Vulnerability DB

Detailed information and remediation guidance for known vulnerabilities.
Find out if you have vulnerabilities that put you at risk Test your code
Vulnerability Affects Type Published
  • H
Arbitrary Command Injection
macaddress <0.2.9 npm 13 May, 2018
  • H
Directory Traversal
localhost-now * npm 13 May, 2018
  • H
Directory Traversal
html-pages <2.1.0 npm 13 May, 2018
  • H
Arbitrary Command Injection
fs-path * npm 13 May, 2018
  • H
Arbitrary Command Injection
command-exists <1.2.4 npm 13 May, 2018
  • M
Uninitialized Memory Exposure
byte <1.4.1 npm 13 May, 2018
  • H
Arbitrary Command Injection
buttle * npm 13 May, 2018
  • H
Uninitialized Memory Exposure
base64url <3.0.0 npm 13 May, 2018
  • H
Uninitialized Memory Exposure
base64-url <2.0.0 npm 13 May, 2018
  • H
Directory Traversal
angular-http-server <1.4.4 npm 13 May, 2018
  • H
Directory Traversal
superstatic <5.0.2 npm 10 May, 2018
  • M
SQL Injection
squel * npm 09 May, 2018
  • H
Sandbox Bypass
constantinople <3.1.1 npm 09 May, 2018
  • H
Malicious Package
http-fetch-cookies * npm 03 May, 2018
  • H
Malicious Package
getcookies * npm 03 May, 2018
  • H
Malicious Package
express-cookies * npm 03 May, 2018
  • M
Regular Expression Denial of Service (ReDoS)
ua-parser-js <0.7.18 npm 02 May, 2018
  • H
Cross-site Scripting (XSS)
react-svg <2.2.18 npm 02 May, 2018
  • M
Cross-site Scripting (XSS)
ckeditor-dev >=4.5.11 <4.9.2 npm 02 May, 2018
  • M
Regular expression Denial of Service (ReDoS)
rgb2hex <0.1.6 npm 30 Apr, 2018
  • H
Regular Expression Denial of Service (ReDoS)
foreman <3.0.1 npm 30 Apr, 2018
  • M
Uninitialized Memory Exposure
concat-with-sourcemaps <1.0.6 npm 30 Apr, 2018
  • M
Uninitialized Memory Exposure
atob <2.1.0 npm 30 Apr, 2018
  • H
Directory Traversal
mcstatic * npm 26 Apr, 2018
  • H
Cross-site Scripting (XSS)
cloudcmd <9.1.6 npm 26 Apr, 2018
  • H
Prototype Override
querystringify <2.0.0 npm 26 Apr, 2018
  • H
Arbitrary Command Injection
pdfinfojs <0.4.1 npm 25 Apr, 2018
  • L
Prototype Pollution
deep-extend <0.5.1 npm 25 Apr, 2018
  • M
Insecure Credential Comparison
safe-compare >=1.1.0 <1.1.2 npm 17 Apr, 2018
  • L
Cross-site Scripting (XSS)
public <=0.1.3 npm 17 Apr, 2018