Coder Social home page Coder Social logo

albermonte / nimiq-shortener Goto Github PK

View Code? Open in Web Editor NEW
9.0 4.0 3.0 6.62 MB

Short your URL and earn NIM

Home Page: https://shortnim.vercel.app/

License: GNU Affero General Public License v3.0

HTML 27.07% JavaScript 16.75% CSS 56.19%
nimiq shorten-urls javascript

nimiq-shortener's Introduction

Metrics

nimiq-shortener's People

Contributors

albermonte avatar imgbotapp avatar mend-bolt-for-github[bot] avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar

Forkers

onmax digital-capital 0xnim

nimiq-shortener's Issues

CVE-2018-11693 High Severity Vulnerability detected by WhiteSource

CVE-2018-11693 - High Severity Vulnerability

Vulnerable Library - node-sassv4.11.0

๐ŸŒˆ Node.js bindings to libsass

Library home page: https://github.com/sass/node-sass.git

Found in HEAD commit: 9794db07226697a1ef5b0f5c1e953d2932d3b336

Library Source Files (125)

* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.

  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/unchecked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/base.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operation.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.hpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/contrib/plugin.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_superselector.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_def_macros.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/paths.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_unification.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/json.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/checked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass2scss.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/factory.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/value.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/callback_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/functions.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_function_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/bind.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/backtrace.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/sass_value_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debugger.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cencode.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/base64vlq.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/number.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/c99func.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/values.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass2scss.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/null.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/context.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/script/test-leaks.pl
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/b64/encode.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.hpp
  • /nimiq-shortener/node_modules/node-sass/src/binding.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debug.hpp

Vulnerability Details

An issue was discovered in LibSass through 3.5.4. An out-of-bounds read of a memory region was found in the function Sass::Prelexer::skip_over_scopes which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service.

Publish Date: 2018-06-04

URL: CVE-2018-11693

CVSS 3 Score Details (8.1)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: Required
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: High
    • Integrity Impact: None
    • Availability Impact: High

For more information on CVSS3 Scores, click here.

Step up your Open Source Security Game with WhiteSource here

Doesn't work?

On the desktop version, I fill every box correctly then click Shorten It but nothing happens...

CVE-2018-20190 Medium Severity Vulnerability detected by WhiteSource

CVE-2018-20190 - Medium Severity Vulnerability

Vulnerable Library - node-sassv4.11.0

๐ŸŒˆ Node.js bindings to libsass

Library home page: https://github.com/sass/node-sass.git

Found in HEAD commit: 9794db07226697a1ef5b0f5c1e953d2932d3b336

Library Source Files (125)

* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.

  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/unchecked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/base.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operation.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.hpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/contrib/plugin.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_superselector.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_def_macros.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/paths.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_unification.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/json.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/checked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass2scss.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/factory.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/value.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/callback_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/functions.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_function_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/bind.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/backtrace.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/sass_value_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debugger.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cencode.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/base64vlq.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/number.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/c99func.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/values.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass2scss.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/null.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/context.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/script/test-leaks.pl
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/b64/encode.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.hpp
  • /nimiq-shortener/node_modules/node-sass/src/binding.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debug.hpp

Vulnerability Details

In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::Eval::operator()(Sass::Supports_Operator*) in eval.cpp may cause a Denial of Service (application crash) via a crafted sass input file.

Publish Date: 2018-12-17

URL: CVE-2018-20190

CVSS 3 Score Details (6.5)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: Required
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: None
    • Integrity Impact: None
    • Availability Impact: High

For more information on CVSS3 Scores, click here.

Step up your Open Source Security Game with WhiteSource here

CVE-2019-6284 Medium Severity Vulnerability detected by WhiteSource

CVE-2019-6284 - Medium Severity Vulnerability

Vulnerable Library - node-sassv4.11.0

๐ŸŒˆ Node.js bindings to libsass

Library home page: https://github.com/sass/node-sass.git

Found in HEAD commit: 9794db07226697a1ef5b0f5c1e953d2932d3b336

Library Source Files (125)

* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.

  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/unchecked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/base.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operation.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.hpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/contrib/plugin.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_superselector.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_def_macros.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/paths.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_unification.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/json.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/checked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass2scss.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/factory.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/value.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/callback_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/functions.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_function_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/bind.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/backtrace.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/sass_value_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debugger.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cencode.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/base64vlq.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/number.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/c99func.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/values.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass2scss.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/null.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/context.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/script/test-leaks.pl
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/b64/encode.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.hpp
  • /nimiq-shortener/node_modules/node-sass/src/binding.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debug.hpp

Vulnerability Details

In LibSass 3.5.5, a heap-based buffer over-read exists in Sass::Prelexer::alternatives in prelexer.hpp.

Publish Date: 2019-01-14

URL: CVE-2019-6284

CVSS 3 Score Details (6.5)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: Required
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: None
    • Integrity Impact: None
    • Availability Impact: High

For more information on CVSS3 Scores, click here.

Step up your Open Source Security Game with WhiteSource here

CVE-2018-19839 Medium Severity Vulnerability detected by WhiteSource

CVE-2018-19839 - Medium Severity Vulnerability

Vulnerable Library - node-sassv4.11.0

๐ŸŒˆ Node.js bindings to libsass

Library home page: https://github.com/sass/node-sass.git

Found in HEAD commit: 9794db07226697a1ef5b0f5c1e953d2932d3b336

Library Source Files (125)

* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.

  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/unchecked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/base.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operation.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.hpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/contrib/plugin.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_superselector.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_def_macros.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/paths.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_unification.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/json.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/checked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass2scss.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/factory.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/value.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/callback_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/functions.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_function_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/bind.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/backtrace.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/sass_value_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debugger.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cencode.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/base64vlq.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/number.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/c99func.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/values.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass2scss.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/null.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/context.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/script/test-leaks.pl
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/b64/encode.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.hpp
  • /nimiq-shortener/node_modules/node-sass/src/binding.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debug.hpp

Vulnerability Details

In LibSass prior to 3.5.5, the function handle_error in sass_context.cpp allows attackers to cause a denial-of-service resulting from a heap-based buffer over-read via a crafted sass file.

Publish Date: 2018-12-04

URL: CVE-2018-19839

CVSS 3 Score Details (6.5)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: Required
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: None
    • Integrity Impact: None
    • Availability Impact: High

For more information on CVSS3 Scores, click here.

Suggested Fix

Type: Upgrade version

Origin: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19839

Fix Resolution: 3.5.5

Step up your Open Source Security Game with WhiteSource here

CVE-2018-11499 High Severity Vulnerability detected by WhiteSource

CVE-2018-11499 - High Severity Vulnerability

Vulnerable Library - node-sassv4.11.0

๐ŸŒˆ Node.js bindings to libsass

Library home page: https://github.com/sass/node-sass.git

Found in HEAD commit: 9794db07226697a1ef5b0f5c1e953d2932d3b336

Library Source Files (125)

* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.

  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/unchecked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/base.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operation.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.hpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/contrib/plugin.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_superselector.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_def_macros.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/paths.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_unification.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/json.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/checked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass2scss.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/factory.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/value.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/callback_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/functions.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_function_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/bind.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/backtrace.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/sass_value_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debugger.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cencode.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/base64vlq.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/number.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/c99func.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/values.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass2scss.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/null.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/context.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/script/test-leaks.pl
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/b64/encode.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.hpp
  • /nimiq-shortener/node_modules/node-sass/src/binding.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debug.hpp

Vulnerability Details

A use-after-free vulnerability exists in handle_error() in sass_context.cpp in LibSass 3.4.x and 3.5.x through 3.5.4 that could be leveraged to cause a denial of service (application crash) or possibly unspecified other impact.

Publish Date: 2018-05-26

URL: CVE-2018-11499

CVSS 3 Score Details (9.8)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: None
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: High
    • Integrity Impact: High
    • Availability Impact: High

For more information on CVSS3 Scores, click here.

Step up your Open Source Security Game with WhiteSource here

CVE-2019-6283 Medium Severity Vulnerability detected by WhiteSource

CVE-2019-6283 - Medium Severity Vulnerability

Vulnerable Library - node-sassv4.11.0

๐ŸŒˆ Node.js bindings to libsass

Library home page: https://github.com/sass/node-sass.git

Found in HEAD commit: 9794db07226697a1ef5b0f5c1e953d2932d3b336

Library Source Files (125)

* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.

  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/unchecked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/base.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operation.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.hpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/contrib/plugin.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_superselector.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_def_macros.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/paths.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_unification.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/json.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/checked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass2scss.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/factory.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/value.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/callback_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/functions.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_function_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/bind.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/backtrace.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/sass_value_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debugger.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cencode.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/base64vlq.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/number.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/c99func.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/values.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass2scss.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/null.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/context.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/script/test-leaks.pl
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/b64/encode.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.hpp
  • /nimiq-shortener/node_modules/node-sass/src/binding.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debug.hpp

Vulnerability Details

In LibSass 3.5.5, a heap-based buffer over-read exists in Sass::Prelexer::parenthese_scope in prelexer.hpp.

Publish Date: 2019-01-14

URL: CVE-2019-6283

CVSS 3 Score Details (6.5)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: Required
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: None
    • Integrity Impact: None
    • Availability Impact: High

For more information on CVSS3 Scores, click here.

Step up your Open Source Security Game with WhiteSource here

CVE-2020-15168 (Medium) detected in node-fetch-2.6.0.tgz

CVE-2020-15168 - Medium Severity Vulnerability

Vulnerable Library - node-fetch-2.6.0.tgz

A light-weight module that brings window.fetch to node.js

Library home page: https://registry.npmjs.org/node-fetch/-/node-fetch-2.6.0.tgz

Path to dependency file: nimiq-shortener/package.json

Path to vulnerable library: nimiq-shortener/node_modules/node-fetch/package.json

Dependency Hierarchy:

  • โŒ node-fetch-2.6.0.tgz (Vulnerable Library)

Found in HEAD commit: 0808c9f558faeef0b9c668bca534de4ef726b2d0

Found in base branch: master

Vulnerability Details

node-fetch before versions 2.6.1 and 3.0.0-beta.9 did not honor the size option after following a redirect, which means that when a content size was over the limit, a FetchError would never get thrown and the process would end without failure. For most people, this fix will have a little or no impact. However, if you are relying on node-fetch to gate files above a size, the impact could be significant, for example: If you don't double-check the size of the data after fetch() has completed, your JS thread could get tied up doing work on a large file (DoS) and/or cost you money in computing.

Publish Date: 2020-09-10

URL: CVE-2020-15168

CVSS 3 Score Details (5.3)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: None
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: None
    • Integrity Impact: None
    • Availability Impact: Low

For more information on CVSS3 Scores, click here.

Suggested Fix

Type: Upgrade version

Origin: GHSA-w7rc-rwvf-8q5r

Release Date: 2020-07-21

Fix Resolution: 2.6.1,3.0.0-beta.9

Step up your Open Source Security Game with WhiteSource here

CVE-2018-11697 High Severity Vulnerability detected by WhiteSource

CVE-2018-11697 - High Severity Vulnerability

Vulnerable Library - node-sassv4.11.0

๐ŸŒˆ Node.js bindings to libsass

Library home page: https://github.com/sass/node-sass.git

Found in HEAD commit: 9794db07226697a1ef5b0f5c1e953d2932d3b336

Library Source Files (125)

* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.

  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/unchecked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/base.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operation.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.hpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/contrib/plugin.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_superselector.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_def_macros.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/paths.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_unification.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/json.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/checked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass2scss.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/factory.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/value.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/callback_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/functions.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_function_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/bind.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/backtrace.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/sass_value_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debugger.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cencode.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/base64vlq.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/number.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/c99func.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/values.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass2scss.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/null.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/context.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/script/test-leaks.pl
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/b64/encode.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.hpp
  • /nimiq-shortener/node_modules/node-sass/src/binding.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debug.hpp

Vulnerability Details

An issue was discovered in LibSass through 3.5.4. An out-of-bounds read of a memory region was found in the function Sass::Prelexer::exactly() which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service.

Publish Date: 2018-06-04

URL: CVE-2018-11697

CVSS 3 Score Details (8.1)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: Required
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: High
    • Integrity Impact: None
    • Availability Impact: High

For more information on CVSS3 Scores, click here.

Step up your Open Source Security Game with WhiteSource here

CVE-2018-19827 High Severity Vulnerability detected by WhiteSource

CVE-2018-19827 - High Severity Vulnerability

Vulnerable Library - node-sassv4.11.0

๐ŸŒˆ Node.js bindings to libsass

Library home page: https://github.com/sass/node-sass.git

Found in HEAD commit: 9794db07226697a1ef5b0f5c1e953d2932d3b336

Library Source Files (125)

* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.

  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/unchecked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/base.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operation.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.hpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/contrib/plugin.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_superselector.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_def_macros.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/paths.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_unification.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/json.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/checked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass2scss.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/factory.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/value.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/callback_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/functions.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_function_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/bind.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/backtrace.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/sass_value_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debugger.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cencode.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/base64vlq.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/number.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/c99func.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/values.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass2scss.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/null.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/context.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/script/test-leaks.pl
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/b64/encode.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.hpp
  • /nimiq-shortener/node_modules/node-sass/src/binding.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debug.hpp

Vulnerability Details

In LibSass 3.5.5, a use-after-free vulnerability exists in the SharedPtr class in SharedPtr.cpp (or SharedPtr.hpp) that may cause a denial of service (application crash) or possibly have unspecified other impact.

Publish Date: 2018-12-03

URL: CVE-2018-19827

CVSS 3 Score Details (8.8)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: Required
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: High
    • Integrity Impact: High
    • Availability Impact: High

For more information on CVSS3 Scores, click here.

Step up your Open Source Security Game with WhiteSource here

CVE-2018-11695 High Severity Vulnerability detected by WhiteSource

CVE-2018-11695 - High Severity Vulnerability

Vulnerable Library - node-sassv4.11.0

๐ŸŒˆ Node.js bindings to libsass

Library home page: https://github.com/sass/node-sass.git

Found in HEAD commit: 9794db07226697a1ef5b0f5c1e953d2932d3b336

Library Source Files (125)

* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.

  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/unchecked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/base.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operation.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.hpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/contrib/plugin.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_superselector.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_def_macros.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/paths.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_unification.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/json.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/checked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass2scss.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/factory.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/value.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/callback_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/functions.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_function_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/bind.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/backtrace.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/sass_value_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debugger.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cencode.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/base64vlq.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/number.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/c99func.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/values.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass2scss.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/null.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/context.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/script/test-leaks.pl
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/b64/encode.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.hpp
  • /nimiq-shortener/node_modules/node-sass/src/binding.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debug.hpp

Vulnerability Details

An issue was discovered in LibSass through 3.5.2. A NULL pointer dereference was found in the function Sass::Expand::operator which could be leveraged by an attacker to cause a denial of service (application crash) or possibly have unspecified other impact.

Publish Date: 2018-06-04

URL: CVE-2018-11695

CVSS 3 Score Details (8.8)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: Required
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: High
    • Integrity Impact: High
    • Availability Impact: High

For more information on CVSS3 Scores, click here.

Step up your Open Source Security Game with WhiteSource here

CVE-2018-19797 Medium Severity Vulnerability detected by WhiteSource

CVE-2018-19797 - Medium Severity Vulnerability

Vulnerable Library - node-sassv4.11.0

๐ŸŒˆ Node.js bindings to libsass

Library home page: https://github.com/sass/node-sass.git

Found in HEAD commit: 9794db07226697a1ef5b0f5c1e953d2932d3b336

Library Source Files (125)

* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.

  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/unchecked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/base.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operation.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.hpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/contrib/plugin.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_superselector.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_def_macros.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/paths.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_unification.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/json.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/checked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass2scss.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/factory.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/value.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/callback_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/functions.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_function_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/bind.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/backtrace.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/sass_value_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debugger.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cencode.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/base64vlq.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/number.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/c99func.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/values.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass2scss.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/null.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/context.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/script/test-leaks.pl
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/b64/encode.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.hpp
  • /nimiq-shortener/node_modules/node-sass/src/binding.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debug.hpp

Vulnerability Details

In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::Selector_List::populate_extends in SharedPtr.hpp (used by ast.cpp and ast_selectors.cpp) may cause a Denial of Service (application crash) via a crafted sass input file.

Publish Date: 2018-12-03

URL: CVE-2018-19797

CVSS 3 Score Details (6.5)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: Required
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: None
    • Integrity Impact: None
    • Availability Impact: High

For more information on CVSS3 Scores, click here.

Step up your Open Source Security Game with WhiteSource here

CVE-2020-7788 (High) detected in ini-1.3.5.tgz

CVE-2020-7788 - High Severity Vulnerability

Vulnerable Library - ini-1.3.5.tgz

An ini encoder/decoder for node

Library home page: https://registry.npmjs.org/ini/-/ini-1.3.5.tgz

Path to dependency file: nimiq-shortener/package.json

Path to vulnerable library: nimiq-shortener/node_modules/ini/package.json

Dependency Hierarchy:

  • nodemon-2.0.3.tgz (Root Library)
    • update-notifier-4.1.0.tgz
      • is-installed-globally-0.3.2.tgz
        • global-dirs-2.0.1.tgz
          • โŒ ini-1.3.5.tgz (Vulnerable Library)

Found in HEAD commit: 0808c9f558faeef0b9c668bca534de4ef726b2d0

Found in base branch: master

Vulnerability Details

This affects the package ini before 1.3.6. If an attacker submits a malicious INI file to an application that parses it with ini.parse, they will pollute the prototype on the application. This can be exploited further depending on the context.

Publish Date: 2020-12-11

URL: CVE-2020-7788

CVSS 3 Score Details (7.3)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: None
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: Low
    • Integrity Impact: Low
    • Availability Impact: Low

For more information on CVSS3 Scores, click here.

Suggested Fix

Type: Upgrade version

Origin: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7788

Release Date: 2020-12-11

Fix Resolution: v1.3.6

Step up your Open Source Security Game with WhiteSource here

CVE-2018-19838 Medium Severity Vulnerability detected by WhiteSource

CVE-2018-19838 - Medium Severity Vulnerability

Vulnerable Library - node-sassv4.11.0

๐ŸŒˆ Node.js bindings to libsass

Library home page: https://github.com/sass/node-sass.git

Found in HEAD commit: 9794db07226697a1ef5b0f5c1e953d2932d3b336

Library Source Files (125)

* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.

  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/unchecked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/base.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operation.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.hpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/contrib/plugin.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_superselector.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_def_macros.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/paths.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_unification.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/json.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/checked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass2scss.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/factory.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/value.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/callback_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/functions.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_function_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/bind.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/backtrace.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/sass_value_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debugger.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cencode.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/base64vlq.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/number.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/c99func.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/values.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass2scss.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/null.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/context.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/script/test-leaks.pl
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/b64/encode.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.hpp
  • /nimiq-shortener/node_modules/node-sass/src/binding.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debug.hpp

Vulnerability Details

In LibSass prior to 3.5.5, functions inside ast.cpp for IMPLEMENT_AST_OPERATORS expansion allow attackers to cause a denial-of-service resulting from stack consumption via a crafted sass file, as demonstrated by recursive calls involving clone(), cloneChildren(), and copy().

Publish Date: 2018-12-04

URL: CVE-2018-19838

CVSS 3 Score Details (6.5)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: Required
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: None
    • Integrity Impact: None
    • Availability Impact: High

For more information on CVSS3 Scores, click here.

Suggested Fix

Type: Upgrade version

Origin: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19838

Fix Resolution: 3.5.5

Step up your Open Source Security Game with WhiteSource here

CVE-2018-19826 Medium Severity Vulnerability detected by WhiteSource

CVE-2018-19826 - Medium Severity Vulnerability

Vulnerable Library - node-sassv4.11.0

๐ŸŒˆ Node.js bindings to libsass

Library home page: https://github.com/sass/node-sass.git

Found in HEAD commit: 9794db07226697a1ef5b0f5c1e953d2932d3b336

Library Source Files (125)

* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.

  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/unchecked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/base.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operation.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.hpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/contrib/plugin.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_superselector.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_def_macros.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/paths.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_unification.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/json.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/checked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass2scss.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/factory.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/value.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/callback_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/functions.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_function_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/bind.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/backtrace.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/sass_value_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debugger.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cencode.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/base64vlq.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/number.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/c99func.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/values.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass2scss.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/null.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/context.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/script/test-leaks.pl
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/b64/encode.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.hpp
  • /nimiq-shortener/node_modules/node-sass/src/binding.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debug.hpp

Vulnerability Details

In inspect.cpp in LibSass 3.5.5, a high memory footprint caused by an endless loop (containing a Sass::Inspect::operator()(Sass::String_Quoted*) stack frame) may cause a Denial of Service via crafted sass input files with stray '&' or '/' characters.

Publish Date: 2018-12-03

URL: CVE-2018-19826

CVSS 3 Score Details (6.5)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: Required
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: None
    • Integrity Impact: None
    • Availability Impact: High

For more information on CVSS3 Scores, click here.

Step up your Open Source Security Game with WhiteSource here

Ideas

  • Show how long the redirect for each mined nim would take, like put 10 in the box and see the waiting time, as putting 1000 shares and waiting one hour wont work. (By ferray; https://www.reddit.com/r/Nimiq/comments/9kbvzq/monthly_discussion_community_questions_october_01/e7fxm6u)

  • Infinite shares for donation with a minimun to skip. (By Bushwhack#4967; I was toying with the idea of setting up a charity site where the particular charity would have its own designated wallet. So if they wanted to donate shares/nim to that cause they'd just click the shortnim link. Are you planning on leaving the share limit at 3 indefinitely? )

  • Nimiq info while waiting, medium post, etc. (Sry, dont remember who told me)

  • Slider to select the number of threads to use.

CVE-2018-11694 High Severity Vulnerability detected by WhiteSource

CVE-2018-11694 - High Severity Vulnerability

Vulnerable Library - node-sassv4.11.0

๐ŸŒˆ Node.js bindings to libsass

Library home page: https://github.com/sass/node-sass.git

Found in HEAD commit: 9794db07226697a1ef5b0f5c1e953d2932d3b336

Library Source Files (125)

* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.

  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/unchecked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/base.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operation.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.hpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/contrib/plugin.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_superselector.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_def_macros.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/paths.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_unification.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/json.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/checked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass2scss.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/factory.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/value.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/callback_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/functions.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_function_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/bind.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/backtrace.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/sass_value_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debugger.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cencode.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/base64vlq.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/number.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/c99func.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/values.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass2scss.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/null.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/context.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/script/test-leaks.pl
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/b64/encode.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.hpp
  • /nimiq-shortener/node_modules/node-sass/src/binding.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debug.hpp

Vulnerability Details

An issue was discovered in LibSass through 3.5.4. A NULL pointer dereference was found in the function Sass::Functions::selector_append which could be leveraged by an attacker to cause a denial of service (application crash) or possibly have unspecified other impact.

Publish Date: 2018-06-04

URL: CVE-2018-11694

CVSS 3 Score Details (8.8)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: Required
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: High
    • Integrity Impact: High
    • Availability Impact: High

For more information on CVSS3 Scores, click here.

Step up your Open Source Security Game with WhiteSource here

CVE-2019-6286 Medium Severity Vulnerability detected by WhiteSource

CVE-2019-6286 - Medium Severity Vulnerability

Vulnerable Library - node-sassv4.11.0

๐ŸŒˆ Node.js bindings to libsass

Library home page: https://github.com/sass/node-sass.git

Found in HEAD commit: 9794db07226697a1ef5b0f5c1e953d2932d3b336

Library Source Files (125)

* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.

  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/unchecked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/base.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operation.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.hpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/contrib/plugin.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_superselector.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_def_macros.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/paths.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_unification.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/json.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/checked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass2scss.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/factory.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/value.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/callback_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/functions.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_function_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/bind.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/backtrace.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/sass_value_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debugger.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cencode.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/base64vlq.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/number.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/c99func.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/values.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass2scss.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/null.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/context.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/script/test-leaks.pl
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/b64/encode.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.hpp
  • /nimiq-shortener/node_modules/node-sass/src/binding.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debug.hpp

Vulnerability Details

In LibSass 3.5.5, a heap-based buffer over-read exists in Sass::Prelexer::skip_over_scopes in prelexer.hpp when called from Sass::Parser::parse_import(), a similar issue to CVE-2018-11693.

Publish Date: 2019-01-14

URL: CVE-2019-6286

CVSS 3 Score Details (6.5)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: Required
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: None
    • Integrity Impact: None
    • Availability Impact: High

For more information on CVSS3 Scores, click here.

Step up your Open Source Security Game with WhiteSource here

CVE-2018-11698 High Severity Vulnerability detected by WhiteSource

CVE-2018-11698 - High Severity Vulnerability

Vulnerable Library - node-sassv4.11.0

๐ŸŒˆ Node.js bindings to libsass

Library home page: https://github.com/sass/node-sass.git

Found in HEAD commit: 9794db07226697a1ef5b0f5c1e953d2932d3b336

Library Source Files (125)

* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.

  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/unchecked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/base.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operation.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.hpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/contrib/plugin.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_superselector.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/error_handling.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/emitter.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/output.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_def_macros.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/paths.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_unification.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/json.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/check_nesting.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/units.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8/checked.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/listize.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/prelexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass2scss.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/eval.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/expand.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/factory.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/boolean.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/source_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/value.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/utf8_string.cpp
  • /nimiq-shortener/node_modules/node-sass/src/callback_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/node.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/operators.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast_fwd_decl.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/parser.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/constants.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/list.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cssize.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/functions.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/util.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_function_bridge.cpp
  • /nimiq-shortener/node_modules/node-sass/src/custom_importer_bridge.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/bind.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/inspect.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_functions.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/backtrace.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/extend.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/sass_value_wrapper.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debugger.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/cencode.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/base64vlq.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/number.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/color.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/c99func.c
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/position.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/remove_placeholders.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_values.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/values.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/test/test_subset_map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass2scss.cpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/null.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/include/sass/context.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/ast.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/color_maps.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_context_wrapper.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/script/test-leaks.pl
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/memory/SharedPtr.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/lexer.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_c.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/to_value.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/b64/encode.h
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/file.hpp
  • /nimiq-shortener/node_modules/node-sass/src/sass_types/map.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/environment.hpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/plugins.hpp
  • /nimiq-shortener/node_modules/node-sass/src/binding.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/sass_context.cpp
  • /nimiq-shortener/node_modules/node-sass/src/libsass/src/debug.hpp

Vulnerability Details

An issue was discovered in LibSass through 3.5.4. An out-of-bounds read of a memory region was found in the function Sass::handle_error which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service.

Publish Date: 2018-06-04

URL: CVE-2018-11698

CVSS 3 Score Details (8.1)

Base Score Metrics:

  • Exploitability Metrics:
    • Attack Vector: Network
    • Attack Complexity: Low
    • Privileges Required: None
    • User Interaction: Required
    • Scope: Unchanged
  • Impact Metrics:
    • Confidentiality Impact: High
    • Integrity Impact: None
    • Availability Impact: High

For more information on CVSS3 Scores, click here.

Step up your Open Source Security Game with WhiteSource here

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.