| 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148114911501151115211531154115511561157115811591160116111621163116411651166116711681169117011711172117311741175117611771178117911801181118211831184118511861187118811891190119111921193119411951196119711981199120012011202120312041205120612071208120912101211121212131214121512161217121812191220122112221223122412251226122712281229123012311232123312341235123612371238123912401241124212431244124512461247124812491250125112521253125412551256125712581259126012611262126312641265126612671268126912701271127212731274127512761277127812791280128112821283128412851286128712881289129012911292129312941295129612971298129913001301130213031304130513061307130813091310131113121313131413151316131713181319132013211322132313241325132613271328132913301331133213331334133513361337133813391340134113421343134413451346134713481349135013511352135313541355135613571358135913601361136213631364136513661367136813691370137113721373137413751376137713781379138013811382138313841385138613871388138913901391139213931394139513961397139813991400140114021403140414051406140714081409141014111412141314141415141614171418141914201421142214231424142514261427142814291430143114321433143414351436143714381439144014411442144314441445144614471448144914501451145214531454145514561457145814591460146114621463146414651466146714681469147014711472147314741475147614771478147914801481148214831484148514861487148814891490149114921493149414951496149714981499150015011502150315041505150615071508150915101511151215131514151515161517151815191520152115221523152415251526152715281529153015311532153315341535153615371538153915401541154215431544154515461547154815491550155115521553155415551556155715581559156015611562156315641565156615671568156915701571157215731574157515761577157815791580158115821583158415851586158715881589159015911592159315941595159615971598159916001601160216031604160516061607160816091610161116121613161416151616161716181619162016211622162316241625162616271628162916301631163216331634163516361637163816391640164116421643164416451646164716481649165016511652165316541655165616571658165916601661166216631664166516661667166816691670167116721673167416751676167716781679168016811682168316841685168616871688168916901691169216931694169516961697169816991700170117021703170417051706170717081709171017111712171317141715171617171718171917201721172217231724172517261727172817291730173117321733173417351736173717381739174017411742174317441745174617471748174917501751175217531754175517561757175817591760176117621763176417651766176717681769177017711772177317741775177617771778177917801781178217831784178517861787178817891790179117921793179417951796179717981799180018011802180318041805180618071808180918101811181218131814181518161817181818191820182118221823182418251826182718281829183018311832183318341835183618371838183918401841184218431844184518461847184818491850185118521853185418551856185718581859186018611862186318641865186618671868186918701871187218731874187518761877187818791880188118821883188418851886188718881889189018911892189318941895189618971898189919001901190219031904190519061907190819091910191119121913191419151916191719181919192019211922192319241925192619271928192919301931193219331934 |
- {
- "@intervolga/optimize-cssnano-plugin": {
- "name": "@intervolga/optimize-cssnano-plugin",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "cssnano",
- "cssnano-preset-default",
- "postcss"
- ],
- "effects": [
- ],
- "range": "*",
- "nodes": [
- "node_modules/@intervolga/optimize-cssnano-plugin"
- ],
- "fixAvailable": true
- },
- "@riophae/vue-treeselect": {
- "name": "@riophae/vue-treeselect",
- "severity": "low",
- "isDirect": true,
- "via": [
- "vue"
- ],
- "effects": [
- ],
- "range": "*",
- "nodes": [
- "node_modules/@riophae/vue-treeselect"
- ],
- "fixAvailable": false
- },
- "@types/webpack-dev-server": {
- "name": "@types/webpack-dev-server",
- "severity": "high",
- "isDirect": false,
- "via": [
- "http-proxy-middleware"
- ],
- "effects": [
- ],
- "range": "3.11.2 - 4.0.3",
- "nodes": [
- "node_modules/@types/webpack-dev-server"
- ],
- "fixAvailable": true
- },
- "@vue/cli-plugin-babel": {
- "name": "@vue/cli-plugin-babel",
- "severity": "moderate",
- "isDirect": true,
- "via": [
- "@vue/cli-service",
- "@vue/cli-shared-utils"
- ],
- "effects": [
- ],
- "range": "\u003e=3.4.0",
- "nodes": [
- "node_modules/@vue/cli-plugin-babel"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-babel",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "@vue/cli-plugin-eslint": {
- "name": "@vue/cli-plugin-eslint",
- "severity": "high",
- "isDirect": true,
- "via": [
- "@vue/cli-service",
- "@vue/cli-shared-utils",
- "inquirer",
- "yorkie"
- ],
- "effects": [
- ],
- "range": "*",
- "nodes": [
- "node_modules/@vue/cli-plugin-eslint"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-eslint",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "@vue/cli-plugin-router": {
- "name": "@vue/cli-plugin-router",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "@vue/cli-service",
- "@vue/cli-shared-utils"
- ],
- "effects": [
- "@vue/cli-service"
- ],
- "range": "*",
- "nodes": [
- "node_modules/@vue/cli-plugin-router"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-babel",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "@vue/cli-plugin-vuex": {
- "name": "@vue/cli-plugin-vuex",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "@vue/cli-service"
- ],
- "effects": [
- "@vue/cli-service"
- ],
- "range": "*",
- "nodes": [
- "node_modules/@vue/cli-plugin-vuex"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-babel",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "@vue/cli-service": {
- "name": "@vue/cli-service",
- "severity": "critical",
- "isDirect": true,
- "via": [
- "@intervolga/optimize-cssnano-plugin",
- "@vue/cli-plugin-router",
- "@vue/cli-plugin-vuex",
- "@vue/cli-shared-utils",
- "@vue/component-compiler-utils",
- "autoprefixer",
- "css-loader",
- "cssnano",
- "html-webpack-plugin",
- "postcss-loader",
- "vue-loader",
- "vue-template-compiler",
- "webpack-dev-server"
- ],
- "effects": [
- "@vue/cli-plugin-babel",
- "@vue/cli-plugin-eslint",
- "@vue/cli-plugin-router",
- "@vue/cli-plugin-vuex"
- ],
- "range": "*",
- "nodes": [
- "node_modules/@vue/cli-service"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-babel",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "@vue/cli-shared-utils": {
- "name": "@vue/cli-shared-utils",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "request"
- ],
- "effects": [
- "@vue/cli-plugin-babel",
- "@vue/cli-plugin-eslint",
- "@vue/cli-plugin-router"
- ],
- "range": "\u003c=4.5.19",
- "nodes": [
- "node_modules/@vue/cli-shared-utils"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-eslint",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "@vue/component-compiler-utils": {
- "name": "@vue/component-compiler-utils",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- "@vue/cli-service",
- "vue-loader"
- ],
- "range": "*",
- "nodes": [
- "node_modules/@vue/component-compiler-utils"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-babel",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "autoprefixer": {
- "name": "autoprefixer",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "1.0.20131222 - 9.8.8",
- "nodes": [
- "node_modules/autoprefixer"
- ],
- "fixAvailable": true
- },
- "bonjour": {
- "name": "bonjour",
- "severity": "high",
- "isDirect": false,
- "via": [
- "multicast-dns"
- ],
- "effects": [
- "webpack-dev-server"
- ],
- "range": "\u003e=3.3.1",
- "nodes": [
- "node_modules/bonjour"
- ],
- "fixAvailable": true
- },
- "cross-spawn": {
- "name": "cross-spawn",
- "severity": "high",
- "isDirect": false,
- "via": [
- {
- "source": 1104663,
- "name": "cross-spawn",
- "dependency": "cross-spawn",
- "title": "Regular Expression Denial of Service (ReDoS) in cross-spawn",
- "url": "https://github.com/advisories/GHSA-3xgq-45jj-v275",
- "severity": "high",
- "cwe": [
- "CWE-1333"
- ],
- "cvss": {
- "score": 7.5,
- "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
- },
- "range": "\u003c6.0.6"
- }
- ],
- "effects": [
- "execa"
- ],
- "range": "\u003c6.0.6",
- "nodes": [
- "node_modules/yorkie/node_modules/cross-spawn"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-eslint",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "css-declaration-sorter": {
- "name": "css-declaration-sorter",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=5.1.2",
- "nodes": [
- "node_modules/css-declaration-sorter"
- ],
- "fixAvailable": true
- },
- "css-loader": {
- "name": "css-loader",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "icss-utils",
- "postcss",
- "postcss-modules-extract-imports",
- "postcss-modules-local-by-default",
- "postcss-modules-scope",
- "postcss-modules-values"
- ],
- "effects": [
- "@vue/cli-service"
- ],
- "range": "0.15.0 - 4.3.0",
- "nodes": [
- "node_modules/css-loader"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-babel",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "cssnano": {
- "name": "cssnano",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "cssnano-preset-default",
- "postcss"
- ],
- "effects": [
- "@intervolga/optimize-cssnano-plugin",
- "@vue/cli-service"
- ],
- "range": "\u003c=4.1.11",
- "nodes": [
- "node_modules/cssnano"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-babel",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "cssnano-preset-default": {
- "name": "cssnano-preset-default",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "css-declaration-sorter",
- "cssnano-util-raw-cache",
- "postcss",
- "postcss-calc",
- "postcss-colormin",
- "postcss-convert-values",
- "postcss-discard-comments",
- "postcss-discard-duplicates",
- "postcss-discard-empty",
- "postcss-discard-overridden",
- "postcss-merge-longhand",
- "postcss-merge-rules",
- "postcss-minify-font-values",
- "postcss-minify-gradients",
- "postcss-minify-params",
- "postcss-minify-selectors",
- "postcss-normalize-charset",
- "postcss-normalize-display-values",
- "postcss-normalize-positions",
- "postcss-normalize-repeat-style",
- "postcss-normalize-string",
- "postcss-normalize-timing-functions",
- "postcss-normalize-unicode",
- "postcss-normalize-url",
- "postcss-normalize-whitespace",
- "postcss-ordered-values",
- "postcss-reduce-initial",
- "postcss-reduce-transforms",
- "postcss-svgo",
- "postcss-unique-selectors"
- ],
- "effects": [
- "cssnano"
- ],
- "range": "\u003c=4.0.8",
- "nodes": [
- "node_modules/cssnano-preset-default"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-babel",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "cssnano-util-raw-cache": {
- "name": "cssnano-util-raw-cache",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "*",
- "nodes": [
- "node_modules/cssnano-util-raw-cache"
- ],
- "fixAvailable": true
- },
- "dns-packet": {
- "name": "dns-packet",
- "severity": "high",
- "isDirect": false,
- "via": [
- "ip"
- ],
- "effects": [
- "multicast-dns"
- ],
- "range": "\u003c=5.2.4",
- "nodes": [
- "node_modules/dns-packet"
- ],
- "fixAvailable": true
- },
- "element-ui": {
- "name": "element-ui",
- "severity": "low",
- "isDirect": true,
- "via": [
- "vue"
- ],
- "effects": [
- ],
- "range": "\u003e=1.0.0-rc.1",
- "nodes": [
- "node_modules/element-ui"
- ],
- "fixAvailable": {
- "name": "element-ui",
- "version": "0.2.6",
- "isSemVerMajor": true
- }
- },
- "eslint": {
- "name": "eslint",
- "severity": "low",
- "isDirect": true,
- "via": [
- "inquirer"
- ],
- "effects": [
- ],
- "range": "4.0.0-alpha.0 - 7.2.0",
- "nodes": [
- "node_modules/eslint"
- ],
- "fixAvailable": {
- "name": "eslint",
- "version": "9.39.1",
- "isSemVerMajor": true
- }
- },
- "execa": {
- "name": "execa",
- "severity": "high",
- "isDirect": false,
- "via": [
- "cross-spawn"
- ],
- "effects": [
- "yorkie"
- ],
- "range": "0.5.0 - 0.9.0",
- "nodes": [
- "node_modules/yorkie/node_modules/execa"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-eslint",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "external-editor": {
- "name": "external-editor",
- "severity": "low",
- "isDirect": false,
- "via": [
- "tmp"
- ],
- "effects": [
- "inquirer"
- ],
- "range": "\u003e=1.1.1",
- "nodes": [
- "node_modules/external-editor"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-eslint",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "form-data": {
- "name": "form-data",
- "severity": "critical",
- "isDirect": false,
- "via": [
- {
- "source": 1109540,
- "name": "form-data",
- "dependency": "form-data",
- "title": "form-data uses unsafe random function in form-data for choosing boundary",
- "url": "https://github.com/advisories/GHSA-fjxv-7rqg-78g4",
- "severity": "critical",
- "cwe": [
- "CWE-330"
- ],
- "cvss": {
- "score": 0,
- "vectorString": null
- },
- "range": "\u003c2.5.4"
- }
- ],
- "effects": [
- "request"
- ],
- "range": "\u003c2.5.4",
- "nodes": [
- "node_modules/request/node_modules/form-data"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-eslint",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "html-minifier": {
- "name": "html-minifier",
- "severity": "high",
- "isDirect": false,
- "via": [
- {
- "source": 1105440,
- "name": "html-minifier",
- "dependency": "html-minifier",
- "title": "kangax html-minifier REDoS vulnerability",
- "url": "https://github.com/advisories/GHSA-pfq8-rq6v-vf5m",
- "severity": "high",
- "cwe": [
- "CWE-400",
- "CWE-1333"
- ],
- "cvss": {
- "score": 7.5,
- "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
- },
- "range": "\u003c=4.0.0"
- }
- ],
- "effects": [
- "html-webpack-plugin"
- ],
- "range": "*",
- "nodes": [
- "node_modules/html-minifier"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-babel",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "html-webpack-plugin": {
- "name": "html-webpack-plugin",
- "severity": "critical",
- "isDirect": false,
- "via": [
- "html-minifier",
- "loader-utils"
- ],
- "effects": [
- "@vue/cli-service",
- "svg-sprite-loader"
- ],
- "range": "1.4.0 - 4.0.0-beta.14",
- "nodes": [
- "node_modules/@vue/cli-service/node_modules/html-webpack-plugin",
- "node_modules/svg-sprite-loader/node_modules/html-webpack-plugin"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-babel",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "http-proxy-middleware": {
- "name": "http-proxy-middleware",
- "severity": "high",
- "isDirect": false,
- "via": [
- {
- "source": 1100223,
- "name": "http-proxy-middleware",
- "dependency": "http-proxy-middleware",
- "title": "Denial of service in http-proxy-middleware",
- "url": "https://github.com/advisories/GHSA-c7qv-q95q-8v27",
- "severity": "high",
- "cwe": [
- "CWE-400"
- ],
- "cvss": {
- "score": 7.5,
- "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
- },
- "range": "\u003c2.0.7"
- },
- {
- "source": 1104105,
- "name": "http-proxy-middleware",
- "dependency": "http-proxy-middleware",
- "title": "http-proxy-middleware allows fixRequestBody to proceed even if bodyParser has failed",
- "url": "https://github.com/advisories/GHSA-9gqv-wp59-fq42",
- "severity": "moderate",
- "cwe": [
- "CWE-754"
- ],
- "cvss": {
- "score": 4,
- "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N"
- },
- "range": "\u003e=1.3.0 \u003c2.0.9"
- },
- {
- "source": 1104106,
- "name": "http-proxy-middleware",
- "dependency": "http-proxy-middleware",
- "title": "http-proxy-middleware can call writeBody twice because \"else if\" is not used",
- "url": "https://github.com/advisories/GHSA-4www-5p9h-95mh",
- "severity": "moderate",
- "cwe": [
- "CWE-670"
- ],
- "cvss": {
- "score": 4,
- "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
- },
- "range": "\u003e=1.3.0 \u003c2.0.8"
- }
- ],
- "effects": [
- "@types/webpack-dev-server",
- "webpack-dev-server"
- ],
- "range": "\u003c=2.0.8",
- "nodes": [
- "node_modules/http-proxy-middleware",
- "node_modules/webpack-dev-server/node_modules/http-proxy-middleware"
- ],
- "fixAvailable": true
- },
- "icss-utils": {
- "name": "icss-utils",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- "css-loader",
- "postcss-modules-local-by-default",
- "postcss-modules-values"
- ],
- "range": "\u003c=4.1.1",
- "nodes": [
- "node_modules/icss-utils"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-babel",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "inquirer": {
- "name": "inquirer",
- "severity": "low",
- "isDirect": false,
- "via": [
- "external-editor"
- ],
- "effects": [
- "@vue/cli-plugin-eslint",
- "eslint"
- ],
- "range": "3.0.0 - 8.2.6 || 9.0.0 - 9.3.7",
- "nodes": [
- "node_modules/inquirer"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-eslint",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "ip": {
- "name": "ip",
- "severity": "high",
- "isDirect": false,
- "via": [
- {
- "source": 1101851,
- "name": "ip",
- "dependency": "ip",
- "title": "ip SSRF improper categorization in isPublic",
- "url": "https://github.com/advisories/GHSA-2p57-rm9w-gvfp",
- "severity": "high",
- "cwe": [
- "CWE-918"
- ],
- "cvss": {
- "score": 8.1,
- "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
- },
- "range": "\u003c=2.0.1"
- }
- ],
- "effects": [
- "dns-packet",
- "webpack-dev-server"
- ],
- "range": "*",
- "nodes": [
- "node_modules/ip"
- ],
- "fixAvailable": true
- },
- "json5": {
- "name": "json5",
- "severity": "high",
- "isDirect": false,
- "via": [
- {
- "source": 1096543,
- "name": "json5",
- "dependency": "json5",
- "title": "Prototype Pollution in JSON5 via Parse Method",
- "url": "https://github.com/advisories/GHSA-9c47-m6qq-7p4h",
- "severity": "high",
- "cwe": [
- "CWE-1321"
- ],
- "cvss": {
- "score": 7.1,
- "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H"
- },
- "range": "\u003c1.0.2"
- }
- ],
- "effects": [
- "loader-utils"
- ],
- "range": "\u003c1.0.2",
- "nodes": [
- "node_modules/@vue/cli-service/node_modules/json5",
- "node_modules/svg-sprite-loader/node_modules/html-webpack-plugin/node_modules/json5"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-babel",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "loader-utils": {
- "name": "loader-utils",
- "severity": "critical",
- "isDirect": false,
- "via": [
- {
- "source": 1094088,
- "name": "loader-utils",
- "dependency": "loader-utils",
- "title": "Prototype pollution in webpack loader-utils",
- "url": "https://github.com/advisories/GHSA-76p3-8jx3-jpfq",
- "severity": "critical",
- "cwe": [
- "CWE-1321"
- ],
- "cvss": {
- "score": 9.8,
- "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
- },
- "range": "\u003c1.4.1"
- },
- "json5"
- ],
- "effects": [
- "html-webpack-plugin"
- ],
- "range": "\u003c=1.4.0",
- "nodes": [
- "node_modules/@vue/cli-service/node_modules/loader-utils",
- "node_modules/svg-sprite-loader/node_modules/html-webpack-plugin/node_modules/loader-utils"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-babel",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "lodash": {
- "name": "lodash",
- "severity": "critical",
- "isDirect": false,
- "via": [
- {
- "source": 1106913,
- "name": "lodash",
- "dependency": "lodash",
- "title": "Command Injection in lodash",
- "url": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm",
- "severity": "high",
- "cwe": [
- "CWE-77",
- "CWE-94"
- ],
- "cvss": {
- "score": 7.2,
- "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"
- },
- "range": "\u003c4.17.21"
- },
- {
- "source": 1106918,
- "name": "lodash",
- "dependency": "lodash",
- "title": "Prototype Pollution in lodash",
- "url": "https://github.com/advisories/GHSA-jf85-cpcp-j695",
- "severity": "critical",
- "cwe": [
- "CWE-20",
- "CWE-1321"
- ],
- "cvss": {
- "score": 9.1,
- "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"
- },
- "range": "\u003c4.17.12"
- },
- {
- "source": 1106920,
- "name": "lodash",
- "dependency": "lodash",
- "title": "Prototype Pollution in lodash",
- "url": "https://github.com/advisories/GHSA-p6mc-m468-83gw",
- "severity": "high",
- "cwe": [
- "CWE-770",
- "CWE-1321"
- ],
- "cvss": {
- "score": 7.4,
- "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H"
- },
- "range": "\u003e=3.7.0 \u003c4.17.19"
- },
- {
- "source": 1108258,
- "name": "lodash",
- "dependency": "lodash",
- "title": "Regular Expression Denial of Service (ReDoS) in lodash",
- "url": "https://github.com/advisories/GHSA-29mw-wpgm-hmr9",
- "severity": "moderate",
- "cwe": [
- "CWE-400",
- "CWE-1333"
- ],
- "cvss": {
- "score": 5.3,
- "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"
- },
- "range": "\u003e=4.0.0 \u003c4.17.21"
- }
- ],
- "effects": [
- "microcli"
- ],
- "range": "\u003c=4.17.20",
- "nodes": [
- "node_modules/microcli/node_modules/lodash"
- ],
- "fixAvailable": {
- "name": "runjs",
- "version": "4.1.3",
- "isSemVerMajor": true
- }
- },
- "microcli": {
- "name": "microcli",
- "severity": "high",
- "isDirect": false,
- "via": [
- "lodash"
- ],
- "effects": [
- "runjs"
- ],
- "range": "\u003e=1.1.0",
- "nodes": [
- "node_modules/microcli"
- ],
- "fixAvailable": {
- "name": "runjs",
- "version": "4.1.3",
- "isSemVerMajor": true
- }
- },
- "multicast-dns": {
- "name": "multicast-dns",
- "severity": "high",
- "isDirect": false,
- "via": [
- "dns-packet"
- ],
- "effects": [
- "bonjour"
- ],
- "range": "6.0.0 - 7.2.2",
- "nodes": [
- "node_modules/multicast-dns"
- ],
- "fixAvailable": true
- },
- "postcss": {
- "name": "postcss",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- {
- "source": 1093539,
- "name": "postcss",
- "dependency": "postcss",
- "title": "Regular Expression Denial of Service in postcss",
- "url": "https://github.com/advisories/GHSA-566m-qj78-rww5",
- "severity": "moderate",
- "cwe": [
- "CWE-400"
- ],
- "cvss": {
- "score": 5.3,
- "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"
- },
- "range": "\u003c7.0.36"
- },
- {
- "source": 1109574,
- "name": "postcss",
- "dependency": "postcss",
- "title": "PostCSS line return parsing error",
- "url": "https://github.com/advisories/GHSA-7fh5-64p2-3v2j",
- "severity": "moderate",
- "cwe": [
- "CWE-74",
- "CWE-144"
- ],
- "cvss": {
- "score": 5.3,
- "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
- },
- "range": "\u003c8.4.31"
- }
- ],
- "effects": [
- "@intervolga/optimize-cssnano-plugin",
- "@vue/component-compiler-utils",
- "autoprefixer",
- "css-declaration-sorter",
- "css-loader",
- "cssnano",
- "cssnano-preset-default",
- "cssnano-util-raw-cache",
- "icss-utils",
- "postcss-calc",
- "postcss-colormin",
- "postcss-convert-values",
- "postcss-discard-comments",
- "postcss-discard-duplicates",
- "postcss-discard-empty",
- "postcss-discard-overridden",
- "postcss-loader",
- "postcss-merge-longhand",
- "postcss-merge-rules",
- "postcss-minify-font-values",
- "postcss-minify-gradients",
- "postcss-minify-params",
- "postcss-minify-selectors",
- "postcss-modules-extract-imports",
- "postcss-modules-local-by-default",
- "postcss-modules-scope",
- "postcss-modules-values",
- "postcss-normalize-charset",
- "postcss-normalize-display-values",
- "postcss-normalize-positions",
- "postcss-normalize-repeat-style",
- "postcss-normalize-string",
- "postcss-normalize-timing-functions",
- "postcss-normalize-unicode",
- "postcss-normalize-url",
- "postcss-normalize-whitespace",
- "postcss-ordered-values",
- "postcss-reduce-initial",
- "postcss-reduce-transforms",
- "postcss-svgo",
- "postcss-unique-selectors",
- "stylehacks",
- "svg-baker"
- ],
- "range": "\u003c=8.4.30",
- "nodes": [
- "node_modules/postcss",
- "node_modules/svg-baker/node_modules/postcss"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-babel",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "postcss-calc": {
- "name": "postcss-calc",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "4.1.0 - 7.0.5",
- "nodes": [
- "node_modules/postcss-calc"
- ],
- "fixAvailable": true
- },
- "postcss-colormin": {
- "name": "postcss-colormin",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.3",
- "nodes": [
- "node_modules/postcss-colormin"
- ],
- "fixAvailable": true
- },
- "postcss-convert-values": {
- "name": "postcss-convert-values",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.1",
- "nodes": [
- "node_modules/postcss-convert-values"
- ],
- "fixAvailable": true
- },
- "postcss-discard-comments": {
- "name": "postcss-discard-comments",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.2",
- "nodes": [
- "node_modules/postcss-discard-comments"
- ],
- "fixAvailable": true
- },
- "postcss-discard-duplicates": {
- "name": "postcss-discard-duplicates",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "1.1.0 - 4.0.2",
- "nodes": [
- "node_modules/postcss-discard-duplicates"
- ],
- "fixAvailable": true
- },
- "postcss-discard-empty": {
- "name": "postcss-discard-empty",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "1.1.0 - 4.0.1",
- "nodes": [
- "node_modules/postcss-discard-empty"
- ],
- "fixAvailable": true
- },
- "postcss-discard-overridden": {
- "name": "postcss-discard-overridden",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.1",
- "nodes": [
- "node_modules/postcss-discard-overridden"
- ],
- "fixAvailable": true
- },
- "postcss-loader": {
- "name": "postcss-loader",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.1",
- "nodes": [
- "node_modules/postcss-loader"
- ],
- "fixAvailable": true
- },
- "postcss-merge-longhand": {
- "name": "postcss-merge-longhand",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss",
- "stylehacks"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.11",
- "nodes": [
- "node_modules/postcss-merge-longhand"
- ],
- "fixAvailable": true
- },
- "postcss-merge-rules": {
- "name": "postcss-merge-rules",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.3",
- "nodes": [
- "node_modules/postcss-merge-rules"
- ],
- "fixAvailable": true
- },
- "postcss-minify-font-values": {
- "name": "postcss-minify-font-values",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.2",
- "nodes": [
- "node_modules/postcss-minify-font-values"
- ],
- "fixAvailable": true
- },
- "postcss-minify-gradients": {
- "name": "postcss-minify-gradients",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.2",
- "nodes": [
- "node_modules/postcss-minify-gradients"
- ],
- "fixAvailable": true
- },
- "postcss-minify-params": {
- "name": "postcss-minify-params",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.2",
- "nodes": [
- "node_modules/postcss-minify-params"
- ],
- "fixAvailable": true
- },
- "postcss-minify-selectors": {
- "name": "postcss-minify-selectors",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.2",
- "nodes": [
- "node_modules/postcss-minify-selectors"
- ],
- "fixAvailable": true
- },
- "postcss-modules-extract-imports": {
- "name": "postcss-modules-extract-imports",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=2.0.0",
- "nodes": [
- "node_modules/postcss-modules-extract-imports"
- ],
- "fixAvailable": true
- },
- "postcss-modules-local-by-default": {
- "name": "postcss-modules-local-by-default",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "icss-utils",
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.0-rc.4",
- "nodes": [
- "node_modules/postcss-modules-local-by-default"
- ],
- "fixAvailable": true
- },
- "postcss-modules-scope": {
- "name": "postcss-modules-scope",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=2.2.0",
- "nodes": [
- "node_modules/postcss-modules-scope"
- ],
- "fixAvailable": true
- },
- "postcss-modules-values": {
- "name": "postcss-modules-values",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "icss-utils",
- "postcss"
- ],
- "effects": [
- "css-loader"
- ],
- "range": "\u003c=4.0.0-rc.5",
- "nodes": [
- "node_modules/postcss-modules-values"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-babel",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "postcss-normalize-charset": {
- "name": "postcss-normalize-charset",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.1",
- "nodes": [
- "node_modules/postcss-normalize-charset"
- ],
- "fixAvailable": true
- },
- "postcss-normalize-display-values": {
- "name": "postcss-normalize-display-values",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.2",
- "nodes": [
- "node_modules/postcss-normalize-display-values"
- ],
- "fixAvailable": true
- },
- "postcss-normalize-positions": {
- "name": "postcss-normalize-positions",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.2",
- "nodes": [
- "node_modules/postcss-normalize-positions"
- ],
- "fixAvailable": true
- },
- "postcss-normalize-repeat-style": {
- "name": "postcss-normalize-repeat-style",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.2",
- "nodes": [
- "node_modules/postcss-normalize-repeat-style"
- ],
- "fixAvailable": true
- },
- "postcss-normalize-string": {
- "name": "postcss-normalize-string",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.2",
- "nodes": [
- "node_modules/postcss-normalize-string"
- ],
- "fixAvailable": true
- },
- "postcss-normalize-timing-functions": {
- "name": "postcss-normalize-timing-functions",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.2",
- "nodes": [
- "node_modules/postcss-normalize-timing-functions"
- ],
- "fixAvailable": true
- },
- "postcss-normalize-unicode": {
- "name": "postcss-normalize-unicode",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.1",
- "nodes": [
- "node_modules/postcss-normalize-unicode"
- ],
- "fixAvailable": true
- },
- "postcss-normalize-url": {
- "name": "postcss-normalize-url",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "1.1.0 - 4.0.1",
- "nodes": [
- "node_modules/postcss-normalize-url"
- ],
- "fixAvailable": true
- },
- "postcss-normalize-whitespace": {
- "name": "postcss-normalize-whitespace",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.2",
- "nodes": [
- "node_modules/postcss-normalize-whitespace"
- ],
- "fixAvailable": true
- },
- "postcss-ordered-values": {
- "name": "postcss-ordered-values",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.1.2",
- "nodes": [
- "node_modules/postcss-ordered-values"
- ],
- "fixAvailable": true
- },
- "postcss-reduce-initial": {
- "name": "postcss-reduce-initial",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.3",
- "nodes": [
- "node_modules/postcss-reduce-initial"
- ],
- "fixAvailable": true
- },
- "postcss-reduce-transforms": {
- "name": "postcss-reduce-transforms",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.2",
- "nodes": [
- "node_modules/postcss-reduce-transforms"
- ],
- "fixAvailable": true
- },
- "postcss-svgo": {
- "name": "postcss-svgo",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.3",
- "nodes": [
- "node_modules/postcss-svgo"
- ],
- "fixAvailable": true
- },
- "postcss-unique-selectors": {
- "name": "postcss-unique-selectors",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- ],
- "range": "\u003c=4.0.1",
- "nodes": [
- "node_modules/postcss-unique-selectors"
- ],
- "fixAvailable": true
- },
- "request": {
- "name": "request",
- "severity": "critical",
- "isDirect": false,
- "via": [
- {
- "source": 1096727,
- "name": "request",
- "dependency": "request",
- "title": "Server-Side Request Forgery in Request",
- "url": "https://github.com/advisories/GHSA-p8p7-x288-28g6",
- "severity": "moderate",
- "cwe": [
- "CWE-918"
- ],
- "cvss": {
- "score": 6.1,
- "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
- },
- "range": "\u003c=2.88.2"
- },
- "form-data",
- "tough-cookie"
- ],
- "effects": [
- "@vue/cli-shared-utils"
- ],
- "range": "*",
- "nodes": [
- "node_modules/request"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-eslint",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "runjs": {
- "name": "runjs",
- "severity": "high",
- "isDirect": true,
- "via": [
- "microcli"
- ],
- "effects": [
- ],
- "range": "\u003e=4.2.0",
- "nodes": [
- "node_modules/runjs"
- ],
- "fixAvailable": {
- "name": "runjs",
- "version": "4.1.3",
- "isSemVerMajor": true
- }
- },
- "stylehacks": {
- "name": "stylehacks",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- "postcss-merge-longhand"
- ],
- "range": "\u003c=4.0.3",
- "nodes": [
- "node_modules/stylehacks"
- ],
- "fixAvailable": true
- },
- "svg-baker": {
- "name": "svg-baker",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "postcss"
- ],
- "effects": [
- "svg-baker-runtime",
- "svg-sprite-loader"
- ],
- "range": "\u003e=1.2.5",
- "nodes": [
- "node_modules/svg-baker"
- ],
- "fixAvailable": {
- "name": "svg-sprite-loader",
- "version": "5.2.1",
- "isSemVerMajor": false
- }
- },
- "svg-baker-runtime": {
- "name": "svg-baker-runtime",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "svg-baker"
- ],
- "effects": [
- "svg-sprite-loader"
- ],
- "range": "\u003e=1.4.0-alpha.10475b37",
- "nodes": [
- "node_modules/svg-baker-runtime"
- ],
- "fixAvailable": {
- "name": "svg-sprite-loader",
- "version": "5.2.1",
- "isSemVerMajor": false
- }
- },
- "svg-sprite-loader": {
- "name": "svg-sprite-loader",
- "severity": "critical",
- "isDirect": true,
- "via": [
- "html-webpack-plugin",
- "svg-baker",
- "svg-baker-runtime"
- ],
- "effects": [
- ],
- "range": "\u003e=2.0.4",
- "nodes": [
- "node_modules/svg-sprite-loader"
- ],
- "fixAvailable": {
- "name": "svg-sprite-loader",
- "version": "5.2.1",
- "isSemVerMajor": false
- }
- },
- "tmp": {
- "name": "tmp",
- "severity": "low",
- "isDirect": false,
- "via": [
- {
- "source": 1109537,
- "name": "tmp",
- "dependency": "tmp",
- "title": "tmp allows arbitrary temporary file / directory write via symbolic link `dir` parameter",
- "url": "https://github.com/advisories/GHSA-52f5-9888-hmc6",
- "severity": "low",
- "cwe": [
- "CWE-59"
- ],
- "cvss": {
- "score": 2.5,
- "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N"
- },
- "range": "\u003c=0.2.3"
- }
- ],
- "effects": [
- "external-editor"
- ],
- "range": "\u003c=0.2.3",
- "nodes": [
- "node_modules/tmp"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-eslint",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "tough-cookie": {
- "name": "tough-cookie",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- {
- "source": 1097682,
- "name": "tough-cookie",
- "dependency": "tough-cookie",
- "title": "tough-cookie Prototype Pollution vulnerability",
- "url": "https://github.com/advisories/GHSA-72xf-g2v4-qvf3",
- "severity": "moderate",
- "cwe": [
- "CWE-1321"
- ],
- "cvss": {
- "score": 6.5,
- "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
- },
- "range": "\u003c4.1.3"
- }
- ],
- "effects": [
- "request"
- ],
- "range": "\u003c4.1.3",
- "nodes": [
- "node_modules/tough-cookie"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-eslint",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "vue": {
- "name": "vue",
- "severity": "low",
- "isDirect": true,
- "via": [
- {
- "source": 1100238,
- "name": "vue",
- "dependency": "vue",
- "title": "ReDoS vulnerability in vue package that is exploitable through inefficient regex evaluation in the parseHTML function",
- "url": "https://github.com/advisories/GHSA-5j4c-8p2g-v4jx",
- "severity": "low",
- "cwe": [
- "CWE-1333"
- ],
- "cvss": {
- "score": 3.7,
- "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"
- },
- "range": "\u003e=2.0.0-alpha.1 \u003c3.0.0-alpha.0"
- }
- ],
- "effects": [
- "@riophae/vue-treeselect",
- "element-ui",
- "vuex"
- ],
- "range": "2.0.0-alpha.1 - 2.7.16",
- "nodes": [
- "node_modules/vue"
- ],
- "fixAvailable": {
- "name": "element-ui",
- "version": "0.2.6",
- "isSemVerMajor": true
- }
- },
- "vue-loader": {
- "name": "vue-loader",
- "severity": "moderate",
- "isDirect": false,
- "via": [
- "@vue/component-compiler-utils"
- ],
- "effects": [
- ],
- "range": "15.0.0-beta.1 - 15.11.1",
- "nodes": [
- "node_modules/vue-loader"
- ],
- "fixAvailable": true
- },
- "vue-template-compiler": {
- "name": "vue-template-compiler",
- "severity": "moderate",
- "isDirect": true,
- "via": [
- {
- "source": 1098721,
- "name": "vue-template-compiler",
- "dependency": "vue-template-compiler",
- "title": "vue-template-compiler vulnerable to client-side Cross-Site Scripting (XSS)",
- "url": "https://github.com/advisories/GHSA-g3ch-rx76-35fx",
- "severity": "moderate",
- "cwe": [
- "CWE-79"
- ],
- "cvss": {
- "score": 4.2,
- "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
- },
- "range": "\u003e=2.0.0 \u003c3.0.0"
- }
- ],
- "effects": [
- "@vue/cli-service"
- ],
- "range": "\u003e=2.0.0",
- "nodes": [
- "node_modules/vue-template-compiler"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-babel",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- },
- "vuex": {
- "name": "vuex",
- "severity": "low",
- "isDirect": true,
- "via": [
- "vue"
- ],
- "effects": [
- ],
- "range": "3.1.3 - 3.6.2",
- "nodes": [
- "node_modules/vuex"
- ],
- "fixAvailable": {
- "name": "vuex",
- "version": "4.1.0",
- "isSemVerMajor": true
- }
- },
- "webpack-dev-server": {
- "name": "webpack-dev-server",
- "severity": "high",
- "isDirect": false,
- "via": [
- {
- "source": 1108429,
- "name": "webpack-dev-server",
- "dependency": "webpack-dev-server",
- "title": "webpack-dev-server users\u0027 source code may be stolen when they access a malicious web site with non-Chromium based browser",
- "url": "https://github.com/advisories/GHSA-9jgg-88mc-972h",
- "severity": "moderate",
- "cwe": [
- "CWE-346"
- ],
- "cvss": {
- "score": 6.5,
- "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"
- },
- "range": "\u003c=5.2.0"
- },
- {
- "source": 1108430,
- "name": "webpack-dev-server",
- "dependency": "webpack-dev-server",
- "title": "webpack-dev-server users\u0027 source code may be stolen when they access a malicious web site",
- "url": "https://github.com/advisories/GHSA-4v9v-hfq4-rm2v",
- "severity": "moderate",
- "cwe": [
- "CWE-749"
- ],
- "cvss": {
- "score": 5.3,
- "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"
- },
- "range": "\u003c=5.2.0"
- },
- "bonjour",
- "http-proxy-middleware",
- "ip"
- ],
- "effects": [
- ],
- "range": "\u003c=5.2.0",
- "nodes": [
- "node_modules/webpack-dev-server"
- ],
- "fixAvailable": true
- },
- "yorkie": {
- "name": "yorkie",
- "severity": "high",
- "isDirect": false,
- "via": [
- "execa"
- ],
- "effects": [
- "@vue/cli-plugin-eslint"
- ],
- "range": "*",
- "nodes": [
- "node_modules/yorkie"
- ],
- "fixAvailable": {
- "name": "@vue/cli-plugin-eslint",
- "version": "5.0.9",
- "isSemVerMajor": true
- }
- }
- }
|
