mend-bolt-for-github[bot]

## CVE-2025-58754 - High Severity Vulnerability Vulnerable Library - axios-0.21.4.tgz Promise based HTTP client for the browser and node.js Library home page: https://registry.npmjs.org/axios/-/axios-0.21.4.tgz Path to dependency file: /dmplugins/package.json Path to...

## CVE-2025-59682 - Low Severity Vulnerability Vulnerable Library - django-4.2.22-py3-none-any.whl A high-level Python web framework that encourages rapid development and clean, pragmatic design. Library home page: https://files.pythonhosted.org/packages/dc/17/6afcbac3575992b22fda1ae7fffcdff15ff24d1aff69b3d36876bc0a47eb/django-4.2.22-py3-none-any.whl Path to dependency...

## CVE-2025-59681 - High Severity Vulnerability Vulnerable Library - django-4.2.22-py3-none-any.whl A high-level Python web framework that encourages rapid development and clean, pragmatic design. Library home page: https://files.pythonhosted.org/packages/dc/17/6afcbac3575992b22fda1ae7fffcdff15ff24d1aff69b3d36876bc0a47eb/django-4.2.22-py3-none-any.whl Path to dependency...

## CVE-2025-59437 - Low Severity Vulnerability Vulnerable Library - ip-1.1.5.tgz [](https://www.npmjs.com/package/ip) Library home page: https://registry.npmjs.org/ip/-/ip-1.1.5.tgz Path to dependency file: /dmreactplugin/package.json Path to vulnerable library: /dmreactplugin/package.json Dependency Hierarchy: - react-scripts-4.0.3.tgz (Root...

## CVE-2025-59436 - Low Severity Vulnerability Vulnerable Library - ip-1.1.5.tgz [](https://www.npmjs.com/package/ip) Library home page: https://registry.npmjs.org/ip/-/ip-1.1.5.tgz Path to dependency file: /dmreactplugin/package.json Path to vulnerable library: /dmreactplugin/package.json Dependency Hierarchy: - react-scripts-4.0.3.tgz (Root...

## CVE-2025-7339 - Low Severity Vulnerability Vulnerable Library - on-headers-1.0.2.tgz Execute a listener when a response is about to write headers Library home page: https://registry.npmjs.org/on-headers/-/on-headers-1.0.2.tgz Path to dependency file: /dmreactplugin/package.json...

## CVE-2025-9288 - Critical Severity Vulnerability Vulnerable Library - sha.js-2.4.11.tgz Streamable SHA hashes in pure javascript Library home page: https://registry.npmjs.org/sha.js/-/sha.js-2.4.11.tgz Path to dependency file: /dmreactplugin/package.json Path to vulnerable library: /dmreactplugin/package.json...

## CVE-2025-9287 - Critical Severity Vulnerability Vulnerable Library - cipher-base-1.0.4.tgz abstract base class for crypto-streams Library home page: https://registry.npmjs.org/cipher-base/-/cipher-base-1.0.4.tgz Path to dependency file: /dmreactplugin/package.json Path to vulnerable library: /dmreactplugin/package.json Dependency...

## CVE-2025-57833 - High Severity Vulnerability Vulnerable Library - django-4.2.22-py3-none-any.whl A high-level Python web framework that encourages rapid development and clean, pragmatic design. Library home page: https://files.pythonhosted.org/packages/dc/17/6afcbac3575992b22fda1ae7fffcdff15ff24d1aff69b3d36876bc0a47eb/django-4.2.22-py3-none-any.whl Path to dependency...

## CVE-2025-9308 - Low Severity Vulnerability Vulnerable Library - yarn-1.22.11.tgz ?? Fast, reliable, and secure dependency management. Library home page: https://registry.npmjs.org/yarn/-/yarn-1.22.11.tgz Path to dependency file: /dmreactplugin/package.json Path to vulnerable library:...