92 packages

Last scanned on Oct 27 at 06:13 PM
url-parse 1.4.6 - 1.4.7VulnerableOutdated
Small footprint URL parser that works seamlessly across Node.js and browser environments
3 KB
url-parse incorrectly parses hostname / protocol due to unstripped leading control characters.
Affected versions >=0 <1.5.9
Authorization bypass in url-parse
Affected versions >=0 <1.5.6
Path traversal in url-parse
Affected versions >=0 <1.5.0
Open redirect in url-parse
Affected versions >=0 <1.5.2
Authorization Bypass Through User-Controlled Key in url-parse
Affected versions >=0 <1.5.8
url-parse Incorrectly parses URLs that include an '@'
Affected versions >=0 <1.5.7
Matched Modules
Version distribution in production
lodash 4.17.12 - 4.17.19VulnerableOutdated
Lodash modular utilities.
decode-uri-component 0.2.0VulnerableOutdated
A better decodeURIComponent
lodash.set 4.3.2Vulnerable
The lodash method `_.set` exported as a module.
video.js 4.12.15VulnerableOutdated
An HTML5 video player that supports HLS and DASH with a common API and skin.
es5-ext 0.10.24 - 0.10.49VulnerableOutdated
ECMAScript extensions and shims
next 12.1.0 - 13.0.0VulnerableOutdated
The React Framework
readable-stream 3.6.0Outdated
Node.js Streams, a user-land copy of the stream library from Node.js
string_decoder 1.1.0 - 1.3.0
The string_decoder module from Node core
uuid 9.0.0Outdated
RFC4122 (v1, v4, and v5) UUIDs
isarray 1.0.0 - 2.0.5
Array#isArray for older browsers
inherits 2.0.4
Browser-friendly inheritance fully compatible with standard node.js inherits()
buffer 4.9.1Outdated
Node.js Buffer API, for the browser
regenerator-runtime 0.11.1Outdated
Runtime for Regenerator-compiled generator and async functions.
axios 0.27.2Outdated
Promise based HTTP client for the browser and node.js
rxjs 5.0.0 - 7.5.7Outdated
Reactive Extensions for modern JavaScript
ieee754 1.1.9 - 1.1.13Outdated
Read/write IEEE754 floating point numbers from/to a Buffer or array-like object
base64-js 1.3.1Outdated
Base64 encoding/decoding in pure JS
events 3.0.0 - 3.3.0
Node's event emitter for all engines.
core-js 3.2.1Outdated
Standard library
lodash.merge 4.6.1 - 4.6.2
The Lodash method `_.merge` exported as a module.
htmlparser2 3.0.0 - 3.10.1Outdated
Fast & forgiving HTML/XML parser
requires-port 1.0.0
Check if a protocol requires a certain port number to be added to an URL.
process 0.11.10
process information for node.js and browsers
querystringify 2.1.1Outdated
Querystringify - Small, simple but powerful query string parser.
lodash.debounce 4.0.8
The lodash method `_.debounce` exported as a module.
lodash.memoize 4.1.0 - 4.1.2
The lodash method `_.memoize` exported as a module.
setimmediate 1.0.5
A shim for the setImmediate efficient script yielding API
invariant 2.2.3 - 2.2.4
classnames 2.3.0 - 2.3.1Outdated
A simple utility for conditionally joining classNames together
query-string 7.1.0 - 7.1.1Outdated
Parse and stringify URL query strings
lodash.get 4.4.1 - 4.4.2
The lodash method `_.get` exported as a module.
ramda 0.23.0 - 0.28.0Outdated
A practical functional library for JavaScript programmers.
whatwg-fetch 2.0.4Outdated
A window.fetch polyfill.
snapdragon-util 1.0.6 - 2.1.1Outdated
Utilities for the snapdragon parser/compiler.
strict-uri-encode 2.0.0
A stricter URI encode adhering to RFC 3986
superagent 8.0.0 - 8.0.3Outdated
elegant & feature rich browser / node HTTP with a fluent API
dlv 1.1.3
Safely get a dot-notated property within an object.
tailwindcss 2.2.0 - 3.1.6Outdated
A utility-first CSS framework for rapidly building custom user interfaces.
js-cookie 2.2.1Outdated
A simple, lightweight JavaScript API for handling cookies
loglevel 1.5.0Outdated
Minimal lightweight logging for JavaScript, adding reliable log level methods to any available console.log methods
filter-obj 1.1.0Outdated
Filter object keys and values into a new object
babel-runtime 6.9.1 - 6.26.0
babel selfContained runtime
shallowequal 1.1.0
Like lodash isEqualWith but for shallow equal.
@xmldom/xmldom 0.7.0 - 0.8.3Outdated
A pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module.
split-on-first 1.0.0 - 1.1.0Outdated
Split a string on the first occurance of a given separator
throttle-debounce 3.0.0 - 3.0.1Outdated
Throttle and debounce functions.
lodash.mergewith 4.6.1 - 4.6.2
The Lodash method `_.mergeWith` exported as a module. 3.0.5 - 4.5.3Outdated
Realtime application framework client
@mui/system 5.0.5 - 5.10.10Outdated
MUI System is a set of CSS utilities to help you build custom designs more efficiently. It makes it possible to rapidly lay out custom designs.
is-function 1.0.2
is that thing a function? Use this module to find out
preact 10.4.8 - 10.5.7Outdated
Fast 3kb React-compatible Virtual DOM library.
web-vitals 3.0.0 - 3.0.4Outdated
Easily measure performance metrics in JavaScript
@angular/core 7.2.0 - 8.2.11Outdated
Angular - the core framework
mdast-util-gfm-autolink-literal 0.1.0 - 0.1.3Outdated
mdast extension to parse and serialize GFM autolink literals
d3 2.1.3Outdated
Data-Driven Documents
fp-ts 0.3.0 - 0.4.6Outdated
Functional programming in TypeScript
react-intersection-observer 8.33.0 - 9.4.0Outdated
Monitor if a component is inside the viewport, using IntersectionObserver API
firebase 4.1.4 - 4.5.0Outdated
Firebase JavaScript library for web and Node.js
@ctrl/tinycolor 2.3.0 - 3.4.1Outdated
Fast, small color manipulation and conversion for JavaScript
react-smooth 0.0.5 - 0.1.11Outdated
react animation library
intersection-observer x.x.x
A polyfill for IntersectionObserver
@datadog/browser-rum 3.0.1 - 3.7.0Outdated
Datadog Real User Monitoring (RUM) enables you to visualize and analyze the real-time performance and user journeys of your application's individual users.
element-resize-detector 1.2.4
Resize event emitter for elements.
batch-processor 1.0.0
Batch processing in JS
react-virtualized 7.3.0Outdated
React components for efficiently rendering large, scrollable lists and tabular data
react-sizeme 3.0.2
Make your React Components aware of their width and/or height!
safe-json-parse 2.0.0 - 4.0.0
Parse JSON safely without throwing
keycode 2.1.2 - 2.2.1
Convert between keyboard keycodes and keynames and vice versa.
sweetalert2 7.8.3 - 11.2.1Outdated
A beautiful, responsive, customizable and accessible (WAI-ARIA) replacement for JavaScript's popup boxes, supported fork of sweetalert
ramda-adjunct 1.16.0 - 3.3.0Outdated
Ramda Adjunct is the most popular and most comprehensive set of utilities for use with Ramda, providing a variety of useful, well tested functions with excellent documentation.
mux.js 6.0.0 - 6.2.0Outdated
A collection of lightweight utilities for inspecting and manipulating video container formats.
url-toolkit 2.2.4 - 2.2.5
Build an absolute URL from a base URL and a relative URL (RFC 1808). No dependencies!
rollbar 0.3.2 - 0.5.14Outdated
Effortlessly track and debug errors in your JavaScript applications with Rollbar. This package includes advanced error tracking features and an intuitive interface to help you identify and fix issues more quickly.
videojs-vtt.js 0.15.0 - 0.15.4Outdated
A JavaScript implementation of the WebVTT specification, forked from vtt.js for use with Video.js
@videojs/xhr 2.6.0
small xhr abstraction
bootstrap-vue 2.0.0 - 2.15.0Outdated
With more than 85 components, over 45 available plugins, several directives, and 1000+ icons, BootstrapVue provides one of the most comprehensive implementations of the Bootstrap v4 component and grid system available for Vue.js v2.6, complete with extens
analytics-utils 0.0.7 - 0.0.11Outdated
Analytics utility functions used by 'analytics' module
@splidejs/splide 3.0.0 - 4.1.3Outdated
Splide is a lightweight, flexible and accessible slider/carousel. No dependencies, no Lighthouse errors.
just-clone 1.0.0 - 1.0.2Outdated
deep copies objects and arrays
local-storage 1.0.0 - 1.3.1Outdated
A simplified localStorage API that just works
mdn-polyfills 5.3.0 - 5.16.2Outdated
MDN polyfills
most 0.10.1 - 0.14.0Outdated
Monadic streams
fun-hooks 0.9.6 - 0.9.10Outdated
A generalized and simple hooking API for adding extensibility to applications
woothee 0.3.0 - 1.11.1
User-Agent string parser (js implementation)
prebid.js 1.38.0 - 7.0.0Outdated
Header Bidding Management Library
@mol-ads/scroll-utils x.x.x
@mol-fe/mol-fe-web-push-browser-register x.x.x
loglevel-plugin-prefix x.x.x
state-keeper x.x.x
sane-domparser-error x.x.x
@mol-fe/mol-fe-videojs-ima x.x.x