Update dependency eslint-plugin-import to v2.32.0 #21
Security Report
| Vulnerability | Severity |  CVSS Score |
Vulnerable Library | Direct Library | Suggested Fix | Issue |
|---|---|---|---|---|---|---|
CVE-2025-6545Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> crypto-browserify-3.12.0.tgz -> ❌ pbkdf2-3.1.2.tgz (Vulnerable Library) |
 Critical |
10.0 | Transitive pbkdf2-3.1.2.tgz |
next-10.2.0.tgz | Transitive 3.1.3 |
None |
CVE-2022-37601Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> styled-jsx-3.3.2.tgz -> ❌ loader-utils-1.2.3.tgz (Vulnerable Library) |
Critical |
9.8 | Transitive loader-utils-1.2.3.tgz |
next-10.2.0.tgz | Transitive 1.4.1 |
None |
CVE-2021-44906Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> styled-jsx-3.3.2.tgz -> loader-utils-1.2.3.tgz -> json5-1.0.1.tgz -> ❌ minimist-1.2.5.tgz (Vulnerable Library) |
Critical |
9.8 | Transitive minimist-1.2.5.tgz |
next-10.2.0.tgz | Transitive 1.2.6 |
None |
CVE-2021-42740Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> react-dev-overlay-10.2.0.tgz -> ❌ shell-quote-1.7.2.tgz (Vulnerable Library) |
Critical |
9.8 | Transitive shell-quote-1.7.2.tgz |
next-10.2.0.tgz | Transitive 1.7.3 |
None |
CVE-2024-48949Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> crypto-browserify-3.12.0.tgz -> browserify-sign-4.2.1.tgz -> ❌ elliptic-6.5.4.tgz (Vulnerable Library) |
Critical |
9.1 | Transitive elliptic-6.5.4.tgz |
next-10.2.0.tgz | Transitive 6.5.6 |
None |
CVE-2022-0235Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> ❌ node-fetch-2.6.1.tgz (Vulnerable Library) |
 High |
8.8 | Transitive node-fetch-2.6.1.tgz |
next-10.2.0.tgz | Transitive 2.6.7 |
None |
CVE-2025-9288Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> crypto-browserify-3.12.0.tgz -> create-hash-1.2.0.tgz -> ❌ sha.js-2.4.11.tgz (Vulnerable Library) |
High |
8.7 | Transitive sha.js-2.4.11.tgz |
next-10.2.0.tgz | Transitive 2.4.12 |
None |
CVE-2025-9287Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> crypto-browserify-3.12.0.tgz -> create-hash-1.2.0.tgz -> ❌ cipher-base-1.0.4.tgz (Vulnerable Library) |
High |
8.7 | Transitive cipher-base-1.0.4.tgz |
next-10.2.0.tgz | Transitive cipher-base - 1.0.4 |
None |
WS-2025-0006Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> crypto-browserify-3.12.0.tgz -> browserify-sign-4.2.1.tgz -> ❌ elliptic-6.5.4.tgz (Vulnerable Library) |
High |
8.6 | Transitive elliptic-6.5.4.tgz |
next-10.2.0.tgz | Transitive 6.6.1 |
None |
CVE-2022-0155Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> axios-0.21.1.tgz (Root Library) -> ❌ follow-redirects-1.13.3.tgz (Vulnerable Library) |
High |
8.0 | Transitive follow-redirects-1.13.3.tgz |
axios-0.21.1.tgz | 0.21.2 | None |
WS-2023-0439Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ axios-0.21.1.tgz (Vulnerable Library) |
High |
7.5 | Direct axios-0.21.1.tgz |
axios-0.21.1.tgz | None | |
CVE-2026-25639Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ axios-0.21.1.tgz (Vulnerable Library) |
High |
7.5 | Direct axios-0.21.1.tgz |
axios-0.21.1.tgz | https://github.com/axios/axios.git - v1.13.5 | None |
CVE-2025-27152Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ axios-0.21.1.tgz (Vulnerable Library) |
High |
7.5 | Direct axios-0.21.1.tgz |
axios-0.21.1.tgz | 0.30.0 | None |
CVE-2024-51479Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-10.2.0.tgz (Vulnerable Library) |
High |
7.5 | Direct next-10.2.0.tgz |
next-10.2.0.tgz | 13.5.8 | None |
CVE-2024-4068Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> chokidar-3.5.1.tgz -> ❌ braces-3.0.2.tgz (Vulnerable Library) |
High |
7.5 | Transitive braces-3.0.2.tgz |
next-10.2.0.tgz | Transitive braces - 3.0.3 |
None |
CVE-2022-37603Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> styled-jsx-3.3.2.tgz -> ❌ loader-utils-1.2.3.tgz (Vulnerable Library) |
High |
7.5 | Transitive loader-utils-1.2.3.tgz |
next-10.2.0.tgz | Transitive 1.4.2 |
None |
CVE-2022-37599Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> styled-jsx-3.3.2.tgz -> ❌ loader-utils-1.2.3.tgz (Vulnerable Library) |
High |
7.5 | Transitive loader-utils-1.2.3.tgz |
next-10.2.0.tgz | Transitive loader-utils - 1.4.2,2.0.4,3.2.1 |
None |
CVE-2021-43803Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-10.2.0.tgz (Vulnerable Library) |
High |
7.5 | Direct next-10.2.0.tgz |
next-10.2.0.tgz | 11.1.2-canary.0 | None |
CVE-2021-39178Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-10.2.0.tgz (Vulnerable Library) |
High |
7.5 | Direct next-10.2.0.tgz |
next-10.2.0.tgz | next - 11.1.1 | None |
CVE-2021-3807Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> react-dev-overlay-10.2.0.tgz -> strip-ansi-6.0.0.tgz -> ❌ ansi-regex-5.0.0.tgz (Vulnerable Library) |
High |
7.5 | Transitive ansi-regex-5.0.0.tgz |
next-10.2.0.tgz | Transitive ansi-regex - 5.0.1,ansi-regex - 3.0.1,ansi-regex - 6.0.1,ansi-regex - 4.1.1 |
None |
CVE-2021-3749Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ axios-0.21.1.tgz (Vulnerable Library) |
High |
7.5 | Direct axios-0.21.1.tgz |
axios-0.21.1.tgz | 0.21.2 | None |
CVE-2023-26159Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> axios-0.21.1.tgz (Root Library) -> ❌ follow-redirects-1.13.3.tgz (Vulnerable Library) |
High |
7.3 | Transitive follow-redirects-1.13.3.tgz |
axios-0.21.1.tgz | 0.21.2 | None |
CVE-2025-13465Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> styled-jsx-3.3.2.tgz -> types-7.8.3.tgz -> ❌ lodash-4.17.21.tgz (Vulnerable Library) |
High |
7.2 | Transitive lodash-4.17.21.tgz |
next-10.2.0.tgz | Transitive lodash-amd - 4.17.23,lodash - 4.17.23,lodash-es - 4.17.23 |
None |
CVE-2022-46175Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> styled-jsx-3.3.2.tgz -> loader-utils-1.2.3.tgz -> ❌ json5-1.0.1.tgz (Vulnerable Library) |
High |
7.1 | Transitive json5-1.0.1.tgz |
next-10.2.0.tgz | Transitive 1.0.2 |
None |
CVE-2021-37699Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-10.2.0.tgz (Vulnerable Library) |
 Medium |
6.9 | Direct next-10.2.0.tgz |
next-10.2.0.tgz | 11.0.1-canary.0 | None |
CVE-2025-6547Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> crypto-browserify-3.12.0.tgz -> ❌ pbkdf2-3.1.2.tgz (Vulnerable Library) |
Medium |
6.8 | Transitive pbkdf2-3.1.2.tgz |
next-10.2.0.tgz | Transitive 3.1.3 |
None |
CVE-2025-57822Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-10.2.0.tgz (Vulnerable Library) |
Medium |
6.5 | Direct next-10.2.0.tgz |
next-10.2.0.tgz | 14.2.32 | None |
CVE-2024-28849Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> axios-0.21.1.tgz (Root Library) -> ❌ follow-redirects-1.13.3.tgz (Vulnerable Library) |
Medium |
6.5 | Transitive follow-redirects-1.13.3.tgz |
axios-0.21.1.tgz | 0.21.2 | None |
CVE-2023-46234Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> crypto-browserify-3.12.0.tgz -> ❌ browserify-sign-4.2.1.tgz (Vulnerable Library) |
Medium |
6.5 | Transitive browserify-sign-4.2.1.tgz |
next-10.2.0.tgz | Transitive 4.2.2 |
None |
CVE-2023-45857Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ axios-0.21.1.tgz (Vulnerable Library) |
Medium |
6.5 | Direct axios-0.21.1.tgz |
axios-0.21.1.tgz | 0.28.0 | None |
CVE-2025-57752Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-10.2.0.tgz (Vulnerable Library) |
Medium |
6.2 | Direct next-10.2.0.tgz |
next-10.2.0.tgz | 14.2.31 | None |
CVE-2025-27789Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> core-4.11.4.tgz (Root Library) -> ❌ runtime-7.12.5.tgz (Vulnerable Library) |
Medium |
6.2 | Transitive runtime-7.12.5.tgz |
core-4.11.4.tgz | 4.12.0 | None |
CVE-2025-59471Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-10.2.0.tgz (Vulnerable Library) |
Medium |
5.9 | Direct next-10.2.0.tgz |
next-10.2.0.tgz | next - 15.5.10,next - 16.1.5 | None |
CVE-2024-47831Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-10.2.0.tgz (Vulnerable Library) |
Medium |
5.9 | Direct next-10.2.0.tgz |
next-10.2.0.tgz | 13.5.8 | None |
CVE-2022-23646Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-10.2.0.tgz (Vulnerable Library) |
Medium |
5.9 | Direct next-10.2.0.tgz |
next-10.2.0.tgz | next - 12.1.0 | None |
CVE-2025-14505Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> crypto-browserify-3.12.0.tgz -> browserify-sign-4.2.1.tgz -> ❌ elliptic-6.5.4.tgz (Vulnerable Library) |
Medium |
5.6 | Transitive elliptic-6.5.4.tgz |
next-10.2.0.tgz | None | |
CVE-2020-7598Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> styled-jsx-3.3.2.tgz -> loader-utils-1.2.3.tgz -> json5-1.0.1.tgz -> ❌ minimist-1.2.5.tgz (Vulnerable Library) |
Medium |
5.6 | Transitive minimist-1.2.5.tgz |
next-10.2.0.tgz | Transitive minimist - 0.2.1,1.2.3 |
None |
CVE-2026-2739Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> crypto-browserify-3.12.0.tgz -> diffie-hellman-5.0.3.tgz -> ❌ bn.js-4.12.0.tgz (Vulnerable Library) |
Medium |
5.3 | Transitive bn.js-4.12.0.tgz |
next-10.2.0.tgz | Transitive https://github.com/indutny/bn.js.git - v5.2.3 |
None |
CVE-2026-2739Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> crypto-browserify-3.12.0.tgz -> browserify-sign-4.2.1.tgz -> ❌ bn.js-5.2.0.tgz (Vulnerable Library) |
Medium |
5.3 | Transitive bn.js-5.2.0.tgz |
next-10.2.0.tgz | Transitive https://github.com/indutny/bn.js.git - v5.2.3 |
None |
CVE-2024-42461Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> crypto-browserify-3.12.0.tgz -> browserify-sign-4.2.1.tgz -> ❌ elliptic-6.5.4.tgz (Vulnerable Library) |
Medium |
5.3 | Transitive elliptic-6.5.4.tgz |
next-10.2.0.tgz | Transitive elliptic - 6.5.7,elliptic - 6.5.7 |
None |
CVE-2024-42460Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> crypto-browserify-3.12.0.tgz -> browserify-sign-4.2.1.tgz -> ❌ elliptic-6.5.4.tgz (Vulnerable Library) |
Medium |
5.3 | Transitive elliptic-6.5.4.tgz |
next-10.2.0.tgz | Transitive elliptic - 6.5.7,elliptic - 6.5.7 |
None |
CVE-2024-42459Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> crypto-browserify-3.12.0.tgz -> browserify-sign-4.2.1.tgz -> ❌ elliptic-6.5.4.tgz (Vulnerable Library) |
Medium |
5.3 | Transitive elliptic-6.5.4.tgz |
next-10.2.0.tgz | Transitive elliptic - 6.5.7,elliptic - 6.5.7 |
None |
CVE-2023-44270Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> ❌ postcss-8.2.13.tgz (Vulnerable Library) |
Medium |
5.3 | Transitive postcss-8.2.13.tgz |
next-10.2.0.tgz | Transitive 8.4.31 |
None |
CVE-2022-25883Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> find-cache-dir-3.3.1.tgz -> make-dir-3.1.0.tgz -> ❌ semver-6.3.0.tgz (Vulnerable Library) |
Medium |
5.3 | Transitive semver-6.3.0.tgz |
next-10.2.0.tgz | Transitive 6.3.1 |
None |
CVE-2021-23364Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> ❌ browserslist-4.16.1.tgz (Vulnerable Library) |
Medium |
5.3 | Transitive browserslist-4.16.1.tgz |
next-10.2.0.tgz | Transitive 4.16.5 |
None |
CVE-2024-48948Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> crypto-browserify-3.12.0.tgz -> browserify-sign-4.2.1.tgz -> ❌ elliptic-6.5.4.tgz (Vulnerable Library) |
Medium |
4.8 | Transitive elliptic-6.5.4.tgz |
next-10.2.0.tgz | Transitive elliptic - 6.6.0 |
None |
CVE-2025-55173Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-10.2.0.tgz (Vulnerable Library) |
Medium |
4.3 | Direct next-10.2.0.tgz |
next-10.2.0.tgz | 14.2.31 | None |
CVE-2024-55565Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> postcss-8.2.13.tgz -> ❌ nanoid-3.1.22.tgz (Vulnerable Library) |
Medium |
4.3 | Transitive nanoid-3.1.22.tgz |
next-10.2.0.tgz | Transitive 3.3.8 |
None |
CVE-2021-23566Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-10.2.0.tgz (Root Library) -> postcss-8.2.13.tgz -> ❌ nanoid-3.1.22.tgz (Vulnerable Library) |
Medium |
4.0 | Transitive nanoid-3.1.22.tgz |
next-10.2.0.tgz | Transitive 3.1.31 |
None |
CVE-2025-32421Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-10.2.0.tgz (Vulnerable Library) |
 Low |
3.7 | Direct next-10.2.0.tgz |
next-10.2.0.tgz | 14.2.24 | None |
CVE-2022-0536Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> axios-0.21.1.tgz (Root Library) -> ❌ follow-redirects-1.13.3.tgz (Vulnerable Library) |
Low |
2.6 | Transitive follow-redirects-1.13.3.tgz |
axios-0.21.1.tgz | 0.21.2 | None |
Total libraries scanned: 301
Scan token: 719a610b82844cda812ed45c78404a56