Search for packages
| purl | pkg:npm/node-red-dashboard@2.3.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-5xkb-pc23-47e8
Aliases: CVE-2019-10756 GHSA-xg59-m7wx-853q |
Cross-site Scripting in node-red-dashboard |
Affected by 2 other vulnerabilities. |
|
VCID-ga2b-hgm5-7ucq
Aliases: CVE-2021-3223 GHSA-2hw7-mxvj-m455 |
Affected by 1 other vulnerability. |
|
|
VCID-n6ye-4jay-bqcp
Aliases: CVE-2022-3783 GHSA-vrv9-3x3w-ffxw |
A vulnerability, which was classified as problematic, has been found in node-red-dashboard. This issue affects some unknown processing of the file components/ui-component/ui-component-ctrl.js of the component ui_text Format Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The name of the patch is 9305d1a82f19b235dfad24a7d1dd4ed244db7743. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-212555. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-12T18:38:18.188526+00:00 | GitLab Importer | Affected by | VCID-n6ye-4jay-bqcp | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/node-red-dashboard/CVE-2022-3783.yml | 38.6.0 |
| 2026-06-12T17:32:23.921811+00:00 | GitLab Importer | Affected by | VCID-ga2b-hgm5-7ucq | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/node-red-dashboard/CVE-2021-3223.yml | 38.6.0 |
| 2026-06-12T17:14:41.977441+00:00 | GitLab Importer | Affected by | VCID-5xkb-pc23-47e8 | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/node-red-dashboard/CVE-2019-10756.yml | 38.6.0 |