Vulnerabilities > Gatsbyjs

DATE CVE VULNERABILITY TITLE RISK
2023-06-08 CVE-2023-34238 Unspecified vulnerability in Gatsbyjs Gatsby
Gatsby is a free and open source framework based on React.
network
low complexity
gatsbyjs
5.3
2023-04-17 CVE-2023-30548 Unspecified vulnerability in Gatsbyjs Gatsby
gatsby-plugin-sharp is a plugin for the gatsby framework which exposes functions built on the Sharp image processing library.
network
low complexity
gatsbyjs
4.3
2023-01-13 CVE-2023-22491 Cross-site Scripting vulnerability in Gatsbyjs Gatsby
Gatsby is a free and open source framework based on React that helps developers build websites and apps.
network
low complexity
gatsbyjs CWE-79
5.4
2022-06-10 CVE-2022-25863 Deserialization of Untrusted Data vulnerability in Gatsbyjs Gatsby 3.0.0
The package gatsby-plugin-mdx before 2.14.1, from 3.0.0 and before 3.15.2 are vulnerable to Deserialization of Untrusted Data when passing input through to the gray-matter package, due to its default configurations that are missing input sanitization.
network
low complexity
gatsbyjs CWE-502
critical
9.8
2021-07-15 CVE-2021-32770 Insufficiently Protected Credentials vulnerability in Gatsbyjs Gatsby-Source-Wordpress
Gatsby is a framework for building websites.
network
low complexity
gatsbyjs CWE-522
7.5