VulnerableCode Package Details - pkg:npm/ag-grid@10.0.2-beta.1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:npm/ag-grid@10.0.2-beta.1

Essentials
History (2)

purl	pkg:npm/ag-grid@10.0.2-beta.1

Next non-vulnerable version	18.1.3
Latest non-vulnerable version	18.1.3
Risk

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-febj-sc5s-jqcx Aliases: GHSA-7p6w-x2gr-rrf8 GMS-2020-44	ag-grid Cross-Site Scripting vulnerability Versions of `ag-grid` prior to 14.0.0 are vulnerable to Cross-Site Scripting (XSS). Grid contents are not properly sanitized and may allow attackers to execute arbitrary JavaScript if user input is rendered in the grid.	14.0.0 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-k1qg-ydq7-x7fs Aliases: CVE-2017-16009 GHSA-wfw3-rgfr-6g67	ag-grid is vulnerable to Cross-site Scripting (XSS) via Angular Expressions, if AngularJS is used in combination with ag-grid.	18.1.3 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-04T20:35:24.483736+00:00	GitLab Importer	Affected by	VCID-febj-sc5s-jqcx	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ag-grid/GHSA-7p6w-x2gr-rrf8.yml	38.6.0
2026-06-04T20:12:35.931166+00:00	GitLab Importer	Affected by	VCID-k1qg-ydq7-x7fs	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/ag-grid/CVE-2017-16009.yml	38.6.0