|
Cross-site Scripting (XSS)
|
primeng
<9.0.0-rc.3
|
npm
|
23 Jan, 2020
|
|
Denial of Service (DoS)
|
sequelize
<5.0.0
|
npm
|
23 Jan, 2020
|
|
Prototype Pollution
|
klona
<1.1.1
|
npm
|
23 Jan, 2020
|
|
Bit-Flipping Attack
|
parsel
>=0.0.0
|
npm
|
22 Jan, 2020
|
|
Insecure Encryption
|
parsel
>=0.0.0
|
npm
|
22 Jan, 2020
|
|
Internal Property Tampering
|
schema-inspector
<1.6.9
|
npm
|
20 Jan, 2020
|
|
Information Disclosure
|
kind-of
>=6.0.0 <6.0.3
|
npm
|
19 Jan, 2020
|
|
Denial of Service (DoS)
|
node-sass
>=3.3.0 <4.13.1
|
npm
|
19 Jan, 2020
|
|
Arbitrary Code Execution
|
cordova-plugin-inappbrowser
<3.1.0
|
npm
|
14 Jan, 2020
|
|
Malicious 󠅮󠅰󠅭Package
|
1337qq-js
>=0.0.0
|
npm
|
14 Jan, 2020
|
|
Cross-site Scripting (XSS)
|
node-red
<0.20.7
|
npm
|
12 Jan, 2020
|
|
Cross-site Scripting (XSS)
|
hexo-admin
*
|
npm
|
12 Jan, 2020
|
|
Remote Code Execution (RCE)
|
meta-git
*
|
npm
|
12 Jan, 2020
|
|
Remote Code Execution (RCE)
|
npm-git-publish
*
|
npm
|
12 Jan, 2020
|
|
Arbitrary Code Injection
|
hot-formula-parser
<3.0.1
|
npm
|
10 Jan, 2020
|
|
Directory Traversal
|
total.js
<3.3.3
|
npm
|
09 Jan, 2020
|
|
Cross-site Scripting (XSS)
|
@hapi/boom
<0.3.8
|
npm
|
09 Jan, 2020
|
|
Cross-site Scripting (XSS)
|
hellojs
<1.18.2
|
npm
|
09 Jan, 2020
|
|
Arbitrary Code Injection
|
soletta-dev-app
*
|
npm
|
09 Jan, 2020
|
|
Command Injection
|
devcert-sanscache
<0.4.7
|
npm
|
08 Jan, 2020
|
|
Out-of-bounds Read
|
node-sass
*
|
npm
|
08 Jan, 2020
|
|
Use After Free
|
node-sass
*
|
npm
|
08 Jan, 2020
|
|
Out-of-Bounds
|
node-sass
*
|
npm
|
08 Jan, 2020
|
|
Out-of-bounds Read
|
node-sass
*
|
npm
|
08 Jan, 2020
|
|
NULL Pointer Dereference
|
node-sass
*
|
npm
|
08 Jan, 2020
|
|
NULL Pointer Dereference
|
node-sass
*
|
npm
|
08 Jan, 2020
|
|
Out-of-bounds Read
|
node-sass
*
|
npm
|
08 Jan, 2020
|
|
Denial of Service (DoS)
|
node-sass
<4.4.0
|
npm
|
08 Jan, 2020
|
|
Out-of-bounds Read
|
node-sass
<4.4.0
|
npm
|
08 Jan, 2020
|
|
Out-of-bounds Read
|
node-sass
<4.3.0
|
npm
|
08 Jan, 2020
|