About Snyk
Find out if you have vulnerabilities that put you at risk
Test your applications
Toggle filtering controls
Expand this section
PACKAGE MANAGER
any
cocoapods
Composer
Go
hex
Linux
Maven
npm
NuGet
pip
RubyGems
Unmanaged (C/C++)
Report a new vulnerability
VULNERABILITY
AFFECTS
TYPE
PUBLISHED
C
Arbitrary File Upload
formidable
Open this link in a new tab
<3.2.4
npm
19 May 2022
M
Missing Cryptographic Step
cassproject
Open this link in a new tab
<1.5.8
npm
19 May 2022
M
Cross-site Scripting (XSS)
@shopify/hydrogen
Open this link in a new tab
>=0.10.0 <0.19.0
npm
19 May 2022
H
Denial of Service (DoS)
dicer
Open this link in a new tab
*
npm
19 May 2022
M
Insecure Defaults
electron
Open this link in a new tab
>=17.0.0-alpha.1 <17.4.5
npm
18 May 2022
M
Cross-site Scripting (XSS)
bootstrap-table
Open this link in a new tab
*
npm
17 May 2022
H
Malicious Package
support-colors
Open this link in a new tab
*
npm
15 May 2022
H
Malicious Package
colors-support
Open this link in a new tab
*
npm
15 May 2022
H
Malicious Package
colors-update
Open this link in a new tab
*
npm
15 May 2022
H
Malicious Package
titles
Open this link in a new tab
*
npm
15 May 2022
H
Malicious Package
sync-colors
Open this link in a new tab
*
npm
15 May 2022
H
Inappropriate implementation
electron
Open this link in a new tab
<15.5.5
>=16.0.0 <16.2.6
>=17.0.0 <17.4.4
>=18.0.0 <18.2.2
npm
15 May 2022
H
Improper Input Validation
electron
Open this link in a new tab
<15.5.4
>=16.0.0 <16.2.6
>=17.0.0 <17.4.3
>=18.0.0 <18.2.2
npm
15 May 2022
H
Use After Free
electron
Open this link in a new tab
<15.5.4
>=16.0.0 <16.2.6
>=17.0.0 <17.4.3
npm
15 May 2022
M
Regular Expression Denial of Service (ReDoS)
semver-regex
Open this link in a new tab
<3.1.4
>=4.0.0 <4.0.3
npm
13 May 2022
M
Information Exposure
eventsource
Open this link in a new tab
<2.0.2
npm
12 May 2022
H
Type Confusion
electron
Open this link in a new tab
<15.5.3
>=16.0.0 <16.2.3
>=17.0.0 <17.4.1
npm
12 May 2022
M
Type Confusion
electron
Open this link in a new tab
<15.5.3
>=16.0.0 <16.2.4
>=17.0.0 <17.4.2
npm
12 May 2022
M
Improper implementation
electron
Open this link in a new tab
<15.5.3
>=16.0.0 <16.2.4
npm
12 May 2022
M
Cross-site Scripting (XSS)
code-server
Open this link in a new tab
<4.0.1
npm
12 May 2022
M
Race Condition
grunt
Open this link in a new tab
<1.5.3
npm
11 May 2022
H
Command Injection
workspace-tools
Open this link in a new tab
<0.18.4
npm
11 May 2022
M
Prototype Pollution
sds
Open this link in a new tab
>=0.0.0
npm
10 May 2022
H
Heap-based Buffer Overflow
electron
Open this link in a new tab
<16.2.5
>=17.0.0 <17.4.3
npm
9 May 2022
M
Inappropriate implementation
electron
Open this link in a new tab
<16.2.5
>=17.0.0 <17.4.3
npm
9 May 2022
H
Use After Free
electron
Open this link in a new tab
<15.5.4
>=16.0.0 <16.2.5
>=17.0.0 <17.4.3
npm
9 May 2022
M
Inappropriate implementation
electron
Open this link in a new tab
<15.5.4
>=16.0.0 <16.2.3
>=17.0.0 <17.4.1
npm
9 May 2022
H
Prototype Pollution
convict
Open this link in a new tab
<6.2.3
npm
9 May 2022
H
Use After Free
electron
Open this link in a new tab
<15.5.4
>=16.0.0 <16.2.5
>=17.0.0 <17.4.3
npm
8 May 2022
C
Malicious Package
speedy-ts-compiler
Open this link in a new tab
*
npm
8 May 2022