VulnerableCode Package Details - pkg:npm/total.js@3.4.9

Search for packages

Vulnerability	Summary	Fixed by
VCID-2pdw-fzpu-8yht Aliases: CVE-2022-44019		There are no reported fixed by versions.

Vulnerability

Summary

Fixed by

VCID-2pdw-fzpu-8yht
Aliases:
CVE-2022-44019

There are no reported fixed by versions.

Vulnerability	Summary	Aliases
VCID-ch36-st1p-2khy	Code Injection The package total.js are vulnerable to Arbitrary Code Execution via the U.set() and U.get() functions.	CVE-2021-23389 GHSA-7fm6-gxqg-2pwr
VCID-vfmh-kcfd-5fcm	Code Injection Total.js framework (npm package total.js) is a framework for Node.js platfrom written in pure JavaScript similar to PHP's Laravel or Python's Django or ASP.NET MVC. In total.js framework, calling the utils.set function with user-controlled values leads to code-injection. This can cause a variety of impacts that include arbitrary code execution. This is fixed	CVE-2021-32831 GHSA-vwhc-pww7-72x6

Vulnerability

Summary

Aliases

VCID-ch36-st1p-2khy

Code Injection The package total.js are vulnerable to Arbitrary Code Execution via the U.set() and U.get() functions.

CVE-2021-23389
GHSA-7fm6-gxqg-2pwr

VCID-vfmh-kcfd-5fcm

Code Injection Total.js framework (npm package total.js) is a framework for Node.js platfrom written in pure JavaScript similar to PHP's Laravel or Python's Django or ASP.NET MVC. In total.js framework, calling the utils.set function with user-controlled values leads to code-injection. This can cause a variety of impacts that include arbitrary code execution. This is fixed

CVE-2021-32831
GHSA-vwhc-pww7-72x6

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-07T20:47:17.817689+00:00	GHSA Importer	Fixing	VCID-vfmh-kcfd-5fcm	https://github.com/advisories/GHSA-vwhc-pww7-72x6	38.6.0
2026-06-06T03:08:30.605770+00:00	GitLab Importer	Affected by	VCID-2pdw-fzpu-8yht	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/total.js/CVE-2022-44019.yml	38.6.0
2026-06-05T21:16:15.276735+00:00	GHSA Importer	Fixing	VCID-ch36-st1p-2khy	https://github.com/advisories/GHSA-7fm6-gxqg-2pwr	38.6.0
2026-06-04T17:28:24.410711+00:00	GithubOSV Importer	Fixing	VCID-ch36-st1p-2khy	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/12/GHSA-7fm6-gxqg-2pwr/GHSA-7fm6-gxqg-2pwr.json	38.6.0
2026-06-04T17:27:24.078463+00:00	GithubOSV Importer	Fixing	VCID-vfmh-kcfd-5fcm	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/09/GHSA-vwhc-pww7-72x6/GHSA-vwhc-pww7-72x6.json	38.6.0
2026-06-02T04:39:56.463032+00:00	GitLab Importer	Fixing	VCID-vfmh-kcfd-5fcm	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/total.js/CVE-2021-32831.yml	38.6.0
2026-06-02T04:39:28.489988+00:00	GitLab Importer	Fixing	VCID-ch36-st1p-2khy	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/total.js/CVE-2021-23389.yml	38.6.0