Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • M
Prototype Pollution
utils-extend * npm 23 Mar, 2020
  • H
Machine-In-The-Middle
lix * npm 22 Mar, 2020
  • M
Cross-site Sripting (XSS)
htmr <0.8.7 npm 20 Mar, 2020
  • H
Command Injection
node-rules >=3.0.0 <5.0.0 npm 17 Mar, 2020
  • M
Prototype Pollution
yargs-parser <13.1.2,>=14.0.0 <15.0.1,>=16.0.0 <18.1.1 npm 16 Mar, 2020
  • M
Command Injection
gulp-styledocco * npm 13 Mar, 2020
  • M
Command Injection
docker-compose-remote-api * npm 13 Mar, 2020
  • M
Command Injection
gulp-tape * npm 13 Mar, 2020
  • M
Command Injection
closure-compiler-stream * npm 13 Mar, 2020
  • M
Command Injection
pulverizr * npm 13 Mar, 2020
  • M
Command Injection
node-prompt-here * npm 13 Mar, 2020
  • M
Command Injection
gulp-scss-lint * npm 13 Mar, 2020
  • M
Prototype Pollution
querymen <2.1.4 npm 12 Mar, 2020
  • M
Prototype Pollution
dojo <1.11.10,>=1.12.0 <1.12.8,>=1.13.0 <1.13.7,>=1.14.0 <1.14.6,>=1.15.0 <1.15.3,>=1.16.0 <1.16.2 npm 11 Mar, 2020
  • M
Prototype Pollution
dojox <1.11.10,>=1.12.0 <1.12.8,>=1.13.0 <1.13.7,>=1.14.0 <1.14.6,>=1.15.0 <1.15.3,>=1.16.0 <1.16.2 npm 11 Mar, 2020
  • M
Prototype Pollution
minimist <0.2.1,>=1.0.0 <1.2.3 npm 11 Mar, 2020
  • M
Command Injection
blamer <1.0.1 npm 09 Mar, 2020
  • M
Server Side Request Forgery (SSRF)
ghost <3.10.0 npm 09 Mar, 2020
  • M
Cross-site Scripting (XSS)
ckeditor4-dev <4.14.0 npm 08 Mar, 2020
  • M
Prototype Pollution
utilitify <1.0.3 npm 07 Mar, 2020
  • H
Regular Expression Denial of Service (ReDoS)
acorn >=5.5.0 <5.7.4,>=6.0.0 <6.4.1,>=7.0.0 <7.1.1 npm 07 Mar, 2020
  • H
Improper Access Control
vp-toolkit <0.2.2 npm 06 Mar, 2020
  • H
Improper Access Control
vp-toolkit <0.2.2 npm 06 Mar, 2020
  • M
Prototype Pollution
vega-util <1.13.1 npm 05 Mar, 2020
  • M
Cross-site Scripting (XSS)
jquery-confirm * npm 05 Mar, 2020
  • M
Prototype Pollution
notevil <1.3.3 npm 04 Mar, 2020
  • H
Improper Input Validation
parse-server <4.1.0 npm 04 Mar, 2020
  • H
Server Side Request Forgery (SSRF)
uppy <1.9.3 npm 02 Mar, 2020
  • H
Improper Authorization
react-oauth-flow >=0.0.0 npm 28 Feb, 2020
  • H
Prototype Pollution
fastify <1.0.5 npm 28 Feb, 2020