All disclosed vulnerabilities by Snyk

• • M
  Cross-site Scripting (XSS) in drupal-pattern-lab/unified-twig-extensions (composer)

  Discovered by Pierre Rudloff
  9 Dec 2024
• • L
  Cross-site Scripting (XSS) in pattern-lab/drupal-twig-components (composer)

  Discovered by Pierre Rudloff
  9 Dec 2024
• • M
  Server-side Request Forgery (SSRF) in j0k3r/httplug-ssrf-plugin (composer)

  Discovered by Pierre Rudloff
  9 Dec 2024
• • H
  Arbitrary File Write via Archive Extraction (Zip Slip) in luigi (pip)

  Discovered by Ali Razmjoo
  9 Dec 2024
• • M
  Cross-site Scripting (XSS) in aptoma/twig-markdown (composer)

  Discovered by Pierre Rudloff
  9 Dec 2024
• • H
  Regular Expression Denial of Service (ReDoS) in @eslint/plugin-kit (npm)

  Discovered by Rongchen Li
  18 Nov 2024
• • M
  Arbitrary Code Execution in dom-iterator (npm)

  Discovered by NodeMedic-FINE
  12 Nov 2024
• • H
  Directory Traversal in source-map-support (npm)

  Discovered by Miguel Coimbra
  12 Nov 2024
• • M
  Cross-site Scripting (XSS) in tarteaucitronjs (npm)

  Discovered by Pierre Rudloff
  11 Nov 2024
• • H
  Regular Expression Denial of Service (ReDoS) in cross-spawn (npm)

  Discovered by Rongchen Li
  7 Nov 2024