-
## The devDependency [snyk](https://github.com/snyk/snyk) was updated from `1.230.5` to `1.230.6`.
🚨 [View failing branch](https://github.com/OysteinAmundsen/gymsystems/compare/master...OysteinAmund…
-
Good day, i saw in meanjs repo the following information:
Dependencies: insecure
Vulnerabilities: 6,
and i saw some information about security with meanjs framework, now my question is... is s…
-
Findings for Container Security, Low, [TheRedHatter/javagoof:exploits/tomcat-rce/Dockerfile]:Use After Free
## Component Details
- **Exploit Maturity**: no-known-exploit
- **Vulnerable Package**: -
…
-
## Component Details
- **Exploit Maturity**: mature
- **Vulnerable Package**: -
- **Current Version**: -
- **Vulnerable Version(s)**: >[0, 2.7)
- **Vulnerable Path**: >null
## Overview
[commons-io:…
-
## Component Details
- **Exploit Maturity**: mature
- **Vulnerable Package**: -
- **Current Version**: -
- **Vulnerable Version(s)**: >[0, 2.7)
- **Vulnerable Path**: >null
## Overview
[commons-io:…
-
cc @javoire
My organization maintains an internal package that was recently discovered to have a couple of high security vulnerabilities in transitive dependencies (namely, [lodash.template ](https…
-
**Description**
Attackers can create Zip archives that use path traversal to overwrite important files on affected systems, destroying them or replacing them with malicious alternatives or upload…
-
## Component Details
- **Exploit Maturity**: mature
- **Vulnerable Package**: -
- **Current Version**: -
- **Vulnerable Version(s)**: >[0, 2.7)
- **Vulnerable Path**: >null
## Overview
[commons-io:…
-
There is a security vulnerability https://nodesecurity.io/check/formatted-stream
It actually goes back to a dependency 4 levels deep:
```
formatted-stream@1.0.0 > exceljs@0.2.11 > archiver@0.14…
-
## Component Details
- **Exploit Maturity**: mature
- **Vulnerable Package**: -
- **Current Version**: -
- **Vulnerable Version(s)**: >[0, 2.7)
- **Vulnerable Path**: >null
## Overview
[commons-io:…