chart-tool
chart-tool copied to clipboard
globeandmail
A responsive charting application
**Vulnerabilities** DepShield reports that this application's usage of [lodash.isarguments:3.1.0](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/0f23ff35-235f-404f-8118-bc1580673fd0) **Occurrences** lodash.isarguments:3.1.0 is a transitive dependency introduced...
![sonatype-depshield[bot] avatar](https://avatars.githubusercontent.com/in/13833?v=4 "sonatype-depshield[bot] avatar"){kind=avatar}
**Vulnerabilities** DepShield reports that this application's usage of [yargs-parser:10.1.0](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.5**) [CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')](https://ossindex.sonatype.org/vuln/7ccaaed0-205b-4382-a963-8a30a0b151b1) - (CVSS **7.5**) [[CVE-2020-7608] yargs-parser could be...
**Vulnerabilities** DepShield reports that this application's usage of [lodash.isstring:4.0.1](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/0f23ff35-235f-404f-8118-bc1580673fd0) - (CVSS **6.5**) [[CVE-2018-3721] lodash node module...
**Vulnerabilities** DepShield reports that this application's usage of [y18n:3.2.1](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **8.2**) [CWE-20: Improper Input Validation](https://ossindex.sonatype.org/vuln/ef4add6f-4439-4eb8-bd0e-d040ff4ba76b) **Occurrences** y18n:3.2.1 is a transitive dependency introduced by the...
**Vulnerabilities** DepShield reports that this application's usage of [lodash.keys:3.1.2](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/0f23ff35-235f-404f-8118-bc1580673fd0) **Occurrences** lodash.keys:3.1.2 is a transitive dependency introduced...
**Vulnerabilities** DepShield reports that this application's usage of [socket.io-parser:3.2.0](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.5**) [[CVE-2020-36049] socket.io-parser before 3.4.1 allows attackers to cause a denial of service (mem...](https://ossindex.sonatype.org/vuln/d6bd264b-68c8-4051-b198-97847693ee93)...
**Vulnerabilities** DepShield reports that this application's usage of [lodash._isiterateecall:3.0.9](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/0f23ff35-235f-404f-8118-bc1580673fd0) **Occurrences** lodash._isiterateecall:3.0.9 is a transitive dependency introduced...
**Vulnerabilities** DepShield reports that this application's usage of [lodash._basecopy:3.0.1](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/0f23ff35-235f-404f-8118-bc1580673fd0) **Occurrences** lodash._basecopy:3.0.1 is a transitive dependency introduced...
**Vulnerabilities** DepShield reports that this application's usage of [lodash:3.10.1](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **9.8**) [CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection')](https://ossindex.sonatype.org/vuln/2053350d-b06f-4926-88ea-871760f6e5d8) -...
**Vulnerabilities** DepShield reports that this application's usage of [ua-parser-js:0.7.17](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.5**) [CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')](https://ossindex.sonatype.org/vuln/7953fb5f-022a-4de7-baf4-e849e85375ca) **Occurrences** ua-parser-js:0.7.17 is a transitive dependency introduced...