FLAT-I6GA6 (CVE-2025-54070)
Out-of-bounds read In @openzeppelin/contracts
2.7
Low
Ecosystem: Npm
Package: @openzeppelin/contracts
FLAT-GZJ95 (CVE-2024-27094)
Out-of-bounds read In @openzeppelin/contracts-upgradeable
4.9
Medium
Ecosystem: Npm
Package: @openzeppelin/contracts-upgradeable
FLAT-XWAIN (CVE-2023-49798)
Insecure service configuration In @openzeppelin/contracts
4.6
Medium
Ecosystem: Npm
Package: @openzeppelin/contracts
FLAT-I3SYO (CVE-2023-40014)
OS Command Injection In @openzeppelin/contracts-upgradeable
1.7
Low
Ecosystem: Npm
Package: @openzeppelin/contracts-upgradeable
FLAT-C720T (CVE-2023-34459)
Missing subresource integrity check In @openzeppelin/contracts-upgradeable
2.3
Low
Ecosystem: Npm
Package: @openzeppelin/contracts-upgradeable
FLAT-XWRVW (CVE-2023-34234)
Improper authorization control for web services In @openzeppelin/contracts-upgradeable
2.7
Low
Ecosystem: Npm
Package: @openzeppelin/contracts-upgradeable
FLAT-1ESQ6 (CVE-2023-30542)
Lack of data validation In @openzeppelin/contracts
6.3
Medium
Ecosystem: Npm
Package: @openzeppelin/contracts
FLAT-TBDON (CVE-2023-30541)
Lack of data validation In @openzeppelin/contracts-upgradeable
2.7
Low
Ecosystem: Npm
Package: @openzeppelin/contracts-upgradeable
FLAT-PAZKC (CVE-2023-26488)
Inappropriate coding practices In @openzeppelin/contracts-upgradeable
4.9
Medium
Ecosystem: Npm
Package: @openzeppelin/contracts-upgradeable
FLAT-U74T8 (CVE-2023-23940)
Insufficient data authenticity validation In @openzeppelin/contracts
2.3
Low
Ecosystem: Npm
Package: @openzeppelin/contracts
FLAT-1OT6X (CVE-2022-46151)
Reflected cross-site scripting (XSS) In @openzeppelin/contracts
1.2
Low
Ecosystem: Npm
Package: @openzeppelin/contracts
FLAT-G0SWI (CVE-2022-35961)
Missing subresource integrity check In @openzeppelin/contracts
5.8
Medium
Ecosystem: Npm
Package: @openzeppelin/contracts
FLAT-KBBBG (CVE-2022-31198)
Inappropriate coding practices In @openzeppelin/contracts-upgradeable
6.6
Medium
Ecosystem: Npm
Package: @openzeppelin/contracts-upgradeable
FLAT-J8APV (CVE-2022-35916)
Sensitive information sent insecurely In @openzeppelin/contracts-upgradeable
2.7
Low
Ecosystem: Npm
Package: @openzeppelin/contracts-upgradeable
FLAT-QCRXQ (CVE-2022-35915)
Improper resource allocation In @openzeppelin/contracts-upgradeable
2.7
Low
Ecosystem: Npm
Package: @openzeppelin/contracts-upgradeable
FLAT-O6YNE (CVE-2022-31172)
Insecure digital certificates In @openzeppelin/contracts-upgradeable
6.6
Medium
Ecosystem: Npm
Package: @openzeppelin/contracts-upgradeable
FLAT-6PTEP (CVE-2022-31170)
Lack of data validation In @openzeppelin/contracts-upgradeable
6.6
Medium
Ecosystem: Npm
Package: @openzeppelin/contracts-upgradeable
FLAT-ESGYI (GHSA-7j52-6fjp-58gr)
Non-upgradable dependencies In @openzeppelin/contracts-upgradeable
0.6
Low
Ecosystem: Npm
Package: @openzeppelin/contracts-upgradeable
FLAT-YXHPI (CVE-2021-46320)
Inappropriate coding practices In @openzeppelin/contracts
6.6
Medium
Ecosystem: Npm
Package: @openzeppelin/contracts
FLAT-TTU5W (GHSA-m6w8-fq7v-ph4m)
Lack of data validation - Type confusion In @openzeppelin/contracts
1.2
Low
Ecosystem: Npm
Package: @openzeppelin/contracts
FLAT-C5G94 (CVE-2022-39384)
Inappropriate coding practices In @openzeppelin/contracts
1.7
Low
Ecosystem: Npm
Package: @openzeppelin/contracts
FLAT-NHEU0 (GHSA-wmpv-c2jp-j2xg)
Improper resource allocation In @openzeppelin/contracts
2.7
Low
Ecosystem: Npm
Package: @openzeppelin/contracts
FLAT-T60R3 (CVE-2021-41264)
Inappropriate coding practices In @openzeppelin/contracts
8.1
High
Ecosystem: Npm
Package: @openzeppelin/contracts
FLAT-1C7IH (GHSA-q4h9-46xg-m3x9)
Inappropriate coding practices In @openzeppelin/contracts-upgradeable
0.6
Low
Ecosystem: Npm
Package: @openzeppelin/contracts-upgradeable
FLAT-08FB9 (CVE-2021-39168)
Excessive privileges In @openzeppelin/contracts-upgradeable
9.1
Critical
Ecosystem: Npm
Package: @openzeppelin/contracts-upgradeable
FLAT-NO45G (CVE-2021-39167)
Excessive privileges In @openzeppelin/contracts
9.1
Critical
Ecosystem: Npm
Package: @openzeppelin/contracts