Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
GHSA-743r-5g92-5vgf
  • Maven/software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
  • npm/aws-iot-device-sdk-v2
  • PyPI/awsiotsdk
Improper certificate management in AWS IoT Device SDK v2
  • 0.2.3
  • 0.2.4
  • 0.2.5
  • 0.2.6
  • 0.2.7
  • 0.2.8
  • 0.3.0
  • ...
2022-08-15T09:09:58.307499Z Fix available
GHSA-wc69-rhjr-hc9g
  • npm/moment
  • NuGet/Moment.js
Inefficient Regular Expression Complexity in moment
  • 2.18.0
  • 2.18.1
  • 2.18.2
  • 2.19.0
  • 2.19.1
  • 2.19.2
  • 2.19.3
  • ...
2022-08-15T09:07:34.247764Z Fix available
GHSA-wm7h-9275-46v2
  • npm/dicer
  • Maven/org.webjars.npm:dicer
Crash in HeaderParser in dicer
  • 0.2.5
  • 0.3.0
2022-08-15T09:06:59.633348Z No fix available
GHSA-3x9f-74h4-2fqr
  • npm/xlsx
  • Maven/org.webjars.npm:xlsx
Denial of Service in SheetJS Pro
  • 0.12.11
  • 0.12.13
  • 0.14.0
  • 0.14.1
  • 0.14.3
  • 0.14.5
  • 0.15.1
  • ...
2022-08-15T09:04:40.778392Z Fix available
GHSA-23wx-cgxq-vpwx
  • npm/dset
  • Maven/org.webjars.npm:dset
Prototype Pollution in dset
  • 3.0.0
  • 3.1.0
  • 3.1.1
2022-08-15T09:02:06.696875Z Fix available
GHSA-2pqj-h3vj-pqgw
  • npm/jquery
  • Maven/org.webjars.npm:jquery
Cross-Site Scripting in jquery
  • 1.7.2
  • 1.7.3
  • 1.8.2
  • 1.8.3
2022-08-15T08:55:03.833916Z Fix available
GHSA-j3f7-7rmc-6wqj
  • Maven/software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
  • npm/aws-iot-device-sdk-v2
  • PyPI/awsiotsdk
Improper certificate management in AWS IoT Device SDK v2
  • 0.2.3
  • 0.2.4
  • 0.2.5
  • 0.2.6
  • 0.2.7
  • 0.2.8
  • 0.3.0
  • ...
2022-08-15T08:52:01.298835Z Fix available
GHSA-94jq-q5v2-76wj
  • Maven/software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
  • npm/aws-iot-device-sdk-v2
  • PyPI/awsiotsdk
Improper certificate management in AWS IoT Device SDK v2
  • 0.2.3
  • 0.2.4
  • 0.2.5
  • 0.2.6
  • 0.2.7
  • 0.2.8
  • 0.3.0
  • ...
2022-08-15T08:38:07.520094Z Fix available
GHSA-c4rh-4376-gff4
  • Maven/software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
  • npm/aws-iot-device-sdk-v2
  • PyPI/awsiotsdk
Improper certificate management in AWS IoT Device SDK v2
  • 0.2.3
  • 0.2.4
  • 0.2.5
  • 0.2.6
  • 0.2.7
  • 0.2.8
  • 0.3.0
  • ...
2022-08-15T08:35:50.104412Z Fix available
GHSA-5h9g-x5rv-25wg
  • npm/tinymce
  • NuGet/TinyMCE
  • Packagist/tinymce/tinymce
Cross-site scripting vulnerability in TinyMCE
  • 3.4.3.2
  • 3.4.4
  • 3.4.5
  • 3.4.7
  • 3.5.0
  • 3.5.0.1
  • 3.5.1
  • ...
2022-08-15T08:35:27.155328Z Fix available
GHSA-r8hm-w5f7-wj39
  • npm/tinymce
  • Packagist/tinymce/tinymce
  • NuGet/TinyMCE
  • PyPI/django-tinymce
Cross-site scripting vulnerability in TinyMCE plugins
  • 3.4.3.2
  • 3.4.4
  • 3.4.5
  • 3.4.7
  • 3.5.0
  • 3.5.0.1
  • 3.5.1
  • ...
2022-08-15T08:34:03.370032Z Fix available
GHSA-29xr-v42j-r956
  • npm/thenify
  • Maven/org.webjars.npm:thenify
thenify before 3.3.1 made use of unsafe calls to `eval`.
  • 3.1.0
  • 3.3.0
2022-08-15T08:33:13.635925Z Fix available
GHSA-p6rw-44q7-3fw4
  • PyPI/nbdime
  • PyPI/nbdime
  • PyPI/nbdime
  • npm/nbdime
  • npm/nbdime
  • npm/nbdime-jupyterlab
  • npm/nbdime-jupyterlab
Stored XSS in Jupyter nbdime
  • 0.1.0
  • 0.1.0.dev
  • 0.1.0b1
  • 0.1.1
  • 0.1.2
  • 0.2.0
  • 0.3.0
  • ...
2022-08-15T08:30:18.423744Z Fix available
GHSA-8hfj-j24r-96c4
  • npm/moment
  • NuGet/Moment.js
Path Traversal: 'dir/../../filename' in moment.locale
  • 1.2.0
  • 1.3.0
  • 1.4.0
  • 1.5.0
  • 1.5.1
  • 1.6.0
  • 1.6.1
  • ...
2022-08-15T08:25:33.751941Z Fix available
GHSA-8vcr-vxm8-293m
  • npm/xlsx
  • Maven/org.webjars.npm:xlsx
Denial of Service in SheetsJS Pro
  • 0.12.11
  • 0.12.13
  • 0.14.0
  • 0.14.1
  • 0.14.3
  • 0.14.5
  • 0.15.1
  • ...
2022-08-15T08:24:21.557126Z Fix available
GHSA-g973-978j-2c3p
  • npm/xlsx
  • Maven/org.webjars.npm:xlsx
Denial of Service in SheetJS Pro
  • 0.12.11
  • 0.12.13
  • 0.14.0
  • 0.14.1
  • 0.14.3
  • 0.14.5
  • 0.15.1
  • ...
2022-08-15T08:21:11.085853Z Fix available