Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-c2qf-rxjj-qqgw
  • npm/semver
 semver vulnerable to Regular Expression Denial of Service 21 Jun 2023
  • Fix available
  • Severity - 7.5 (High)
GHSA-8h3g-hcwp-6hxq
  • npm/semver-tags
 semver-tags is vulnerable to Command Injection via the getGitTagsRemote function 06 Feb 2023
  • No fix available
  • Severity - 7.8 (High)
MAL-2022-696
  • npm/@unpkg-semver/pedops-logger
 Malicious code in @unpkg-semver/pedops-logger (npm) 20 Jun 2022
  • No fix available
MAL-2022-697
  • npm/@unpkg-semver/wix-recorder
 Malicious code in @unpkg-semver/wix-recorder (npm) 20 Jun 2022
  • No fix available
GHSA-4x5v-gmq8-25ch
  • npm/semver-regex
 Regular expression denial of service in semver-regex 03 Jun 2022
  • Fix available
GHSA-44c6-4v22-4mhx
  • npm/semver-regex
 semver-regex Regular Expression Denial of Service (ReDOS) 20 Sep 2021
  • Fix available
  • Severity - 7.5 (High)
GHSA-x6fg-f45m-jf5q
  • npm/semver
 Regular Expression Denial of Service in semver 24 Oct 2017
  • Fix available
  • Severity - 7.5 (High)