Vulnerabilities > Gruntjs > Grunt > 0.4.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-10 | CVE-2022-1537 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Gruntjs Grunt file.copy operations in GruntJS are vulnerable to a TOCTOU race condition leading to arbitrary file write in GitHub repository gruntjs/grunt prior to 1.5.3. | 6.9 |
| 2022-04-12 | CVE-2022-0436 | Path Traversal vulnerability in Gruntjs Grunt Path Traversal in GitHub repository gruntjs/grunt prior to 1.5.2. | 2.1 |
| 2020-09-03 | CVE-2020-7729 | Insecure Default Initialization of Resource vulnerability in multiple products The package grunt before 1.3.0 are vulnerable to Arbitrary Code Execution due to the default usage of the function load() instead of its secure replacement safeLoad() of the package js-yaml inside grunt.file.readYAML. | 7.1 |