bmo.com 35 packages
Last scanned on Oct 27 at 06:43 PM
handlebars 4.0.0 - 4.2.2VulnerableOutdated
Handlebars provides the power necessary to let you build semantic templates effectively with no frustration
License
MIT
Footprint
17 KB
Vulnerabilities
Arbitrary Code Execution in handlebars
Affected versions >=0 <3.0.8, >=4.0.0 <4.5.3
Arbitrary Code Execution in Handlebars
Affected versions >=0 <3.0.8, >=4.0.0 <4.5.3
CriticalGHSA-f2jv-r9rf-7988
Remote code execution in handlebars when compiling templates
Affected versions >=0 <4.7.7
Regular Expression Denial of Service in Handlebars
Affected versions >=4.0.0 <4.4.5
Prototype Pollution in handlebars
Affected versions >=0 <3.0.8, >=4.0.0 <4.5.3
Arbitrary Code Execution in handlebars
Affected versions >=0 <3.0.8, >=4.0.0 <4.5.2
Matched Modules
Version distribution in production
182
4.7.7
172
4.7.6
168
4.7.3
166
4.7.2
166
4.7.4
94
4.2.2
Also used on 307 websites
axios 0.17.0 - 0.18.0VulnerableOutdated
Promise based HTTP client for the browser and node.js
es5-ext 0.10.24 - 0.10.49VulnerableOutdated
ECMAScript extensions and shims
medikoo
next 9.5.2 - 13.0.0VulnerableOutdated
The React Framework
source-map 0.5.0 - 0.5.3Outdated
Generates and consumes source maps
+16
react-is 16.3.0 - 16.13.1Outdated
Brand checking of React Elements.
+1
is-buffer 1.1.4 - 2.0.5
Determine if an object is a Buffer
scheduler 0.14.0 - 0.23.0
Cooperative scheduler for the browser environment.
+1
prop-types 15.7.0 - 15.7.2Outdated
Runtime type checking for React props and similar objects.
react 16.9.0 - 16.10.2Outdated
React is a JavaScript library for building user interfaces.
+1
date-fns 1.30.1Outdated
Modern JavaScript date utility library
kossnocorp
hoist-non-react-statics 3.3.1 - 3.3.2
Copies non-react specific statics from a child component to a parent component
mridgway
redux 4.0.0Outdated
Predictable state container for JavaScript apps
crypto-browserify 1.0.9 - 2.0.0Outdated
implementation of crypto for the browser
+2
d3-array 1.0.1 - 2.3.1Outdated
Array manipulation, ordering, searching, summarizing, etc.
querystring-es3 0.2.1
Node's querystring module for all engines. (ES3 compat fork)
spaintrain
@vue/shared 3.0.0 - 3.2.41Outdated
internal utils shared across @vue packages
redux-thunk 2.1.0 - 2.4.1Outdated
Thunk middleware for Redux.
@formatjs/ecma402-abstract 1.0.2 - 1.13.0Outdated
A collection of implementation for ECMAScript abstract operations
@apollo/client 3.0.0 - 3.7.1Outdated
A fully-featured caching GraphQL client.
faker 2.0.1 - 2.1.5Outdated
Generate massive amounts of fake contextual data
marak
antd 3.11.0 - 3.11.2Outdated
An enterprise-class UI design language and React components implementation
shortid 2.2.11 - 2.2.16
Amazingly short non-sequential url-friendly unique id generator.
react-scroll 1.7.13 - 1.7.14Outdated
A scroll component for React.js
@formatjs/intl-getcanonicallocales 1.7.1 - 1.7.3Outdated
Intl.getCanonicalLocales polyfill
@formatjs/intl-pluralrules 3.4.8 - 3.5.6Outdated
Polyfill for Intl.PluralRules
@formatjs/intl-numberformat 5.6.3 - 6.0.0Outdated
Ponyfill for ES2020 Intl.NumberFormat
rc-calendar 8.3.3 - 9.2.0Outdated
React Calendar
foundation-sites 6.4.0 - 6.4.3Outdated
The most advanced responsive front-end framework in the world.
vue-cookies 1.0.0 - 1.2.0Outdated
A simple Vue.js plugin for handling browser cookies
@sitecore-jss/sitecore-jss 1.0.2 - 6.1.2Outdated
This module is provided as a part of Sitecore JavaScript Rendering SDK. It contains the core JSS APIs (layout service) and utilities.
+7
prebid.js 6.15.0 - 7.22.0Outdated
Header Bidding Management Library
Popular search queries
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites