Type JavaScript Library
Timeline
The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.
Remediation »
Vendors and researchers are eager to find countermeasures to mitigate security vulnerabilities. These can be distinguished between multiple forms and levels of remediation which influence risks differently.
Exploitability »
Researcher and attacker which are looking for security vulnerabilities try to exploit them for academic purposes or personal gain. The level and quality of exploitability can be distinguished to determine simplicity and strength of attacks.
CVSSv3 Base »
The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.
VulDB »
The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.
NVD »
The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.
Exploit 0-day »
The moderation team is working with the threat intelligence team to determine prices for exploits. Our unique algorithm is used to identify the 0-day prices for an exploit, before it got distributed or became public. Calculated prices are aligned to prices disclosed by vulnerability broker and compared to prices we see on exploit markets.
Affected Products (514): 11xiaoli, 22lixian, 360class.jansenhm, 626, adamvr-geoip-lite, aegir, Aerospike Module, ag-grid, air-sdk, airbrake Module, alto-saxophone, angular.js, angular, angular-expressions, angular-http-server, AngularJS, Angular Expressions, Angular Redactor, ansi2html, Apache wicket-jquery-ui, apk-parser, apk-parser2, apk-parser3, appium-chromedriver, arcanist, arrayfire-js, asciitable.js, assign-deep, atob, atom-node-module-installer, augustine, auth0.js, Auth0 angular-jwt, babelcli, backbone, badjs-sourcemap-server, baryton-saxophone, bionode-sra, bittorrent-dht, Bitty, bkjs-wand, Blueimp jQuery-File-Upload, botbait, box2d-native, bracket-template, bson-objectid, byucslabsix, calmquist.static-server, caolilinode, censorify.tanisjr, charset, chart.js, chatbyvista, Chromedriver, chromedriver126, citypredict.whauwiller, clang-extra, closure-utils, closurecompiler, cloudpub-redis, cmake, co-cli-installer, codem-transcode Module, cofee-script, cofeescript, coffe-script, coffescript, commentapp.stetsonwood, Connect, console-io, Content module, Converse.js, cross-env.js, crossenv, Crossslide Jquery, crud-file-server, csrf-lite, csv-parse Module, cuciuci, cue-sdk-node, Curses, cyber-js, cypserver, d3.js, Daansystems Newsreactor, DaanSystems NewsReactor, dalek-browser-chrome, dalek-browser-chrome-canary, dalek-browser-ie, dalek-browser-ie-canary, dasafio, datachannel-client, dcdcdcdcdc, dcserver, Deap, Debug Module, Decamelize, decompress Package, deep-extend, defaults-deep, Dennis Bruecke jQuery Countdown, desafio, dgard8.lab6, discordi.js, dmmcquay.lab6, Dns-sync, Droppy, dwebp-bin, dylmomo, earlybird, easyquick, Ecstatic Module, elding, electron-packager, ElectronJS, Elliptic Package, embedza, Ember.js, engine.io-client, enserver, ewgaddis.lab6, Express Web Framework, exxxxxxxxxxx, f2e-server, fabric-js, fancy-server, fast-http-cli, Fastify, fbr-client, ffmepg, fibjs, fis-parser-sass-bin, fis-sass-all, Forms, forwarded, frames-compiler, Fresh, fsk-server, galenframework-cli, gaoxiaotingtingting, gaoxuyan, general-file-server, geoip-lite-country, getcityapi.yoehoehne, gfe-sass, gh-pages, GitBook, Glance, go-ipfs-deps, GoDaddy node-config-shield, google-closure-tools-latest, goserv, Growl, grunt-ccompiler, grunt-images, grunt-webdriver-qunit, gruntcli, handlebars Package, Hapi, hapi-auth-jwt2, Hapijs Crumb Plugin, Hapi Module, haxe, haxe-dev, haxeshim, hcbserver, headless-browser-lite, healthcenter, hekto, herbivore, hexo-admin Plugin, hftp, Highlight.js, hostr, hot-formula-parser Package, html-janitor, html-pages, html-pdf Package, http-signature, httpsync, HTTP Client Module, http_static_simple, hubl-server, i18n-node-angular, i18next, ibapi, ibm_db, iedriver, igniteui, ikst, imageoptim, Inert Module, infraserver, ini_parser.js, install-g-test, install-nw, intsol-package, Inverse.js, ipip, ipip-coffee, iter-http, iter-server, jadedown, jansenstuffpleasework, jdf-sass, jikes, jn_jj_server, Joe Schofield get-ip-range package, jquery.js, jQuery, jquery-ui, jQuery UI, jqueryFileTree, jQuery Picture Cut, jQuery UI, jQuery Upload File, jQuery Validation Plugin, jquey, js-given, jser-stat, jshamcrest, Jsonwebtoken Module, jsrsasign Package, jstestdriver, jvminstall, jwt-simple, Kelektiv node.bcrypt.js, Kerberos Package, KeyCloak, Keycloak Node.js Adapter, Keystone Module, Kindlegen, knex.js, lab6.brit95, lab6drewfusbyu, lessindex, libsbml, libsbmlsim, libxl, limbus-buildgen, list-n-stream, liuyaserver, liyujing, localhost-now, lodahs, lodash, looppake, ltt, macaca-chromedriver, macaca-chromedriver-zxa, macaddress, Mapbox.js, marionette-socket-host, marked, marked Package, massif, math.js, mcstatic, MediaElement.js, Mediaelementjs MediaElement.js, merge-deep, merge-options, merge-recursive, method-override, mfrs, mfrserver, mime Module, Minimatch, mixin-deep, mockserve, Moment Module, moment Package, mongose, Morris.js, MQTT.js, MQTT, mssql.js, mssql-node, msystem, ms Package, MTAppjQuery, mustache Package, myprolyz, myserver.alexcthomas18, mysqljs, mysqljs Module, mystem-fix, mystem-wrapper, mystem3, nats.js, nats.ws, negotiator, Nes, Next.js, no-case, Node.js, node-air-sdk, node-browser, node-bsdiff-android, node-cli, node-fabric, node-jose, node-opensl, node-serialize Package, node-server-forfront, node-sqlite, node-srv, node-thulac, node-tkinter, nodeaaaaa, nodecaffe, nodefabric, nodeffmpeg, nodemailer.js, nodemailer-js, nodemssql, noderequest, nodesass, nodeschnaps, nodesqlite, nodewebkit, NPR Visuals Team Pym.js, ntfserver, Nunjucks, nw.js, nw, nw-with-arm, open-device, openframe-ascii-image, openframe-glsviewer, openframe-image, OpenPGP.js, operadriver, pandora-doomsday, parsejson, pdfinfojs, peiserver, pennyworth, phantomjs-cheniu, picard, Pivotal Reactor Netty, pk-app-wonderbox, Plotly plotly.js, pm2-kafka, pngcrush-installer, poco, pooledwebsocket, PouchDB, prebuild-lwip, Prince Module, product-monitor, progfay scrapbox-parser, protobufjs, pswd.js, ps Package, public, public Module, pytservce, qbs, qinserve, qs Module, quickserver, Rbot Reaction Plugin, React, react-adal, react-dev-utils, react-native-baidu-voice-synthesizer, react-native-fast-image, react-native-meteor-oauth, Reactor Netty, Reactor Netty HttpServer, ReactOS, RealObjects PDFreactor, redis-srvr, reduce-css-calc, reecerver, remarkable, Request, resolve-path, resourcehacker, restafary, Restify, restify-paginate, reveal.js, riot-compiler, ritp, robot-js, roslib-socketio, rs-brightcove, rtcmulticonnection-client, safe-eval, Sails.js, Sanitize-html, sauce-connect, scala-bin, scala-standalone-bin, scott-blanch-weather-app, section2.madisonjbrooks12, secure-compare, selenium-binaries, selenium-chromedriver, selenium-download, selenium-portal, selenium-standalone-painful, selenium-wrapper, semver Package, Sencisho, send Package, sequalize, sequalize Module, serc.js, serialize-to-js Package, Serve, serve-here.js Module, serve-index Package, serve46, serverabc, serverhuwenhui, serverliujiayi1, serverlyr, serverwg, serverwzl, serverxxx, serveryaozeyan, serveryztyzt, serverzyy, sfml, sgqserve, shadowsock, shell-quote, shenliru, shit-server, Shouts, simplehttpserver, slashify Package, slimerjs-edge, slug, sly07, SmartyStreets liveAddressPlugin.js, smb, soci, socket.io-file, Socket.io, sqlite.js, sqliter, sqlserver, sshpk, sspa, ssri Module, ST, stacktable.js, static-eval, static-html-server, stattic Module, Status React Native Desktop, Steroids, strider-sauce, string, stringstream Module, st Module, Summit, susu-sum, sync-exec, tar Package, tencent-server, Textangular, timespan, tiny-http, tinyserver2, tkinter, tmock, tomita, total.js, Total.js CMS, Total.js Platform, Tough-Cookie Module, ua-parser, Ucdok tomato, uekw1511server, uglify-js Package, unicode-json, unicorn-list, URI.js, uri-js, Useragent, utahcityfinder, uv-tj-demo, wanggoujing123, waterline-sequel, weather.swlyons, webdriver-launcher, webdrvr, webrtc-native, welcomyzt, wffserve, whispercast, Wicket jQuery UI, wind-mvc, windows-iedriver, windows-latestchromedriver, windows-selenium-chromedriver, windows-seleniumjar, windows-seleniumjar-mirror, wintiwebdev, wixtoolset, ws, ws Module, xtalk, yttivy, yyooopack, yzt, ZEIT Next.js, zjjserver, zwserver
Interested in the pricing of exploits?
See the underground prices here!