rosa.src vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the rosa.src package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
M CVE-2025-68121	*
M Directory Traversal	*
M Resource Exhaustion	*
H Allocation of Resources Without Limits or Throttling	*
M Information Exposure	*
M Resource Exhaustion	*
L Resource Exhaustion	*
M Cross-site Scripting (XSS)	*
M Time-of-check Time-of-use (TOCTOU)	*
M Use of Uninitialized Variable	*
M Resource Exhaustion	*
M CVE-2022-41715	*
M Resource Exhaustion	*
M Directory Traversal	*
M Resource Exhaustion	*
M HTTP Request Smuggling	*
H Resource Exhaustion	*
M Allocation of Resources Without Limits or Throttling	*
H Improper Authorization	*
H Allocation of Resources Without Limits or Throttling	*
H Asymmetric Resource Consumption (Amplification)	*
L Improper Handling of Exceptional Conditions	*
M HTTP Request Smuggling	*
L Insufficient Entropy	*
M Improper Certificate Validation	*
L Improper Verification of Cryptographic Signature	*
M Improper Input Validation	*
M SQL Injection	*
M Improper Validation of Syntactic Correctness of Input	*
M Expected Behavior Violation	*
M CVE-2025-4673	*
M Improper Output Neutralization for Logs	*
M Misinterpretation of Input	*
M Allocation of Resources Without Limits or Throttling	*
M Creation of Immutable Text Using String Concatenation	*
M Allocation of Resources Without Limits or Throttling	*
M Reachable Assertion	*
M Arbitrary Code Injection	*
M Information Exposure	*
M Information Exposure	*
M Cross-site Scripting (XSS)	*
M Allocation of Resources Without Limits or Throttling	*
M Cross-site Scripting (XSS)	*
M Resource Exhaustion	*
M Buffer Overflow	*
M Buffer Access with Incorrect Length Value	*
M Resource Exhaustion	*
M Integer Overflow or Wraparound	*
M Expected Behavior Violation	*
M Race Condition	*
M Improper Handling of Highly Compressed Data (Data Amplification)	*
M Cross-site Scripting (XSS)	*
M Resource Exhaustion	*
M Improper Certificate Validation	*
M Improper Input Validation	*
M Information Exposure	*
M Information Exposure	*
M Resource Exhaustion	*
M Loop with Unreachable Exit Condition ('Infinite Loop')	*
M Improperly Controlled Sequential Memory Allocation	*
M Resource Exhaustion	*
M Information Exposure	*
M Improperly Controlled Sequential Memory Allocation	*
M HTTP Response Splitting	*
M Improperly Controlled Sequential Memory Allocation	*
M Improperly Controlled Sequential Memory Allocation	*
M Improperly Controlled Sequential Memory Allocation	*
M HTTP Request Smuggling	*
H Excessive Platform Resource Consumption within a Loop	*
H Memory Leak	*
H Resource Exhaustion	*
H Resource Exhaustion	*
H Uncontrolled Recursion	*

Vulnerability

Vulnerable Version

CVE-2025-68121