About
Community
pantip.com
79 packages
Last scanned on Oct 27 at 06:40 PM
Update
Name
Size
Popularity
Severity
crypto-js
3.1.8 - 3.3.0
Vulnerable
Outdated
JavaScript library of crypto standards.
Script
https://pantip.com/_next/static/chunks/pages/_app-ec3bb58054b9f78c.js
License
MIT
Footprint
29 KB
Vulnerabilities
Critical
GHSA-xwcq-pm8m-c4vf
crypto-js PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard
Affected versions >=0 <4.2.0
Matched Modules
Version distribution in production
457
4.1.0
457
4.1.1
185
3.3.0
162
3.1.8
143
3.2.1
143
4.0.0
Also used on 738 websites
pubmatic.com
4 packages
tiktok.com
91 packages
redd.it
180 packages
www.reddit.com
183 packages
Repository
Homepage
More
security
crypto
Hash
MD5
SHA1
+15
evanvosberg
lodash
4.17.16
Vulnerable
Outdated
Lodash modular utilities.
modules
stdlib
util
axios
0.18.1
Vulnerable
Outdated
Promise based HTTP client for the browser and node.js
xhr
http
ajax
promise
node
+1
jsonwebtoken
8.5.0 - 8.5.1
Vulnerable
Outdated
JSON Web Token implementation (symmetric and asymmetric)
jwt
next
12.3.0 - 12.3.1
Vulnerable
Outdated
The React Framework
semver
5.7.0 - 6.3.0
Outdated
The semantic version parser used by npm.
+2
tslib
1.2.0 - 2.4.0
Outdated
Runtime library for TypeScript helper functions
TypeScript
Microsoft
compiler
language
javascript
+2
+5
ms
2.1.2 - 2.1.3
Tiny millisecond conversion utility
+5
uuid
7.0.0 - 8.0.0
Outdated
RFC4122 (v1, v4, and v5) UUIDs
uuid
guid
rfc4122
string_decoder
1.1.0 - 1.3.0
The string_decoder module from Node core
string
decoder
browser
browserify
+1
ajv
7.0.0 - 8.11.0
Outdated
Another JSON Schema Validator
JSON
schema
validator
validation
jsonschema
+3
react-is
16.3.0 - 17.0.2
Outdated
Brand checking of React Elements.
react
+1
inherits
2.0.3
Outdated
Browser-friendly inheritance fully compatible with standard node.js inherits()
inheritance
class
klass
oop
object-oriented
+3
isaacs
qs
6.11.0
Outdated
A querystring parser that supports nesting and arrays, with a depth limit
querystring
qs
query
url
parse
+1
buffer
5.7.0 - 6.0.3
Node.js Buffer API, for the browser
arraybuffer
browser
browserify
buffer
compatible
+2
feross
@babel/runtime
7.13.6 - 7.16.3
Outdated
babel's modular runtime helpers
+1
get-intrinsic
1.1.3
Outdated
Get and robustly cache all JS language-level intrinsics at first require time
javascript
ecmascript
es
js
intrinsic
+2
ljharb
function-bind
1.1.0 - 1.1.1
Outdated
Implementation of Function.prototype.bind
function
bind
shim
es5
cookie
0.4.1 - 0.4.2
Outdated
HTTP server cookie parsing and serialization
cookie
cookies
dougwilson
call-bind
1.0.2
Outdated
Robustly `.call.bind()` a function
javascript
ecmascript
es
js
callbind
+8
ljharb
object-inspect
1.12.2
Outdated
string representations of objects in node and the browser
inspect
util.inspect
object
stringify
pretty
has-symbols
1.0.2 - 1.0.3
Determine if the JS environment has Symbol support. Supports spec, or shams.
Symbol
symbols
typeof
sham
polyfill
+3
ljharb
side-channel
1.0.4
Outdated
Store information about any JS value in a side channel. Uses WeakMap if available.
weakmap
map
side
channel
metadata
ljharb
base64-js
1.3.0 - 1.5.1
Base64 encoding/decoding in pure JS
base64
events
3.0.0 - 3.3.0
Node's event emitter for all engines.
events
eventEmitter
eventDispatcher
listeners
is-buffer
2.0.0 - 2.0.5
Determine if an object is a Buffer
arraybuffer
browser
browser buffer
browserify
buffer
+10
feross
util
0.10.0 - 0.12.5
Node.js's util module for all engines
util
+3
scheduler
0.15.0 - 0.23.0
Outdated
Cooperative scheduler for the browser environment.
react
+1
has
1.0.1 - 1.0.3
Outdated
Object.prototype.hasOwnProperty.call shortcut
tarruda
prop-types
15.8.0 - 15.8.1
Runtime type checking for React props and similar objects.
react
react
17.0.0 - 18.2.0
Outdated
React is a JavaScript library for building user interfaces.
react
+1
jws
3.2.1 - 4.0.0
Implementation of JSON Web Signatures
jws
json
web
signatures
+4
jwa
1.4.1
Outdated
JWA implementation (supports all JWS algorithms)
jwa
jws
jwt
rsa
ecdsa
+1
+4
lodash.debounce
4.0.8
The lodash method `_.debounce` exported as a module.
lodash-modularized
debounce
date-fns
1.30.1
Outdated
Modern JavaScript date utility library
kossnocorp
lodash.isplainobject
4.0.6
The lodash method `_.isPlainObject` exported as a module.
lodash-modularized
isplainobject
html-entities
1.4.0
Outdated
Fastest HTML entities encode/decode library.
html
html entities
html entities encode
html entities decode
entities
+2
mdevils
hoist-non-react-statics
3.3.1 - 3.3.2
Copies non-react specific statics from a child component to a parent component
react
mridgway
querystring
0.2.0
Outdated
Node's querystring module for all engines.
commonjs
query
querystring
ecdsa-sig-formatter
1.0.10 - 1.0.11
Translate ECDSA signatures between ASN.1/DER and JOSE-style concatenation
ecdsa
der
asn.1
jwt
jwa
+2
d2l-travis-deploy
buffer-equal-constant-time
1.0.0 - 1.0.1
Constant-time comparison of Buffers
buffer
equal
constant-time
crypto
lodash.isstring
4.0.1
The lodash method `_.isString` exported as a module.
lodash-modularized
isstring
classnames
2.3.2
Outdated
A simple utility for conditionally joining classNames together
react
css
classes
classname
classnames
+2
get-value
1.0.1 - 1.2.0
Outdated
Use property paths like 'a.b.c' to get a nested value from an object. Even works when keys have dots in them (no other dot-prop library can do this!).
get
key
nested
object
path
+8
lodash.isboolean
3.0.1 - 3.0.3
The lodash method `_.isBoolean` exported as a module.
lodash-modularized
isboolean
@emotion/serialize
0.11.12 - 0.11.16
Outdated
serialization utils for emotion
+1
lodash.isnumber
3.0.1 - 3.0.3
The lodash method `_.isNumber` exported as a module.
lodash-modularized
isnumber
lodash-es
4.17.21
Lodash exported as ES modules.
es6
modules
stdlib
util
crypto-browserify
1.0.9 - 2.0.0
Outdated
implementation of crypto for the browser
+2
resize-observer-polyfill
1.5.0 - 1.5.1
A polyfill for the Resize Observer API
ResizeObserver
resize
observer
util
client
+3
que-etc
p-is-promise
3.0.0 - 4.0.0
Check if something is a promise
promise
is
detect
check
kind
+7
sindresorhus
js-base64
2.6.4
Outdated
Yet another Base64 transcoder in pure-JS
base64
binary
dankogai
set-cookie-parser
2.5.1
Outdated
Parses set-cookie headers into objects
set-cookie
set
cookie
cookies
header
+1
nfriedly
@firebase/util
0.1.0 - 1.7.2
Outdated
_NOTE: This is specifically tailored for Firebase JS SDK usage, if you are not a member of the Firebase team, please avoid using this package_
+1
@firebase/component
0.1.0 - 0.3.1
Outdated
Firebase Component Platform
+1
@angular/core
8.0.0 - 8.2.11
Outdated
Angular - the core framework
@firebase/logger
0.2.5 - 0.2.6
Outdated
A logger package for use in the Firebase JS SDK
+1
attr-accept
2.2.2
JavaScript implementation of the "accept" attribute for HTML5 <input type="file">
html5
input
tag
attribute
attr
+2
relay-runtime
7.1.0 - 14.1.0
Outdated
A core runtime for building GraphQL-driven applications.
graphql
relay
+4
@angular/router
10.0.0 - 14.1.3
Outdated
Angular - the routing library
angular
router
jss
3.4.0 - 3.5.0
Outdated
A lib for generating Style Sheets with JavaScript.
jss
style
sheet
stylesheet
css
+4
kof
react-draggable
4.4.1 - 4.4.5
Outdated
React draggable component
react
draggable
react-component
json2mq
0.2.0
Generate media query string from JSON or javascript object
akiran
string-convert
0.2.0 - 0.2.1
String convertions
akiran
@emotion/core
0.13.0 - 10.3.1
Outdated
+1
firebase
0.900.5
Outdated
Firebase JavaScript library for web and Node.js
authentication
database
Firebase
firebase
realtime
+3
+1
universal-cookie
4.0.1 - 4.0.4
Outdated
Universal cookies for JavaScript
universal
isomophic
cookie
exon
qrcode.react
0.9.0 - 2.0.0
Outdated
React component to generate QR codes
react
react-component
qrcode
zpao
enquire.js
2.1.6
Awesome Media Queries in JavaScript
media query
media queries
matchMedia
enquire
enquire.js
wickynilliams
react-slick
0.27.11 - 0.28.1
Outdated
React port of slick carousel
slick
carousel
Image slider
orbit
slider
+1
akiran
shortid
2.2.15 - 2.2.16
Amazingly short non-sequential url-friendly unique id generator.
short
tiny
id
uuid
bitly
+4
recompose
0.18.0 - 0.30.0
A React utility belt for function components and higher-order components
react
higher-order
components
microcomponentization
toolkit
+2
react-device-detect
1.8.6 - 1.16.0
Outdated
Detect device type and render your component according to it
useragent
mobile
phone
tablet
detect
+7
duskload
qr.js
0.0.0
qrcode encoding in javascript
qrcode
qr
defunctzombie
@chakra-ui/theme
2.1.0 - 2.1.3
Outdated
The default theme for chakra components
theme
theming
ui mode
ui
react-native-web
0.0.118 - 0.2.2
Outdated
React Native for Web
react
react-component
react-native
web
necolas
nookies
2.5.1 - 2.5.2
A set of cookie helpers for Next.js
cookie
cookies
next
nextjs
js
+5
maticzav
tesseract.js
2.0.0 - 3.0.3
Outdated
Pure Javascript Multilingual OCR
+1
react-amphtml
3.1.0 - 4.0.2
Use amphtml components inside your React apps easily!
react
amphtml
dfrankland
Popular search queries
webpack.js.org
url
react-scripts
react
lottie-api
react-helmet-async
+7 packages
github.com
color-convert
@headlessui/react
hoist-non-react-statics
reactstrap
lit-html
+60 packages
pinterest.com
lodash
relay-runtime
react-relay
react-use
lodash-es
+51 packages
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites