Upgrade axios@0.21.1 to axios@0.21.3 to fix
✗ Regular Expression Denial of Service (ReDoS) [High Severity][https://snyk.io/vuln/SNYK-JS-AXIOS-1579269] in axios@0.21.1
introduced by axios@0.21.1 and 1 other path(s)
Upgrade lodash@4.17.20 to lodash@4.17.21 to fix
✗ Regular Expression Denial of Service (ReDoS) [Medium Severity][https://snyk.io/vuln/SNYK-JS-LODASH-1018905] in lodash@4.17.20
introduced by lodash@4.17.20 and 14 other path(s)
✗ Command Injection [High Severity][https://snyk.io/vuln/SNYK-JS-LODASH-1040724] in lodash@4.17.20
introduced by lodash@4.17.20 and 14 other path(s)
Upgrade mongoose@5.11.11 to mongoose@5.13.9 to fix
✗ Prototype Pollution [Medium Severity][https://snyk.io/vuln/SNYK-JS-MPATH-1577289] in mpath@0.8.3
introduced by mongoose@5.11.11 > mpath@0.8.3
✗ Prototype Pollution [Medium Severity][https://snyk.io/vuln/SNYK-JS-MONGOOSE-1086688] in mongoose@5.11.11
introduced by mongoose@5.11.11
✗ Prototype Pollution [High Severity][https://snyk.io/vuln/SNYK-JS-MQUERY-1089718] in mquery@3.2.3
introduced by mongoose@5.11.11 > mquery@3.2.3
Upgrade node-quickbooks@2.0.37 to node-quickbooks@2.0.39 to fix
✗ Arbitrary Code Injection [Medium Severity][https://snyk.io/vuln/SNYK-JS-UNDERSCORE-1080984] in underscore@1.6.0
introduced by lastfm@0.9.3 > underscore@1.6.0 and 1 other path(s)
Upgrade node-sass@5.0.0 to node-sass@6.0.1 to fix
✗ Denial of Service (DoS) [High Severity][https://snyk.io/vuln/SNYK-JS-TRIMNEWLINES-1298042] in trim-newlines@1.0.0
introduced by node-sass@5.0.0 > meow@3.7.0 > trim-newlines@1.0.0 and 1 other path(s)
Upgrade nodemailer@6.4.17 to nodemailer@6.6.1 to fix
✗ HTTP Header Injection [Medium Severity][https://snyk.io/vuln/SNYK-JS-NODEMAILER-1296415] in nodemailer@6.4.17
introduced by nodemailer@6.4.17
Upgrade pug@3.0.0 to pug@3.0.1 to fix
✗ Remote Code Execution (RCE) [High Severity][https://snyk.io/vuln/SNYK-JS-PUG-1071616] in pug@3.0.0
introduced by pug@3.0.0
dogeared
commented
2 years ago