NShiftKey

• prismjs: 1.26.0

  • File
    • abp/npm/packs/prismjs/package.json
  
  
  • 

    • CVE-2022-23647 [CVE link] [ignore this]

      • Description : Cross-site Scripting in Prism
          

• semver: 7.3.5

  • File
    • abp/npm/package.json
  
  
  • 

    • CVE-2022-25883 [CVE link] [ignore this]

      • Description : semver vulnerable to Regular Expression Denial of Service
          

• ng-packagr: 10.0.0

  • File
    • abp/npm/packs/utils/package.json
  
  
  • 

    • CVE-2020-7735 [CVE link] [ignore this]

      • Description : OS Command Injection in ng-packagr
          

    • SNYK-JS-NGPACKAGR-1012427 [CVE link] [ignore this]

      • Description : OS Command Injection in ng-packagr
          

• @angular/core: 10.0.0

  • File
    • abp/npm/packs/utils/package.json
  
  
  • 

    • CVE-2021-4231 [CVE link] [ignore this]

      • Description : Cross site scripting in Angular
          

• jquery-validation: 1.19.3

  • File
    • abp/npm/packs/jquery-validation/package.json
  
  
  • 

    • CVE-2022-31147 [CVE link] [ignore this]

      • Description : jquery-validation Regular Expression Denial of Service due to arbitrary input to url2 method
          
  
  
  • 

    • CVE-2021-43306 [CVE link] [ignore this]

      • Description : Regular expression denial of service in jquery-validation
          

• luxon: 2.3.0

  • File
    • abp/npm/packs/luxon/package.json
  
  
  • 

    • CVE-2022-31129 [CVE link] [ignore this]

      • Description : Luxon Inefficient Regular Expression Complexity vulnerability
          

    • CVE-2023-22467 [CVE link] [ignore this]

      • Description : Luxon Inefficient Regular Expression Complexity vulnerability
          

    • GHSA-wc69-rhjr-hc9g [CVE link] [ignore this]

      • Description : Luxon Inefficient Regular Expression Complexity vulnerability
          

• sweetalert2: 11.3.6

  • File
    • abp/npm/packs/sweetalert2/package.json
  
  
  • 

    • GHSA-457r-cqc8-9vj9 [CVE link] [ignore this]

      • Description : sweetalert2 v10.16.10 and above contains hidden functionality
          

    • GHSA-8jh9-wqpf-q52c [CVE link] [ignore this]

      • Description : sweetalert2 v8.19.1 and above contains hidden functionality
          

    • GHSA-pg98-6v7f-2xfv [CVE link] [ignore this]

      • Description : sweetalert2 v9.17.4 and above contains hidden functionality
          

• uppy: 1.16.1

  • File
    • abp/npm/packs/uppy/package.json
  
  
  • 

    • CVE-2022-0086 [CVE link] [ignore this]

      • Description : uppy's companion module is vulnerable to Server-Side Request Forgery (SSRF)
          

    • CVE-2022-0528 [CVE link] [ignore this]

      • Description : Server-Side Request Forgery (SSRF) in GitHub repository transloadit/uppy prior to 3.3.1.

    

• moment: 2.9.0

  • File
    • abp/npm/packs/moment/package.json
  
  
  • 

    • CVE-2017-18214 [CVE link] [ignore this]

      • Description : Regular Expression Denial of Service in moment
          

    • CVE-2022-24785 [CVE link] [ignore this]

      • Description : Path Traversal: 'dir/../../filename' in moment.locale
          
  
  
  • 

    • CVE-2016-4055 [CVE link] [ignore this]

      • Description : Regular Expression Denial of Service in moment