92 packages

Last scanned on Oct 27 at 06:13 PM
url-parse 1.4.6 - 1.4.7VulnerableOutdated
Small footprint URL parser that works seamlessly across Node.js and browser environments
3 KB
Authorization Bypass Through User-Controlled Key in url-parse
Affected versions >=0 <1.5.8
Incorrect hostname / protocol due to unstripped leading control characters.
Affected versions >=0 <1.5.9
Authorization bypass in url-parse
Affected versions >=0 <1.5.6
Path traversal in url-parse
Affected versions >=0 <1.5.0
Open redirect in url-parse
Affected versions >=0 <1.5.2
Incorrect returned href via an '@' sign but no user info and hostname
Affected versions >=0 <1.5.7
Matched Modules
Version distribution in production
lodash 4.17.12 - 4.17.19VulnerableOutdated
Lodash modular utilities.
decode-uri-component 0.2.0VulnerableOutdated
A better decodeURIComponent
video.js 4.12.15VulnerableOutdated
An HTML5 video player that supports HLS and DASH with a common API and skin.
readable-stream 3.6.0Outdated
Node.js Streams, a user-land copy of the stream library from Node.js
string_decoder 1.1.0 - 1.3.0
The string_decoder module from Node core
uuid 9.0.0
RFC4122 (v1, v4, and v5) UUIDs
isarray 1.0.0 - 2.0.5
Array#isArray for older browsers
inherits 2.0.4
Browser-friendly inheritance fully compatible with standard node.js inherits()
buffer 4.9.1Outdated
Node.js Buffer API, for the browser
rxjs 5.0.0 - 7.5.7Outdated
Reactive Extensions for modern JavaScript
regenerator-runtime 0.11.1Outdated
Runtime for Regenerator-compiled generator and async functions.
axios 0.27.2Outdated
Promise based HTTP client for the browser and node.js
core-js 3.2.1Outdated
Standard library
ieee754 1.1.9 - 1.1.13Outdated
Read/write IEEE754 floating point numbers from/to a Buffer or array-like object
base64-js 1.3.1Outdated
Base64 encoding/decoding in pure JS
events 3.0.0 - 3.3.0
Node's event emitter for all engines.
htmlparser2 3.0.0 - 3.10.1Outdated
Fast & forgiving HTML/XML parser
lodash.merge 4.6.1 - 4.6.2
The Lodash method `_.merge` exported as a module.
requires-port 1.0.0
Check if a protocol requires a certain port number to be added to an URL.
lodash.debounce 4.0.8
The lodash method `_.debounce` exported as a module.
process 0.11.10
process information for node.js and browsers
lodash.memoize 4.1.0 - 4.1.2
The lodash method `_.memoize` exported as a module.
querystringify 2.1.1Outdated
Querystringify - Small, simple but powerful query string parser.
setimmediate 1.0.5
A shim for the setImmediate efficient script yielding API
snapdragon-util 1.0.6 - 2.1.1Outdated
Utilities for the snapdragon parser/compiler.
invariant 2.2.3 - 2.2.4
query-string 7.1.0 - 7.1.1Outdated
Parse and stringify URL query strings
classnames 2.3.0 - 2.3.1Outdated
A simple utility for conditionally joining classNames together
whatwg-fetch 2.0.4Outdated
A window.fetch polyfill.
strict-uri-encode 2.0.0
A stricter URI encode adhering to RFC 3986
lodash.get 4.4.1 - 4.4.2
The lodash method `_.get` exported as a module.
ramda 0.23.0 - 0.28.0Outdated
A practical functional library for JavaScript programmers.
es5-ext 0.10.24 - 0.10.49Outdated
ECMAScript extensions and shims
babel-runtime 6.9.1 - 6.26.0
babel selfContained runtime
loglevel 1.5.0Outdated
Minimal lightweight logging for JavaScript, adding reliable log level methods to any available console.log methods
superagent 8.0.0 - 8.0.3Outdated
elegant & feature rich browser / node HTTP with a fluent API
shallowequal 1.1.0
Like lodash isEqualWith but for shallow equal.
js-cookie 2.2.1Outdated
A simple, lightweight JavaScript API for handling cookies
dlv 1.1.3
Safely get a dot-notated property within an object.
tailwindcss 2.2.0 - 3.1.6Outdated
A utility-first CSS framework for rapidly building custom user interfaces.
filter-obj 1.1.0Outdated
Filter object keys and values into a new object
is-function 1.0.2
is that thing a function? Use this module to find out
split-on-first 1.0.0 - 1.1.0Outdated
Split a string on the first occurance of a given separator
@xmldom/xmldom 0.7.0 - 0.8.3Outdated
A pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module.
throttle-debounce 3.0.0 - 3.0.1Outdated
Throttle and debounce functions.
next 12.1.0 - 13.0.0Outdated
The React Framework
vercel-release-bot 3.0.5 - 4.5.3Outdated
Realtime application framework client
lodash.mergewith 4.6.1 - 4.6.2
The Lodash method `_.mergeWith` exported as a module.
@angular/core 7.2.0 - 8.2.11Outdated
Angular - the core framework
web-vitals 3.0.0 - 3.0.4Outdated
Easily measure performance metrics in JavaScript
@mui/system 5.0.5 - 5.10.10Outdated
CSS utilities for rapidly laying out custom designs.
lodash.set 4.3.2
The lodash method `_.set` exported as a module.
preact 10.4.8 - 10.5.7Outdated
Fast 3kb React-compatible Virtual DOM library.
element-resize-detector 1.2.4
Resize event emitter for elements.
d3 2.1.3Outdated
Data-Driven Documents
batch-processor 1.0.0
Batch processing in JS
react-sizeme 3.0.2
Make your React Components aware of their width and/or height!
react-virtualized 7.3.0Outdated
React components for efficiently rendering large, scrollable lists and tabular data
fp-ts 0.3.0 - 0.4.6Outdated
Functional programming in TypeScript
mdast-util-gfm-autolink-literal 0.1.0 - 0.1.3Outdated
mdast extension to parse and serialize GFM autolink literals
intersection-observer x.x.x
A polyfill for IntersectionObserver
firebase 4.1.4 - 4.5.0Outdated
Firebase JavaScript library for web and Node.js
@ctrl/tinycolor 2.3.0 - 3.4.1Outdated
Fast, small color manipulation and conversion for JavaScript
@datadog/browser-rum 3.0.1 - 3.7.0Outdated
Datadog Real User Monitoring (RUM) enables you to visualize and analyze the real-time performance and user journeys of your application's individual users.
react-intersection-observer 8.33.0 - 9.4.0Outdated
Monitor if a component is inside the viewport, using IntersectionObserver API
keycode 2.1.2 - 2.2.1
Convert between keyboard keycodes and keynames and vice versa.
react-smooth 0.0.5 - 0.1.11Outdated
react animation library
safe-json-parse 2.0.0 - 4.0.0
Parse JSON safely without throwing
url-toolkit 2.2.4 - 2.2.5
Build an absolute URL from a base URL and a relative URL (RFC 1808). No dependencies!
mux.js 6.0.0 - 6.2.0Outdated
A collection of lightweight utilities for inspecting and manipulating video container formats.
sweetalert2 7.8.3 - 11.2.1Outdated
A beautiful, responsive, customizable and accessible (WAI-ARIA) replacement for JavaScript's popup boxes, supported fork of sweetalert
videojs-vtt.js 0.15.0 - 0.15.4
A JavaScript implementation of the WebVTT specification, forked from vtt.js for use with Video.js
@videojs/xhr 2.6.0
small xhr abstraction
rollbar 0.3.2 - 0.5.14Outdated
Error tracking and logging from JS to Rollbar
bootstrap-vue 2.0.0 - 2.15.0Outdated
With more than 85 components, over 45 available plugins, several directives, and 1000+ icons, BootstrapVue provides one of the most comprehensive implementations of the Bootstrap v4 component and grid system available for Vue.js v2.6, complete with extens
ramda-adjunct 1.16.0 - 3.3.0Outdated
Ramda Adjunct is the most popular and most comprehensive set of utilities for use with Ramda, providing a variety of useful, well tested functions with excellent documentation.
analytics-utils 0.0.7 - 0.0.11Outdated
Analytics utility functions used by 'analytics' module
@splidejs/splide 3.0.0 - 4.1.3Outdated
Splide is a lightweight, flexible and accessible slider/carousel. No dependencies, no Lighthouse errors.
just-clone 1.0.0 - 1.0.2Outdated
deep copies objects and arrays
mdn-polyfills 5.3.0 - 5.16.2Outdated
MDN polyfills
local-storage 1.0.0 - 1.3.1Outdated
A simplified localStorage API that just works
most 0.10.1 - 0.14.0Outdated
Monadic streams
woothee 0.3.0 - 1.11.1
User-Agent string parser (js implementation)
fun-hooks 0.9.6 - 0.9.10Outdated
A generalized and simple hooking API for adding extensibility to applications
prebid.js 1.38.0 - 7.0.0Outdated
Header Bidding Management Library
@mol-ads/scroll-utils x.x.x
@mol-fe/mol-fe-web-push-browser-register x.x.x
loglevel-plugin-prefix x.x.x
state-keeper x.x.x
sane-domparser-error x.x.x
@mol-fe/mol-fe-videojs-ima x.x.x