| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2020-7754 | Regular Expression Denial of Service (ReDoS) | - | npm-user-validate | High | 7.5 | 2020-10-27 15:05:18 | Deep Dive |
| CVE-2020-15095 | Sensitive information exposure through logs in npm cli | npm | cli | Medium | 4.4 | 2020-07-07 18:55:12 | Deep Dive |
| CVE-2020-7662 | websocket-extensions 安全漏洞 | - | websocket-extensions (npm) | 高危 | - | 2020-06-02 18:28:46 | Deep Dive |
| CVE-2020-7614 | npm-programmatic 操作系统命令注入漏洞 | - | npm-programmatic | 超危 | - | 2020-04-07 13:21:05 | Deep Dive |
| CVE-2020-7597 | codecov-node npm module 操作系统命令注入漏洞 | - | codecov npm module | 高危 | - | 2020-02-17 18:48:40 | Deep Dive |
| CVE-2019-10790 | Taffy 输入验证错误漏洞 | - | taffy npm module | 高危 | - | 2020-02-17 00:00:00 | Deep Dive |
| CVE-2020-8125 | npm klona 输入验证错误漏洞 | - | klona npm module | 超危 | - | 2020-02-04 19:08:56 | Deep Dive |
| CVE-2020-7596 | Codecov NodeJs Uploader 注入漏洞 | - | codecov npm module | 高危 | - | 2020-01-25 18:08:41 | Deep Dive |
| CVE-2019-16777 | Arbitrary File Overwrite in npm CLI | npm | cli | High | 7.7 | 2019-12-13 01:00:21 | Deep Dive |
| CVE-2019-16776 | Unauthorized File Access in npm CLI before before version 6.13.3 | npm | cli | High | 7.7 | 2019-12-13 00:55:16 | Deep Dive |
| CVE-2019-16775 | Unauthorized File Access in npm CLI before before version 6.13.3 | npm | cli | High | 7.7 | 2019-12-13 00:55:15 | Deep Dive |
| CVE-2019-5444 | serve-here.js 路径遍历漏洞 | - | serve-here.js npm module | 中危 | - | 2019-07-10 19:43:03 | Deep Dive |
| CVE-2019-5423 | http-live-simulator 路径遍历漏洞 | Npm, Inc. | http-live-simulator | 高危 | - | 2019-04-03 14:21:42 | Deep Dive |
| CVE-2019-5422 | buttle npm package 跨站脚本漏洞 | Npm, Inc. | buttle | 中危 | - | 2019-04-03 14:21:40 | Deep Dive |
| CVE-2018-16202 | cordova-plugin-ionic-webview 路径遍历漏洞 | npm, Inc. | cordova-plugin-ionic-webview | 高危 | - | 2019-01-09 22:00:00 | Deep Dive |
| CVE-2018-16475 | Knightjs 路径遍历漏洞 | npm | knightjs | 高危 | - | 2018-11-06 19:00:00 | Deep Dive |
| CVE-2018-16474 | tianma-static module 跨站脚本漏洞 | npm | tianma-static | 中危 | - | 2018-11-06 19:00:00 | Deep Dive |
| CVE-2018-16473 | takeapeek module 路径遍历漏洞 | npm | takeapeek | 中危 | - | 2018-11-06 19:00:00 | Deep Dive |
| CVE-2018-16472 | cached-path-relative 安全漏洞 | npm | cached-path-relative | 高危 | - | 2018-11-06 00:00:00 | Deep Dive |
| CVE-2018-11615 | npm mosca 安全漏洞 | npm | npm mosca | 高危 | - | 2018-08-30 12:00:00 | Deep Dive |