npm
4,201 tracked vulnerabilities.
CVE-2021-41117
HIGH
keypair < 1.0.4 - Weak RSA Key Generation via Insecure PRNG Seeding
Oct 11, 2021
CVSS 8.7
EPSS 0.03
CVE-2021-23447
MEDIUM
teddy < 0.5.9 - Type Confusion via Array Model Content
Oct 07, 2021
CVSS 5.4
EPSS 0.01
CVE-2021-41109
HIGH
Parse Server <4.10.4 - Info Disclosure
Sep 30, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23446
HIGH
handsontable < 10.0.0 - Regular Expression Denial of Service in isNumeric Helper Function
Sep 29, 2021
CVSS 7.5
EPSS 0.03
CVE-2021-41097
CRITICAL
NUCLEI
Aurelia-path <1.1.7 - Prototype Pollution
Sep 27, 2021
CVSS 9.1
EPSS 0.05
CVE-2021-23445
LOW
datatables.net < 1.11.3 - Cross-Site Scripting via HTML Escape Entities Function
Sep 27, 2021
CVSS 3.1
EPSS 0.02
CVE-2021-3822
HIGH
jsoneditor < 9.5.6 - Denial of Service via Inefficient Regular Expression
Sep 27, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-3820
HIGH
inflect < 0.3.7 - Inefficient Regular Expression Complexity
Sep 27, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-41580
MEDIUM
passport-oauth2 <1.6.1 - Info Disclosure
Sep 27, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-41086
HIGH
jsuites < 4.9.11 - DOM-Based Cross-Site Scripting via Clipboard Content
Sep 21, 2021
CVSS 8.7
EPSS 0.01
CVE-2021-23444
MEDIUM
jointjs < 3.4.2 - Type Confusion via setByPath Function
Sep 21, 2021
CVSS 5.6
EPSS 0.02
CVE-2021-23443
MEDIUM
edge.js < 5.3.2 - Type Confusion via Array Input Bypass
Sep 21, 2021
CVSS 5.4
EPSS 0.01
CVE-2021-39227
MEDIUM
ZRender < 5.2.1 - Prototype Pollution via merge and clone Helper Methods
Sep 17, 2021
CVSS 6.2
EPSS 0.01
CVE-2021-3810
HIGH
code-server < 3.12.0 - Denial of Service via Inefficient Regular Expression Complexity
Sep 17, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-3807
HIGH
ansi-regex - Inefficient Regular Expression Complexity
Sep 17, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-3803
HIGH
nth-check - Inefficient Regular Expression Complexity
Sep 17, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-3805
HIGH
object-path < 0.11.8 - Prototype Pollution
Sep 17, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-3795
HIGH
semver-regex - Inefficient Regular Expression Complexity
Sep 15, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-3801
MEDIUM
prismjs/prism < 1.25.0 - Inefficient Regular Expression Complexity
Sep 15, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-3780
MEDIUM
Peertube < 3.4.0 - Stored Cross-Site Scripting via Video Description
Sep 15, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-3777
HIGH
nodejs-tmpl - Inefficient Regular Expression Complexity
Sep 15, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-40823
MEDIUM
Matrix Javascript SDK <12.4.1 - Info Disclosure
Sep 13, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-3666
CRITICAL
xml_body_parser < 2.0.3 - Prototype Pollution
Sep 13, 2021
CVSS 9.8
EPSS 0.01
CVE-2021-23440
HIGH
set-value < 2.0.1 and 3.0.0-4.0.1 - Type Confusion via Array Path Parameter
Sep 12, 2021
CVSS 7.3
EPSS 0.02
CVE-2021-39199
CRITICAL
remark-html < 13.0.2 - Cross-Site Scripting via Unsanitized HTML Input
Sep 07, 2021
CVSS 10.0
EPSS 0.01
Products
openclaw 433
parse-server 98
flowise 67
n8n 67
directus 53
electron 48
next 47
vm2 41
axios 33
hono 30
undici 30
nocodb 25
pnpm 25
ghost 22
vite 21
tinymce 18
astro 17
ckeditor4 15
fuxa-server 15
jspdf 15
tar 15
joplin 14
liquidjs 14
nodebb 14
protobufjs 14
sequelize 14
angular 13
flowise-components 13
react-router 13
signalk-server 13
Quick Filters