VulnerableCode Package Details - pkg:npm/hexo@7.2.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:npm/hexo@7.2.0

Essentials
History (3)

purl	pkg:npm/hexo@7.2.0

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-ckh6-gapd-qfeg	Hexo up to v7.0.0 (RC2) was discovered to contain an arbitrary file read vulnerability.	CVE-2023-39584 GHSA-x2jc-989c-47q4

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-13T06:26:50.586345+00:00	GHSA Importer	Fixing	VCID-ckh6-gapd-qfeg	https://github.com/advisories/GHSA-x2jc-989c-47q4	38.6.0
2026-06-12T15:46:56.478849+00:00	GitLab Importer	Fixing	VCID-ckh6-gapd-qfeg	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/hexo/CVE-2023-39584.yml	38.6.0
2026-06-12T07:57:05.473684+00:00	GithubOSV Importer	Fixing	VCID-ckh6-gapd-qfeg	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/09/GHSA-x2jc-989c-47q4/GHSA-x2jc-989c-47q4.json	38.6.0