Search for packages
| purl | pkg:npm/forms@1.1.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1scz-cjfg-cqbw
Aliases: GMS-2017-125 |
XSS Vulnerability Forms did not have proper html escaping. This means that if the application did not sanitize html on behalf of forms, use of forms may be vulnerable to cross site scripting |
Affected by 1 other vulnerability. |
|
VCID-dnxp-jqjq-g7b8
Aliases: CVE-2021-23388 GHSA-c56f-grv3-gpfr |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
|
VCID-gkjn-1nbc-jydj
Aliases: CVE-2017-16015 GHSA-vwjj-2852-3765 |
Cross-Site Scripting in forms |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-12T17:42:02.892546+00:00 | GitLab Importer | Affected by | VCID-dnxp-jqjq-g7b8 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/forms/CVE-2021-23388.yml | 38.6.0 |
| 2026-06-12T16:59:44.424019+00:00 | GitLab Importer | Affected by | VCID-gkjn-1nbc-jydj | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/forms/CVE-2017-16015.yml | 38.6.0 |
| 2026-06-12T16:52:43.549147+00:00 | GitLab Importer | Affected by | VCID-1scz-cjfg-cqbw | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/forms/GMS-2017-125.yml | 38.6.0 |