mend-bolt-for-github[bot]
mend-bolt-for-github[bot]
## CVE-2024-45296 - High Severity Vulnerability Vulnerable Library - path-to-regexp-0.1.7.tgz Express style path to RegExp utility Library home page: https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-0.1.7.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/path-to-regexp/package.json...
## CVE-2024-52798 - High Severity Vulnerability Vulnerable Library - path-to-regexp-0.1.7.tgz Express style path to RegExp utility Library home page: https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-0.1.7.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/path-to-regexp/package.json...
## CVE-2024-21538 - High Severity Vulnerability Vulnerable Libraries - cross-spawn-4.0.2.tgz, cross-spawn-4.0.0.tgz cross-spawn-4.0.2.tgz Cross platform child_process#spawn and child_process#spawnSync Library home page: https://registry.npmjs.org/cross-spawn/-/cross-spawn-4.0.2.tgz Path to dependency file: /package.json Path to vulnerable library:...
## CVE-2020-26311 - High Severity Vulnerability Vulnerable Library - useragent-2.3.0.tgz Fastest, most accurate & effecient user agent string parser, uses Browserscope's research for parsing Library home page: https://registry.npmjs.org/useragent/-/useragent-2.3.0.tgz Path to...
## WS-2017-0421 - High Severity Vulnerability Vulnerable Library - ws-1.1.5.tgz Simple to use, blazing fast and thoroughly tested websocket client and server for Node.js Library home page: https://registry.npmjs.org/ws/-/ws-1.1.5.tgz Path to...
## CVE-2024-21536 - High Severity Vulnerability Vulnerable Library - http-proxy-middleware-0.17.4.tgz The one-liner node.js proxy middleware for connect, express and browser-sync Library home page: https://registry.npmjs.org/http-proxy-middleware/-/http-proxy-middleware-0.17.4.tgz Path to dependency file: /package.json Path...
## CVE-2024-45590 - High Severity Vulnerability Vulnerable Library - body-parser-1.19.1.tgz Node.js body parsing middleware Library home page: https://registry.npmjs.org/body-parser/-/body-parser-1.19.1.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/body-parser/package.json Dependency Hierarchy:...
Vulnerable Library - core-3.7.0.tgz Path to dependency file: /package.json Path to vulnerable library: /package.json Found in HEAD commit: 75bb7ad8356fc9e5b25a326be94adbb7dffc785c ## Vulnerabilities | CVE | Severity | CVSS | Dependency |...
## WS-2023-0439 - High Severity Vulnerability Vulnerable Library - axios-0.21.4.tgz Promise based HTTP client for the browser and node.js Library home page: https://registry.npmjs.org/axios/-/axios-0.21.4.tgz Path to dependency file: /package.json Path to...
## CVE-2020-8908 - Low Severity Vulnerability Vulnerable Library - guava-21.0.jar Guava is a suite of core and expanded libraries that include utility classes, google's collections, io classes, and much much...