.1.0 <=1.0.0), abdomenatlas (>=0.1.0 <=0.1.1) +58 more potentially affected by CVE-2025-58755 via monai (>=0.4.0 <=1.5.0)
monai PYPI version =0.4.0, =0.1.0, =0.1.0, =0.0.1, =1.0.0, =0.0.0, =0.0.1, =2.0.1, =0.1.5, =0.4.2, =0.1.0, =1.0.12, =1.0.0, =1.2.0 and more Source cves: CVE-2025-58755 Source advisory: OSV:GHSA-X6WW-PF9M-M73M...
2404-segmentation-pipeline (>=0.1.0 <=1.0.0), abdomenatlas (>=0.1.0 <=0.1.1) +44 more potentially affected by CVE-2025-58755 via monai (>=1.0.0 <=1.5.0)
monai PYPI version =1.0.0, =0.1.0, =0.1.0, =0.0.1, =1.0.0, =0.0.0, =0.0.1, =2.0.1, =0.1.5, =0.4.2, =1.0.12, =1.0.0, =0.0.5, =0.0.6 and more Source cves: CVE-2025-58755 Source advisory: SNYK:PYTHON-MONAI-12670016...
@altipla/directus-sdk-utils (=0.7.2), @angular/build (>=20.2.0 <=21.0.0-rc.1) +48 more potentially affected by CVE-2025-58751 via vite (>=7.1.0 <=7.1.4)
vite NPM version =7.1.0, =20.2.0, =2.1.2-alpha.0, =0.0.0, =2.14.0, =5.0.0-beta.4, =30.0.0, =16.0.1, =2.19.8, =2.19.8, =14.314.0, =9.6.3, =0.0.12, =2.14.2, =2.14.4 and more Source cves: CVE-2025-58751 Source advisory: OSV:GHSA-G4JQ-H2W9-997C...
@1771technologies/oneplay (>=0.0.1 <=0.0.6), @aicblock/cli (>=1.0.0 <=1.0.1) +159 more potentially affected by CVE-2025-58751 via vite (>=6.0.0 <=6.3.5)
vite NPM version =6.0.0, =0.0.1, =1.0.0, =1.0.0, =0.2.0, =4.25.19-patch.2, =19.1.0, =0.55.0, =0.21.2-4.1, =0.4.2, =0.1.10, =0.0.1, =1.0.0, =1.0.3 and more Source cves: CVE-2025-58751 Source advisory: OSV:GHSA-G4JQ-H2W9-997C...
@angular/build (>=20.1.0 <=20.2.0-next.2), @atomazing-org/super-app-host (>=0.0.4 <=0.0.8) +55 more potentially affected by CVE-2025-58751 via vite (>=7.0.0 <=7.0.6)
vite NPM version =7.0.0, =20.1.0, =0.0.4, =0.2.9, =1.190.0, =0.1.0, =0.0.1750946288791, =0.0.2, =0.0.7, =0.0.2, =0.0.1, =0.1.34, =0.1.35 and more Source cves: CVE-2025-58751 Source advisory: OSV:GHSA-G4JQ-H2W9-997C...
@angular/build (>=20.1.0 <=20.2.0-next.2), @atomazing-org/super-app-host (>=0.0.4 <=0.0.8) +55 more potentially affected by CVE-2025-58752 via vite (>=7.0.0 <=7.0.6)
vite NPM version =7.0.0, =20.1.0, =0.0.4, =0.2.9, =1.190.0, =0.1.0, =0.0.1750946288791, =0.0.2, =0.0.7, =0.0.2, =0.0.1, =0.1.34, =0.1.35 and more Source cves: CVE-2025-58752 Source advisory: OSV:GHSA-JQFW-VQ24-V9C3...
@altipla/directus-sdk-utils (=0.7.2), @angular/build (>=20.2.0 <=21.0.0-rc.1) +48 more potentially affected by CVE-2025-58752 via vite (>=7.1.0 <=7.1.4)
vite NPM version =7.1.0, =20.2.0, =2.1.2-alpha.0, =0.0.0, =2.14.0, =5.0.0-beta.4, =30.0.0, =16.0.1, =2.19.8, =2.19.8, =14.314.0, =9.6.3, =0.0.12, =2.14.2, =2.14.4 and more Source cves: CVE-2025-58752 Source advisory: OSV:GHSA-JQFW-VQ24-V9C3...
@1771technologies/oneplay (>=0.0.1 <=0.0.6), @aicblock/cli (>=1.0.0 <=1.0.1) +159 more potentially affected by CVE-2025-58752 via vite (>=6.0.0 <=6.3.5)
vite NPM version =6.0.0, =0.0.1, =1.0.0, =1.0.0, =0.2.0, =4.25.19-patch.2, =19.1.0, =0.55.0, =0.21.2-4.1, =0.4.2, =0.1.10, =0.0.1, =1.0.0, =1.0.3 and more Source cves: CVE-2025-58752 Source advisory: OSV:GHSA-JQFW-VQ24-V9C3...
@cllu/awp-sw (=0.4.4) potentially affected by CVE-2025-58765 via @webrecorder/wabac (=2.17.3)
@webrecorder/wabac NPM version =2.17.3 is affected by a known vulnerability. The following packages have a transitive dependency on @webrecorder/wabac and may be impacted: - @cllu/awp-sw =0.4.4 Source cves: CVE-2025-58765 Source advisory: SNYK:JS-WEBRECORDERWABAC-12670884...
arbor-ai (>=0.1.5 <=0.1.14), coreason-runtime (>=0.1.0 <=0.31.0) +9 more potentially affected by CVE-2025-10164 via sglang (>=0.4.6.post5 <=0.5.2)
sglang PYPI version =0.4.6.post5, =0.1.5, =0.1.0, =1.1.0, =2.0.0b40, =0.0.1, =0.1.0, =0.1.0, =0.0.1.post1, =0.0.0, =0.8.0, =0.10.7 Source cves: CVE-2025-10164 Source advisory: SNYK:PYTHON-SGLANG-12705358...