Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
M Use of Password Hash Instead of Password for Authentication	buttercup >=3.0.0-rc1.0 <7.4.0	npm	14 Dec 2023
C Malicious Package	css-hell *	npm	14 Dec 2023
M Uncontrolled Resource Consumption ('Resource Exhaustion')	@cubejs-backend/api-gateway <0.34.34	npm	14 Dec 2023
M Regular Expression Denial of Service (ReDoS)	axios <1.6.3	npm	14 Dec 2023
M Session Fixation	uptime-kuma >=0.0.0	npm	12 Dec 2023
C Cross-site Scripting (XSS)	evershop *	npm	12 Dec 2023
M Cross-site Scripting (XSS)	evershop *	npm	12 Dec 2023
M Directory Traversal	evershop *	npm	12 Dec 2023
M Cross-site Scripting (XSS)	evershop *	npm	12 Dec 2023
H Directory Traversal	evershop *	npm	12 Dec 2023
M Directory Traversal	evershop *	npm	12 Dec 2023
C Malicious Package	blockchain-transactions *	npm	12 Dec 2023
C Code Injection	evershop *	npm	12 Dec 2023
H Origin Validation Error	@koa/cors <5.0.0	npm	12 Dec 2023
H Server-Side Request Forgery (SSRF)	nuxt-api-party <0.22.1	npm	11 Dec 2023
H Uncontrolled Recursion	nuxt-api-party <0.22.1	npm	11 Dec 2023
C Malicious Package	blockchain-contracts *	npm	11 Dec 2023
C Malicious Package	shinchina *	npm	11 Dec 2023
C Malicious Package	react-native-dual-pedometer *	npm	11 Dec 2023
C Malicious Package	orchestrationdesk *	npm	11 Dec 2023
M Always-Incorrect Control Flow Implementation	@openzeppelin/contracts-upgradeable >=4.9.4 <4.9.5	npm	10 Dec 2023
M Always-Incorrect Control Flow Implementation	@openzeppelin/contracts >=4.9.4 <4.9.5	npm	10 Dec 2023
C Malicious Package	sentrybrowser *	npm	8 Dec 2023
H Prototype Pollution	mockjs *	npm	7 Dec 2023
C Malicious Package	multiversx-wallet *	npm	7 Dec 2023
C Malicious Package	cronos-lib *	npm	7 Dec 2023
C Malicious Package	cosmos-wallet-js *	npm	7 Dec 2023
C Malicious Package	killroad-ss-x *	npm	7 Dec 2023
C Malicious Package	kindly-testing *	npm	7 Dec 2023
C Malicious Package	solodev-cms *	npm	7 Dec 2023

APPLICATION

OPERATING SYSTEM