Dependency-Check Report

Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

Scan Information (show all):

dependency-check version: 12.1.0
Report Generated On: Fri, 28 Feb 2025 15:01:09 GMT
Dependencies Scanned: 245 (94 unique)
Vulnerable Dependencies: 3
Vulnerabilities Found: 5
Vulnerabilities Suppressed: 0
...
NVD API Last Checked: 2025-02-28T11:36:26Z
NVD API Last Modified: 2025-02-28T10:15:09Z
NVD Cache Last Checked: 2025-02-28T11:36:26Z
NVD Cache Last Modified: 2025-02-28T10:15:09Z

Summary

Display: Showing Vulnerable Dependencies (click to show all)

Dependency	Package	Highest Severity	CVE Count	Evidence Count
.eslintrc.js			0	0
AssignThisUnitTest.js			0	0
ClosureLinterUnitTest.js			0	0
ComparisonOperatorUsageUnitTest.js			0	0
ConfigForm.js			0	0
ControlSignatureUnitTest.js			0	0
ControlStructureSpacingUnitTest.js			0	0
CreateWidgetTypeCallbackUnitTest.js			0	0
DisallowInlineIfUnitTest.js			0	0
DisallowObjectStringIndexUnitTest.js			0	0
DisallowSizeFunctionsInLoopsUnitTest.js			0	0
DisallowSpaceIndentUnitTest.js			0	0
DisallowTabIndentUnitTest.js			0	0
DocCommentAlignmentUnitTest.js			0	0
DocCommentUnitTest.1.js			0	0
DocCommentUnitTest.2.js			0	0
DuplicatePropertyUnitTest.js			0	0
ESLintUnitTest.js			0	0
EndFileNewlineUnitTest.1.js			0	0
EndFileNewlineUnitTest.2.js			0	0
EndFileNewlineUnitTest.3.js			0	0
FileCommentUnitTest.1.js			0	0
FileCommentUnitTest.2.js			0	0
FirebugConsoleUnitTest.js			0	0
FixmeUnitTest.js			0	0
ForLoopDeclarationUnitTest.1.js			0	0
ForLoopDeclarationUnitTest.2.js			0	0
FunctionCallSignatureUnitTest.js			0	0
FunctionClosingBraceSpaceUnitTest.js			0	0
FunctionDeclarationUnitTest.js			0	0
FunctionOpeningBraceSpaceUnitTest.js			0	0
GetDeclarationNameJSTest.js			0	0
GitMergeConflictUnitTest.js			0	0
IncrementDecrementSpacingUnitTest.js			0	0
InlineCommentUnitTest.js			0	0
InlineControlStructureUnitTest.1.js			0	0
InlineControlStructureUnitTest.2.js			0	0
InlineControlStructureUnitTest.3.js			0	0
JSHintUnitTest.js			0	0
JSLintUnitTest.js			0	0
JoinStringsUnitTest.js			0	0
LineEndingsUnitTest.js			0	0
LogicalOperatorSpacingUnitTest.js			0	0
LongConditionClosingCommentUnitTest.js			0	0
LowerCaseConstantUnitTest.js			0	0
MultiLineConditionUnitTest.js			0	0
MultiLineFunctionDeclarationUnitTest.js			0	0
MultipleStatementAlignmentUnitTest.js			0	0
ObjectMemberCommaUnitTest.js			0	0
OperatorBracketUnitTest.js			0	0
OperatorSpacingUnitTest.js			0	0
PostStatementCommentUnitTest.1.js			0	0
PostStatementCommentUnitTest.2.js			0	0
PropertyLabelSpacingUnitTest.js			0	0
ScopeIndentUnitTest.1.js			0	0
SemicolonSpacingUnitTest.js			0	0
SpaceAfterNotUnitTest.js			0	0
SuperfluousWhitespaceUnitTest.1.js			0	0
SuperfluousWhitespaceUnitTest.2.js			0	0
SuperfluousWhitespaceUnitTest.3.js			0	0
SwitchDeclarationUnitTest.js			0	0
TodoUnitTest.js			0	0
UnnecessaryStringConcatUnitTest.js			0	0
bar.js			0	0
bar.js			0	0
baseview.js			0	0
bindHandler.js			0	0
bluescreen.js			0	0
bootstrap.min.js	pkg:javascript/bootstrap@4.6.2	MEDIUM	1	3
cross-spawn:6.0.5	pkg:npm/cross-spawn@6.0.5	HIGH	2	3
d.js			0	0
d3.min.js			0	0
dialogHandler.js			0	0
dumper.js			0	0
dumper.js			0	0
eslint.config.js			0	0
exceptionHandler.js			0	0
file.js			0	0
helpers.js			0	0
hiddeninput.exe			0	2
index.js			0	0
index.js			0	0
index.js			0	0
jquery.min.js			0	0
nv.d3.min.js			0	0
open-editor.js			0	0
popper.min.js			0	0
settings.js			0	0
statistic.js			0	0
table-sort.js			0	0
tabs.js			0	0
toggle.js			0	0
utils.js			0	0
vendor.js	pkg:javascript/moment.js@2.19.4	HIGH	2	3

Dependencies (vulnerable)

.eslintrc.js

File Path: /github/workspace/zmsstatistic/.eslintrc.js
MD5: 89ceb9008403b6afe2fa1071ca96a6f9
SHA1: 6e33b3de6f64251f79c0498f097ab814ffca5043
SHA256:96e13d424c49a03e03db93ee876b869728f7fda2a1a7085f3436ef35832708c6

Evidence

Identifiers

None

AssignThisUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/MySource/Tests/Objects/AssignThisUnitTest.js
MD5: e8729933b41b396c6f49e1d8cd747f4b
SHA1: 9213c3553cbf9fdc563a9e2a1d8f53db86044d25
SHA256:e2fe371922603cb41ae43e9ad9e4e65829f8da968fcb11916605d745327a8e97

Evidence

Related Dependencies

Identifiers

None

ClosureLinterUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/Debug/ClosureLinterUnitTest.js
MD5: 97c4634324dfe22e5c17861afbdb5049
SHA1: d787b8249320cd239e4b496eb6d74365627eb231
SHA256:9ed069ccdd855d225858aabb47b2f213836256c86056737d96e7988915c3add4

Evidence

Related Dependencies

Identifiers

None

ComparisonOperatorUsageUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/Operators/ComparisonOperatorUsageUnitTest.js
MD5: 1300c7e02dea95e50336a03253ee0410
SHA1: 37ea57c2b82e1566dff6e327296569d82ede8d89
SHA256:6d841459858fa7473280a93d58ba035ef60ca3f4481eef3a203db919a0bd823c

Evidence

Related Dependencies

Identifiers

None

ConfigForm.js

File Path: /github/workspace/zmsstatistic/vendor/ezyang/htmlpurifier/library/HTMLPurifier/Printer/ConfigForm.js
MD5: ee5990d6bb62017463a7a8d72c8288b5
SHA1: fea8a3b01a8ca8c6e650eb27f98274c5dbaa9db9
SHA256:aef2d12317af2e659e9c782c04f71ae23b17fecb2516b3605af5d2f81cedc003

Evidence

Identifiers

None

ControlSignatureUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/ControlStructures/ControlSignatureUnitTest.js
MD5: 59b35ab3a110d5509cd8aa17c200c763
SHA1: 02cddc52431ad930aeb095cee6a0a29426424c2c
SHA256:2f70f5b3df9bb2ac688d284292e8c8097715841676948ecf007573ffacd923d0

Evidence

Related Dependencies

Identifiers

None

ControlStructureSpacingUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/WhiteSpace/ControlStructureSpacingUnitTest.js
MD5: cb6497ba4543b4c65cc0fb4b9db8604e
SHA1: c3d8cf2a808ea101aa6ca943a2e52a5470b4d9b6
SHA256:f41fe7f0cf28eadedd8a3a98c15fa0c60055b28a699c5c243a094cca0383a508

Evidence

Related Dependencies

Identifiers

None

CreateWidgetTypeCallbackUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/MySource/Tests/Objects/CreateWidgetTypeCallbackUnitTest.js
MD5: 038db501bf7424e8fc2c228a4642aa1e
SHA1: 7c1d3254aa7fe97e736fdc3c94faa9342e909adf
SHA256:427209345d4eb151e55479476c93a6b0366dbfaaa0b8d646983734f9fc870bad

Evidence

Related Dependencies

Identifiers

None

DisallowInlineIfUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/PHP/DisallowInlineIfUnitTest.js
MD5: 63c336680e2908416d79cf4cccb8cb7a
SHA1: 5e1ff832b2b5589cc5af7266da4089b06ddd820f
SHA256:1945d6594162040fabc65da913feaa685068408713598938364bb1f2974d3f7f

Evidence

Related Dependencies

Identifiers

None

DisallowObjectStringIndexUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/Objects/DisallowObjectStringIndexUnitTest.js
MD5: 8ef3b508c7fd7ffab6cc719710e04528
SHA1: ecb295348d46ec9029a1a6fe24142f5e3d98950d
SHA256:0db2dd8f8b8b2c7f29483e12d0d8fc31e14a0e09d7f818d798c5814e3496b653

Evidence

Related Dependencies

Identifiers

None

DisallowSizeFunctionsInLoopsUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/PHP/DisallowSizeFunctionsInLoopsUnitTest.js
MD5: 5ec514d06fbc6d792c4f7426729067da
SHA1: fc1c44024e189e73e7ea6aaf1ec2da03c11c2892
SHA256:d861bb0b8682ced2b8f61b0826a2c08895348da3b4b379681dcac8724a0fdd31

Evidence

Related Dependencies

Identifiers

None

DisallowSpaceIndentUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/WhiteSpace/DisallowSpaceIndentUnitTest.js
MD5: 6e8c97c6dbca6487307a777ee40aaa27
SHA1: d48171a5be394d155d8376e73779a79e4630118b
SHA256:819a6b659129615583ab427d7b3c7413f99e8f07966bc102f663c9e711215687

Evidence

Related Dependencies

Identifiers

None

DisallowTabIndentUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/WhiteSpace/DisallowTabIndentUnitTest.js
MD5: 862c06f6daa9b363ee4c8445f0008896
SHA1: fe4d1a07fb4b9b8fc1bc462ad9b2cd57038b975a
SHA256:23a9bb20c9b6a02e8236f4fff9672a032b49b2c9d2694a01e9b390887383ce27

Evidence

Related Dependencies

Identifiers

None

DocCommentAlignmentUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/Commenting/DocCommentAlignmentUnitTest.js
MD5: fb6f4ff2e215affe14b32193813aa025
SHA1: c3cb7437ecba5ce74ccf223335aac001f4190361
SHA256:b9e0a8586b5e99480cf1ae648eebb33de76ef27a3428f6b2800a34f0cb96112a

Evidence

Related Dependencies

Identifiers

None

DocCommentUnitTest.1.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/Commenting/DocCommentUnitTest.1.js
MD5: e5a2848b5b1eca04d49e97bfa6c2b684
SHA1: 7764323b78455623cfcfbf87a3296b8ca6cd15d4
SHA256:a6ea8decd53298ff22b45a3954b0fc0b0e01d215ab16c95eb3116a424c98dfb6

Evidence

Related Dependencies

Identifiers

None

DocCommentUnitTest.2.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/Commenting/DocCommentUnitTest.2.js
MD5: 03a9a6ba70a6eefa1d6ae85dc844b39d
SHA1: 27a5dad26eeff291b938bef9aae94de176d4d89d
SHA256:430ea6e5a4a4c7dd6772aae2100f2efc3a98b5ca4bc3a3ec6bde33852377cde1

Evidence

Related Dependencies

Identifiers

None

DuplicatePropertyUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/Classes/DuplicatePropertyUnitTest.js
MD5: 0a7bc2a8b85e22763ad5adb0c01b06de
SHA1: f86767aaf6260e5377ee3ea326c451d90335ecbe
SHA256:1a7a8cb33b04097b71b9382225e2916d87de881b8613dade04bfd7e29f58e8fb

Evidence

Related Dependencies

Identifiers

None

ESLintUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/Debug/ESLintUnitTest.js
MD5: 32db9953cbc6cda0b5f48516baae561c
SHA1: 278a4ef6444cb208739c1999744b23a8a5bcf088
SHA256:745629201ac5f4c11b1573beaf7a08ae210ae1331cc505b1cad79d197c54f494

Evidence

Related Dependencies

Identifiers

None

EndFileNewlineUnitTest.1.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/Files/EndFileNewlineUnitTest.1.js
MD5: eda83915096e8d140260fb0c2701f14b
SHA1: ebb6a7f892c6a44b5e7c0e7f4b42ce2f78092e22
SHA256:87118236d9aa8da10b5c7d93802609538e18e32c3ce2b91e0abc8d56dd636354

Evidence

Related Dependencies

Identifiers

None

EndFileNewlineUnitTest.2.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/Files/EndFileNewlineUnitTest.2.js
MD5: f2401fef5f078517a5238cf4aee87bae
SHA1: 5420c7e231b932562df5689a536b2d95b3f42ba9
SHA256:c2ea6ecb2c6e9373b66689523fbca7db82a2c9f76c5e549c6a75b143194992e1

Evidence

Related Dependencies

Identifiers

None

EndFileNewlineUnitTest.3.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/Files/EndFileNewlineUnitTest.3.js
MD5: c660b8f5f06b75f45656db43ac1a75e3
SHA1: 32f2cf68ded794e6e0fbf6b7a6e81dcc8e476e2f
SHA256:aa9bc2b9bb1493a9f48d57f2fff7f14600148c701357dbd459e7da59be2fa8aa

Evidence

Related Dependencies

Identifiers

None

FileCommentUnitTest.1.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/Commenting/FileCommentUnitTest.1.js
MD5: 0cb3eebff3c2c0d3c818d9bcc5a894d7
SHA1: 00f0c2cdf1e08938b092e907b60f93c64c5f3c15
SHA256:e0fdbba238b69bd4ce26437e794d97e8f50ba12a5d5e49b34e53516674c10527

Evidence

Related Dependencies

Identifiers

None

FileCommentUnitTest.2.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/Commenting/FileCommentUnitTest.2.js
MD5: 576abf8b90755dd9b2dbffc4340489dd
SHA1: 9364655c6ccf0bbc694956a41dc50c772dc7716b
SHA256:b23ac67c17ebbf7c1b2982bb81a60233f0a60110c9792b439a7cd4f313ba0d07

Evidence

Related Dependencies

Identifiers

None

FirebugConsoleUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/MySource/Tests/Debug/FirebugConsoleUnitTest.js
MD5: fe8858695e303e8b3c87415a5603f63f
SHA1: 8fc6f8365b63c6a8b497f72f78240da75c848020
SHA256:eb4eecc7d43cc6e03782ee8440197c10e83d24bb1c55decb6cb12b2a702758a8

Evidence

Related Dependencies

Identifiers

None

FixmeUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/Commenting/FixmeUnitTest.js
MD5: 2cfa202f38dc04b877e20042b9f2652b
SHA1: a358ca3ac7c63648b564ddb187303a113e8eab5c
SHA256:a56cabd0eea35d85d4a75c357aa519a54256013fd1ed0df5da028ba804c3a878

Evidence

Related Dependencies

Identifiers

None

ForLoopDeclarationUnitTest.1.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/ControlStructures/ForLoopDeclarationUnitTest.1.js
MD5: 7dfa9308a3d750b78c36705041220117
SHA1: fc78301053399a20c5c20859133c90f1fd63824a
SHA256:ea64d3b4b977ca8e0f5b1683d1045c71f0b602c436051355a24669ec783054b3

Evidence

Related Dependencies

Identifiers

None

ForLoopDeclarationUnitTest.2.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/ControlStructures/ForLoopDeclarationUnitTest.2.js
MD5: 2e5679f13620b23df55867b009068dc5
SHA1: c90ea19199bfc91ad445c80fe92483747b0a016a
SHA256:2787dec9d6f5f6ca03b88e8addb8debef9b6ea4e10c88b99698d2ee0c917ff52

Evidence

Related Dependencies

Identifiers

None

FunctionCallSignatureUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/PEAR/Tests/Functions/FunctionCallSignatureUnitTest.js
MD5: 16f57c76d190c486f04c494e5476f5b6
SHA1: d1cc0420967bd171c8d3730d025b4e6739868a23
SHA256:176cd083de9c63200c79f31be3e222c9669b21765a72d51351a7c740ae8884bc

Evidence

Related Dependencies

Identifiers

None

FunctionClosingBraceSpaceUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/WhiteSpace/FunctionClosingBraceSpaceUnitTest.js
MD5: 607d90c9b262847f79aa01f1607fb005
SHA1: cadb00a507dc0e252ff604844246baeffdd1d1ed
SHA256:061a85a445129aea9e6a217d02f84e36a21ed82235f3d34b195260f93ef7cb70

Evidence

Related Dependencies

Identifiers

None

FunctionDeclarationUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/PEAR/Tests/Functions/FunctionDeclarationUnitTest.js
MD5: 241b39a0ab2776eea87ea8519fc76994
SHA1: 067424ca211de409ed9c681707ebd82b3241ee57
SHA256:7503f79c649b2e7702ebe3667df55f22ef1e10acdaa1fd42efcb8c444378c7b2

Evidence

Related Dependencies

Identifiers

None

FunctionOpeningBraceSpaceUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/WhiteSpace/FunctionOpeningBraceSpaceUnitTest.js
MD5: 113d9703288ace78ab84dea953e0b539
SHA1: 2943c1f2d02d829dcdc023d5604d3dece35653e1
SHA256:f0b31628376b100f3031cafbae7b41e4a983d9585d0c4b9c18742d4141e9b326

Evidence

Related Dependencies

Identifiers

None

GetDeclarationNameJSTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/tests/Core/File/GetDeclarationNameJSTest.js
MD5: ba51b8f969c770a7e0095f1aa8210974
SHA1: aa026616bc1bdd5d8031251a3e6550f416864837
SHA256:c759128940747215782ed29a0dd5de2f0861db7b39d93d41f0481ada63043fb4

Evidence

Related Dependencies

Identifiers

None

GitMergeConflictUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/VersionControl/GitMergeConflictUnitTest.js
MD5: 7ba2a16c0837cc222e901bc375218de0
SHA1: ac2bbd3faf02346194cc5f984a7d940cc604e136
SHA256:a1901780ea51926dbefc27e29503d20aba32b8952dc3f8b9086b9ec16f7e7b0f

Evidence

Related Dependencies

Identifiers

None

IncrementDecrementSpacingUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/WhiteSpace/IncrementDecrementSpacingUnitTest.js
MD5: 2684a90b0efcc6dd90cee26828b4bba8
SHA1: 083f210f93710eca39fa8e0ed2fae80ced6f3fd5
SHA256:61732a8be791c12c7e05d7727540bf783d9fb6a436efdb83eb35521772c85195

Evidence

Related Dependencies

Identifiers

None

InlineCommentUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/Commenting/InlineCommentUnitTest.js
MD5: 7cc0b6013bf807d4db87d335f54ac74f
SHA1: e90e8434841ffd342633baacddc459d097c415ae
SHA256:47b1a02f3eceecd6e9a22be56dfd303ef999bc158d1bd6989b7c0990a8d1d71e

Evidence

Related Dependencies

Identifiers

None

InlineControlStructureUnitTest.1.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/ControlStructures/InlineControlStructureUnitTest.1.js
MD5: ba7c6948d2c25e02cdd8e116b6f06f75
SHA1: c1ec1a98c37c932d58a48beca2c873d1121273c3
SHA256:82af533f2938f73c21aba0270471355b939bcc6b885e679400a2de5bcaa849e7

Evidence

Related Dependencies

Identifiers

None

InlineControlStructureUnitTest.2.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/ControlStructures/InlineControlStructureUnitTest.2.js
MD5: 81f13e3055051f757c3d3e09cbbc5909
SHA1: bcab5792b06f5f088fbd847989e6deb3554c0bbf
SHA256:0c3f9f19b2d726a9477ad9ffb61ec86824f8ec86984bd38b5073fa3250a6d015

Evidence

Related Dependencies

Identifiers

None

InlineControlStructureUnitTest.3.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/ControlStructures/InlineControlStructureUnitTest.3.js
MD5: dac1308ff5dd98f9f7c24280014782a1
SHA1: 5a08f3cb45513f7689e691fd00102fc75721b068
SHA256:65b076bb0a1d353065e3b7954504ae67ae72067c842e154200646f0c08a318b1

Evidence

Related Dependencies

Identifiers

None

JSHintUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/Debug/JSHintUnitTest.js
MD5: 849fbc28d2a16d9fe3473a3e4f889086
SHA1: 881f89f464316416c07f8abc00da19daa81207ab
SHA256:cb14525ab7305e0c8e78cd54566ba167882a6f2c572c5eb7cc84a504b5697ac8

Evidence

Related Dependencies

Identifiers

None

JSLintUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/Debug/JSLintUnitTest.js
MD5: 1520165c698662022e7be947dc12f169
SHA1: 779eafaea5a20fd8755cb407dfd2de6dcdf10b5d
SHA256:8af1a9a785f08d9ad91d4b2fcef9b0bcce76818e55751181580e1d0f21a34a71

Evidence

Related Dependencies

Identifiers

None

JoinStringsUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/MySource/Tests/Strings/JoinStringsUnitTest.js
MD5: 91916345902e2029f8cbd2e949a75e2d
SHA1: bcaac5236103d3265d7ea71eb309e4705e888bfa
SHA256:c80cf7a1719837e2b4148cf1daf68be2ca90e7560ebce308aae41981a2829d1a

Evidence

Related Dependencies

Identifiers

None

LineEndingsUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/Files/LineEndingsUnitTest.js
MD5: 8810f939a03bd3f8b37d1bc750a98297
SHA1: f813da2dd9ddc7620db3b2e11bc5b30b4fcc1687
SHA256:e04d348554b2d81bd0a02129610aea54853ccd2168defb1752e52deb2e9506c2

Evidence

Related Dependencies

Identifiers

None

LogicalOperatorSpacingUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/WhiteSpace/LogicalOperatorSpacingUnitTest.js
MD5: ec247ab19da2cebf43a7070537110d5a
SHA1: 37fb86f1124c78adc16a93727cdab270915d8913
SHA256:58ce40b40761672a90e9482af23e780a22285fcf570958ea6a1fe0cfa949043e

Evidence

Related Dependencies

Identifiers

None

LongConditionClosingCommentUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/Commenting/LongConditionClosingCommentUnitTest.js
MD5: 43579da3cde159d42600e001632b812e
SHA1: 5a5efca620006b810462ae0372f5e348184f2c54
SHA256:b223bf36381452e19b67d972ee3d5082c3eb00e72dc70585cb710b8bd67b5836

Evidence

Related Dependencies

Identifiers

None

LowerCaseConstantUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/PHP/LowerCaseConstantUnitTest.js
MD5: ec7d1a4c0a7f5b7f2d7824c79fe162c4
SHA1: 2fe7c3fb851cf72f245b3d4f2c671c2b84c055d0
SHA256:3cd4a1b3425f4487cd988f3b55e098a7872792c7a2b454edb9442d758c6216ac

Evidence

Related Dependencies

Identifiers

None

MultiLineConditionUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/PEAR/Tests/ControlStructures/MultiLineConditionUnitTest.js
MD5: 2c9112e89df678cd860f42117204dcef
SHA1: ac2d1070d53dd2798cac1ec222847699100c69f6
SHA256:440cce287dbb2e211c13a786a7f94b1ae16f1266b4df55c8bb4beddfc092d426

Evidence

Related Dependencies

Identifiers

None

MultiLineFunctionDeclarationUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/Functions/MultiLineFunctionDeclarationUnitTest.js
MD5: 205e2b3f2c2b48cacffeaa459c2dc9f2
SHA1: e1f51603c752bdb4ec9e6639feb19a72d6904f68
SHA256:c9b52ab9bfd685d8d43d33f38db785d1e146e4654fda0e4946f11d58e0974d62

Evidence

Related Dependencies

Identifiers

None

MultipleStatementAlignmentUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/Formatting/MultipleStatementAlignmentUnitTest.js
MD5: 1d360239f6969bb933f91c5418c29cea
SHA1: c2fbbaf9e0667ca80d1685371af282e8bd6c8e72
SHA256:a8c244473923f676f2819b4e83901f7ada5e86d12b72a2be44acb6e93e8a57b2

Evidence

Related Dependencies

Identifiers

None

ObjectMemberCommaUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/Objects/ObjectMemberCommaUnitTest.js
MD5: 85e686848ad1c3a6d55ad67bc134c815
SHA1: 2073223d3d5ba0b805d42bc8ca20909fd665dd70
SHA256:4577d380c3956664c5a3151582e7091df690ffdddfcd9363c01cc649b2473edf

Evidence

Related Dependencies

Identifiers

None

OperatorBracketUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/Formatting/OperatorBracketUnitTest.js
MD5: e5ddc2021b662a4a96d7beea379b001f
SHA1: a78300181a1b00f87dcfff44904be39426bf8220
SHA256:95effaa0d93607a18fdfa3ff7e3d651993fe7101e71d21155326a85bb5fa6e1e

Evidence

Related Dependencies

Identifiers

None

OperatorSpacingUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/WhiteSpace/OperatorSpacingUnitTest.js
MD5: 45009d0354d111c17d1bc7cf5391d8ab
SHA1: 275bdb650c3fb4a6873d597ab02e732752588e22
SHA256:9d69cc630ba0c0a78dcbe2cee351f01f7359615fb285e3a211b0e813aced83f3

Evidence

Related Dependencies

Identifiers

None

PostStatementCommentUnitTest.1.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/Commenting/PostStatementCommentUnitTest.1.js
MD5: 573501a6855d6bf401823ad2d14aefce
SHA1: 42b3ff45b780d7a20b3f1a7df64aa4afaa76f8a8
SHA256:3921e15817b0a4d2ee411523f428020d66dd6c380fd171465271854a4e0b4ddb

Evidence

Related Dependencies

Identifiers

None

PostStatementCommentUnitTest.2.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/Commenting/PostStatementCommentUnitTest.2.js
MD5: af3bfe1fd25b70829e5e24f30ca1297e
SHA1: 36fe858a47572f1c8c902e607fdb18763be1b19a
SHA256:aee6669aeb5bbeb0bd36555359690987f53ec1ae9163314f5225cf1f8b48ad59

Evidence

Related Dependencies

Identifiers

None

PropertyLabelSpacingUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/WhiteSpace/PropertyLabelSpacingUnitTest.js
MD5: da0413395da00d0f977217b70302d25d
SHA1: 4029e0a9af9b53cbbcf50def8838195d911b38cc
SHA256:39a6ca2c715a54a7a622ac60f55182100857a864f81c23d2cce419ea3799a96f

Evidence

Related Dependencies

Identifiers

None

ScopeIndentUnitTest.1.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/WhiteSpace/ScopeIndentUnitTest.1.js
MD5: 1fe630099f0162d17da7cc039f630607
SHA1: 419d191513eef46a44f602021820e1fd23ab7fe2
SHA256:09835d0c061d5fd763392e763e869867294b11adb34f82c014095b8400542ff5

Evidence

Related Dependencies

Identifiers

None

SemicolonSpacingUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/WhiteSpace/SemicolonSpacingUnitTest.js
MD5: 949538c76d249b71ab357d427068b61a
SHA1: c996c5172ba50a6c563ad6a7f2da88e2aaff75fb
SHA256:d41845811ddad670a159e62cdf638e4d7a48608e25c672b0d9ebe25acca1a5e7

Evidence

Related Dependencies

Identifiers

None

SpaceAfterNotUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/Formatting/SpaceAfterNotUnitTest.js
MD5: b3fd9e5d13a6194ecf535f0ec79d3b24
SHA1: fb7ae4965a173cdf184d600d1c0f5bc34377baa4
SHA256:d10ba5f44e40460760142e454b82ba97818c218446e471ac7c0610cdacda373f

Evidence

Related Dependencies

Identifiers

None

SuperfluousWhitespaceUnitTest.1.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/WhiteSpace/SuperfluousWhitespaceUnitTest.1.js
MD5: ebdf1b14b3e83e6e2f60a5abb98ff885
SHA1: 7d734ef8f0d85dcb95135ec4c3f40ba3f54e10af
SHA256:4cd8c4e9e46c76acf408d0e877d9979e1c6854016d19facd0e4bc002d73377da

Evidence

Related Dependencies

Identifiers

None

SuperfluousWhitespaceUnitTest.2.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/WhiteSpace/SuperfluousWhitespaceUnitTest.2.js
MD5: 9e863b0f9736094640695df276d28a5f
SHA1: 0c45aafc2b123f48cb6b5a32c3dd4c8332f65d43
SHA256:4b78257b10e2bcdd579df44679ce6e17863b4d3d9afeb72b003944ff38f899a0

Evidence

Related Dependencies

Identifiers

None

SuperfluousWhitespaceUnitTest.3.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/WhiteSpace/SuperfluousWhitespaceUnitTest.3.js
MD5: ef6402a7c8e295ab5e14040444ec8966
SHA1: fe3fc7d642952360bad940e005f2d5c16e535b83
SHA256:ffaa248f7a72959b28a051bc841353f222d60a5bfa0ff87694135d0a44ecdacd

Evidence

Related Dependencies

Identifiers

None

SwitchDeclarationUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Squiz/Tests/ControlStructures/SwitchDeclarationUnitTest.js
MD5: 80b28899e249cedc82bbbc15865857a1
SHA1: 7512d3261eb256fffe3e73e70bfbe4db223df7e9
SHA256:53c01319eacad2287c43e9dd77114fb35d8c5f5f4324acce8e0681bd99b6778d

Evidence

Related Dependencies

Identifiers

None

TodoUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/Commenting/TodoUnitTest.js
MD5: c938880a9402d86f9e9cfd95b3b4f05c
SHA1: acd8169f108d4de89a53c7786c8a9cefb9b70f82
SHA256:2169a70b4148500d65bdec21c51dfb3328a5acd927609c5d9d73488f0d3fc75d

Evidence

Related Dependencies

Identifiers

None

UnnecessaryStringConcatUnitTest.js

File Path: /github/workspace/zmsstatistic/vendor/squizlabs/php_codesniffer/src/Standards/Generic/Tests/Strings/UnnecessaryStringConcatUnitTest.js
MD5: c50a5bc4492d7df5404f7394e68c8992
SHA1: bfa6c6eace64e3de0f4c481c5e176f953c3a2248
SHA256:4ca6c09375475b42d439c856302eee39a8e3838880e238508f4dc823840b92a0

Evidence

Related Dependencies

Identifiers

None

bar.js

File Path: /github/workspace/zmsstatistic/vendor/eappointment/zmsslim/vendor/tracy/tracy/src/Tracy/Bar/assets/bar.js
MD5: a10dab79cf06811ff5d7c258105e8bd7
SHA1: f72b0374fa408dd76e12f5781ad507de7e934df6
SHA256:081e7694140ebc0b8e8159cf06026184ae0c530b99b680e3e777bc16599db205

Evidence

Identifiers

None

bar.js

File Path: /github/workspace/zmsstatistic/vendor/tracy/tracy/src/Tracy/Bar/assets/bar.js
MD5: d555c96bd549297ff9ba35288e9bf814
SHA1: a6b2c621cccf6ad6b1576669208fe63138dd967b
SHA256:7348c4302126eb43753123c07cdec7448ff92875a5dbcd2ac5d1cffa7f8f9111

Evidence

Identifiers

None

baseview.js

File Path: /github/workspace/zmsstatistic/js/lib/baseview.js
MD5: 3ba8e15b32566bb9111af120810258d4
SHA1: 1db7c8b17bdf28fe7379606781bb8ce1764cf70d
SHA256:ac468ca36b8c82e887d9db344374d0a0c3c8ef079041b245c4d1c2d9d6a62e73

Evidence

Identifiers

None

bindHandler.js

File Path: /github/workspace/zmsstatistic/js/lib/bindHandler.js
MD5: 02da9fbcce9021bb27d94cbc5d1c3e7b
SHA1: 9b8083272a4b682498f5e5e396fef74f35073e7e
SHA256:cb011db8f35a155950539f68dca786e81dac335911bfa9182404e5ef5da5c0c3

Evidence

Identifiers

None

bluescreen.js

File Path: /github/workspace/zmsstatistic/vendor/tracy/tracy/src/Tracy/BlueScreen/assets/bluescreen.js
MD5: 8570efb7f604343f7e0e8fbe7f66fa7e
SHA1: 62e022597ed561949ca3085879da34b89a93ec48
SHA256:9d175147db087c0741b141362d7d7e080b81f3f2dbc2ff3decb5951a7aca7c17

Evidence

Related Dependencies

Identifiers

None

bootstrap.min.js

File Path: /github/workspace/zmsstatistic/vendor/phpunit/php-code-coverage/src/Report/Html/Renderer/Template/js/bootstrap.min.js
MD5: 2a753de0369d13becc9649fc48f55535
SHA1: e324063c8f46c6b29427df1542f1026ad230f604
SHA256:423217abf8775cea2dc30fa1fe3e1c5e24dc359a80f1c37ad29a86094bfe81d1

Evidence

Related Dependencies

Identifiers

pkg:javascript/bootstrap@4.6.2 (Confidence:Highest)

Published Vulnerabilities

CVE-2024-6531 (RETIREJS)

Unscored:

Severity: medium

References:

cross-spawn:6.0.5

File Path: /github/workspace/zmsstatistic/package-lock.json?cross-spawn

Referenced In Project/Scope: package-lock.json: transitive

Evidence

Identifiers

pkg:npm/cross-spawn@6.0.5 (Confidence:Highest)

Published Vulnerabilities

CVE-2024-21538 (OSSINDEX)

Versions of the package cross-spawn before 7.0.5 are vulnerable to Regular Expression Denial of Service (ReDoS) due to improper input sanitization. An attacker can increase the CPU usage and crash the program by crafting a very large and well crafted string.

CWE-1333 Inefficient Regular Expression Complexity

CVSSv2:

Base Score: HIGH (8.699999809265137)
Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

References:

OSSINDEX - [CVE-2024-21538] CWE-1333
OSSIndex - http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-21538
OSSIndex - https://github.com/advisories/GHSA-3xgq-45jj-v275

Vulnerable Software & Versions (OSSINDEX):

cpe:2.3:a:*:cross-spawn:6.0.5:*:*:*:*:*:*:*

GHSA-3xgq-45jj-v275 (NPM)

Versions of the package cross-spawn before 7.0.5 are vulnerable to Regular Expression Denial of Service (ReDoS) due to improper input sanitization. An attacker can increase the CPU usage and crash the program by crafting a very large and well crafted string.

CWE-1333 Inefficient Regular Expression Complexity

CVSSv3:

Base Score: HIGH (7.5)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Unscored:

Severity: high

References:

NPM Advisory reference: - https://github.com/advisories/GHSA-3xgq-45jj-v275
NPM Advisory reference: - https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff
NPM Advisory reference: - https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f
NPM Advisory reference: - https://github.com/moxystudio/node-cross-spawn/commit/d35c865b877d2f9ded7c1ed87521c2fdb689c8dd
NPM Advisory reference: - https://github.com/moxystudio/node-cross-spawn/issues/165
NPM Advisory reference: - https://github.com/moxystudio/node-cross-spawn/pull/160
NPM Advisory reference: - https://nvd.nist.gov/vuln/detail/CVE-2024-21538
NPM Advisory reference: - https://security.snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-8366349
NPM Advisory reference: - https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230

Vulnerable Software & Versions (NPM):

cpe:2.3:a:*:cross-spawn:\<6.0.6:*:*:*:*:*:*:*

d.js

File Path: /github/workspace/zmsstatistic/vendor/aronduby/dump/src/D/resources/d.js
MD5: 30b19c3d953860cf9b890550ad398793
SHA1: 5a5b9c9d5d19497711bf1ea6ce381a632b917f6d
SHA256:92988e463e37017bc3528f002a7be97809dcdc3fece18e1635b1f41f7178f278

Evidence

Identifiers

None

d3.min.js

File Path: /github/workspace/zmsstatistic/vendor/phpunit/php-code-coverage/src/Report/Html/Renderer/Template/js/d3.min.js
MD5: 5bc245068b1b70d4c3eaef79045023e4
SHA1: 4cb68b0a6a11e6d7cf8f3712ab65a783fb49ea6c
SHA256:76c39718d1c0a3fb321676b3b7e29306c0907919a5716d5728bd1b08ae0169e7

Evidence

Related Dependencies

Identifiers

None

dialogHandler.js

File Path: /github/workspace/zmsstatistic/js/lib/dialogHandler.js
MD5: 0b73ab77e027e4f15080a5d830eb389d
SHA1: 15909a7af52c7afe1c0792a9fdd1a5e3c0cd765d
SHA256:2fb6d65f1e11ff51b5d625623fdd64eb2b57cbebbea2579e44bee933bad9d40c

Evidence

Identifiers

None

dumper.js

File Path: /github/workspace/zmsstatistic/vendor/eappointment/zmsslim/vendor/tracy/tracy/src/Tracy/Dumper/assets/dumper.js
MD5: a1a10099927de11cddeac3f5e6f06496
SHA1: 8ece5f95fd921ff4774b7d879c2bf2fbfc4be8f5
SHA256:e76c473df57087ed36916bd6316bcb334e0f47ce9fdaefe433302c170d228f98

Evidence

Identifiers

None

dumper.js

File Path: /github/workspace/zmsstatistic/vendor/tracy/tracy/src/Tracy/Dumper/assets/dumper.js
MD5: bad8cf5e033241f650725b25232c1e02
SHA1: e07f43ea31e1d086f25c47de19a4e548096d5b6e
SHA256:ff58937867b07d97049ac2df9cbfcc024744bd3fb818427c342f24e7ea235aaa

Evidence

Identifiers

None

eslint.config.js

File Path: /github/workspace/zmsstatistic/vendor/tracy/tracy/eslint.config.js
MD5: 03d54399aebc77703f2ea5f33212ad49
SHA1: de5e0491d8003828910d1734d3a44a6b0355c0cc
SHA256:b3e23b361ce1ff57918517832b739ca503a4ef241b8433bd1765638549df02a0

Evidence

Related Dependencies

Identifiers

None

exceptionHandler.js

File Path: /github/workspace/zmsstatistic/js/lib/exceptionHandler.js
MD5: f401905c468a3104afec940da5ae1b10
SHA1: afd82f26aae7d75ad3cb656888c83c5d6ef0387c
SHA256:e168d3edfb8665c18ecdfca12affdd18509082472ae0c74156fc3ae797e7825d

Evidence

Identifiers

None

file.js

File Path: /github/workspace/zmsstatistic/vendor/phpunit/php-code-coverage/src/Report/Html/Renderer/Template/js/file.js
MD5: e1a2477bc06bc20663e326e2b1b52a67
SHA1: 2d8457940fd77bc4b48e4f93747ceab84be65557
SHA256:0a34f83ead7b6377e9fac2fdb057869f80af7564b11189627289d457e6b9a922

Evidence

Related Dependencies

Identifiers

None

helpers.js

File Path: /github/workspace/zmsstatistic/vendor/eappointment/zmsslim/vendor/tracy/tracy/src/Tracy/assets/helpers.js
MD5: 1097944cf52ea9c70d874c09f106a9b2
SHA1: e6d3c2fff8d02840c7a234202ad610ff06ce832d
SHA256:614e716544d16530efba0ee14e59994714e3728d85614b65163663b4a264426a

Evidence

Identifiers

None

hiddeninput.exe

File Path: /github/workspace/zmsstatistic/vendor/eappointment/zmsentities/vendor/symfony/console/Resources/bin/hiddeninput.exe
MD5: 3613d8d83b78ce3561680a447eb6a24a
SHA1: 995eb0e883c7adebcfadd29100d810cb7f882bcd
SHA256:8fdff52a7430dba14fb97239c7fe414710991f16da269374e0936a1385f3a318

Evidence

Identifiers

None

index.js

File Path: /github/workspace/zmsstatistic/js/block/periodlist/index.js
MD5: 934dc644b24f93a6b1ebb1a6dd9f8f86
SHA1: 8c63ee4f83dad9420776240e3fc98728251c66c6
SHA256:2d210c0841bff0464a1752e0a0a66faea5a900ac50f1b567c3047f9ad0434b5a

Evidence

Identifiers

None

index.js

File Path: /github/workspace/zmsstatistic/js/block/warehousereport/index.js
MD5: c5ce811506480df6983107ecd456e1ff
SHA1: 3f5a5833346040a930ad2e6412e84d2f75786075
SHA256:9adbc33efe03b1d726981496fda9e2d8894dfdf01e160d870f20c26e8f41b33e

Evidence

Identifiers

None

index.js

File Path: /github/workspace/zmsstatistic/js/index.js
MD5: cc1a2f47d4fd689968035687994f07da
SHA1: 7ffe8b6fab6f451097b07ebe8b7e6ab8725cc21e
SHA256:2193c192536ea25dc4e21912d96541dfa1bdf8a9046c6b66be6ed1d35c2b1616

Evidence

Identifiers

None

jquery.min.js

File Path: /github/workspace/zmsstatistic/vendor/phpunit/php-code-coverage/src/Report/Html/Renderer/Template/js/jquery.min.js
MD5: 00727d1d5d9c90f7de826f1a4a9cc632
SHA1: ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2
SHA256:a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74

Evidence

Related Dependencies

Identifiers

None

nv.d3.min.js

File Path: /github/workspace/zmsstatistic/vendor/phpunit/php-code-coverage/src/Report/Html/Renderer/Template/js/nv.d3.min.js
MD5: faf359a29dd581bd8f288f15ea24d063
SHA1: 25249613b132ff52b704f6f52bc52a1b06bfa64a
SHA256:0ec70f7ac9519d96d4a814bccfa73f574a3b3a8c2646eeaa449ccea68033fe7c

Evidence

Related Dependencies

Identifiers

None

open-editor.js

File Path: /github/workspace/zmsstatistic/vendor/tracy/tracy/tools/open-in-editor/windows/open-editor.js
MD5: 768504f6a16bcbb92e4f934bc748cd5f
SHA1: 180f2fc5828e209334d531b5690f2688db5fb313
SHA256:071c893fa96c1940161258784d571fe8ec6aa10b93365c8993b001f25badd33d

Evidence

Related Dependencies

Identifiers

None

popper.min.js

File Path: /github/workspace/zmsstatistic/vendor/phpunit/php-code-coverage/src/Report/Html/Renderer/Template/js/popper.min.js
MD5: 1022eaf388cc780bcfeb6456157adb7d
SHA1: 313789ca0e31b654784dbba8b0f83f364f8683b4
SHA256:fe28dc38bc057f6eb11180235bbe458b3295a39b674d889075d3d9a0b5071d9f

Evidence

Related Dependencies

Identifiers

None

settings.js

File Path: /github/workspace/zmsstatistic/js/settings.js
MD5: acf44d69a3a543b639720d0e70fa2264
SHA1: 6b306ddcdb34d08032a61d7b4f043dc0643f0707
SHA256:820800f8896a72b9033d2863a4e75adfe3ee4710597f484e8691336c60c0e0c9

Evidence

Identifiers

None

statistic.js

File Path: /github/workspace/zmsstatistic/public/_css/statistic.js
MD5: cfcb2bcabeb3a8c5ac3bff2912c37871
SHA1: 42061230269044f4c474031f22787c816ddb1849
SHA256:e8f147f8145e29359eaa972ffad497c777928c6f77843b1d7144f44fe8d660cc

Evidence

Identifiers

None

table-sort.js

File Path: /github/workspace/zmsstatistic/vendor/tracy/tracy/src/Tracy/assets/table-sort.js
MD5: 94691a23df5fdd9b04e802f126746bde
SHA1: f366cdbc896cba74b2802b489b37c02afd37ad83
SHA256:9457c18c3f34de45becb447759878bd8e49d1a30cca387aaf5dec1c895e9c8a7

Evidence

Related Dependencies

Identifiers

None

tabs.js

File Path: /github/workspace/zmsstatistic/vendor/tracy/tracy/src/Tracy/assets/tabs.js
MD5: 24eb02e61eb1830764a78d9d4b00d046
SHA1: 72b3152b2c012508a6064f3998e33856a0ef2d67
SHA256:ea38495a19f612057902d786212f3b942123ecf518419e7ce728fc4b943f6ddb

Evidence

Related Dependencies

Identifiers

None

toggle.js

File Path: /github/workspace/zmsstatistic/vendor/tracy/tracy/src/Tracy/assets/toggle.js
MD5: 2ea8d7fad6192690d2dcf46c2698994e
SHA1: 000c31d840283b2456f95408e5d37f98ff9d45a0
SHA256:527868421055fe097163e604bf5dafc1127fffe1540c972126f803fd31c1ecad

Evidence

Related Dependencies

Identifiers

None

utils.js

File Path: /github/workspace/zmsstatistic/js/lib/utils.js
MD5: 968e4a4ef051b770861b2752e4858a68
SHA1: a215c2d634e1ea8afe504f32596ab21f1dd5e20d
SHA256:dfc644a23d65b2ff8d630f0f046e64eda349923ebfd2bf8780c8214230b4ec98

Evidence

Identifiers

None

vendor.js

File Path: /github/workspace/zmsstatistic/public/_js/vendor.js
MD5: 7e40c3823a8fd9566597c57e7ba51135
SHA1: f2dfa5ba1ad1e07c320907a9ce62551ec53a5eca
SHA256:5a55981f26da533bead069a75c42e5dab655409c09820bb8752b1cff898c274d

Evidence

Identifiers

pkg:javascript/moment.js@2.19.4 (Confidence:Highest)

Published Vulnerabilities

CVE-2022-24785

Moment.js is a JavaScript date library for parsing, validating, manipulating, and formatting dates. A path traversal vulnerability impacts npm (server) users of Moment.js between versions 1.0.1 and 2.29.1, especially if a user-provided locale string is directly used to switch moment locale. This problem is patched in 2.29.2, and the patch can be applied to all affected versions. As a workaround, sanitize the user-provided locale name before passing it to Moment.js.

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), CWE-27 Path Traversal: 'dir/../../filename'

CVSSv3:

Base Score: HIGH (7.5)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:3.9/RC:R/MAV:A

CVSSv2:

Base Score: MEDIUM (5.0)
Vector: /AV:N/AC:L/Au:N/C:N/I:P/A:N

References:

af854a3a-2127-422b-91ae-364da2661108 - MAILING_LIST,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - PATCH
af854a3a-2127-422b-91ae-364da2661108 - PATCH,RELEASE_NOTES,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - VENDOR_ADVISORY
info - https://github.com/moment/moment/security/advisories/GHSA-8hfj-j24r-96c4
security-advisories@github.com - MAILING_LIST,THIRD_PARTY_ADVISORY
security-advisories@github.com - PATCH
security-advisories@github.com - PATCH,RELEASE_NOTES,THIRD_PARTY_ADVISORY
security-advisories@github.com - THIRD_PARTY_ADVISORY
security-advisories@github.com - VENDOR_ADVISORY

Vulnerable Software & Versions (NVD):

cpe:2.3:a:momentjs:moment:*:*:*:*:*:node.js:*:* versions from (including) 1.0.1; versions up to (excluding) 2.29.2
cpe:2.3:a:momentjs:moment:*:*:*:*:*:nuget:*:* versions from (including) 1.0.1; versions up to (excluding) 2.29.2
cpe:2.3:a:netapp:active_iq:-:*:*:*:*:*:*:*
cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:* versions up to (excluding) 5.21.0

CVE-2022-31129

moment is a JavaScript date library for parsing, validating, manipulating, and formatting dates. Affected versions of moment were found to use an inefficient parsing algorithm. Specifically using string-to-date parsing in moment (more specifically rfc2822 parsing, which is tried by default) has quadratic (N^2) complexity on specific inputs. Users may notice a noticeable slowdown is observed with inputs above 10k characters. Users who pass user-provided strings without sanity length checks to moment constructor are vulnerable to (Re)DoS attacks. The problem is patched in 2.29.4, the patch can be applied to all affected versions with minimal tweaking. Users are advised to upgrade. Users unable to upgrade should consider limiting date lengths accepted from user input.

CWE-400 Uncontrolled Resource Consumption, CWE-1333 Inefficient Regular Expression Complexity

CVSSv3:

Base Score: HIGH (7.5)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:3.9/RC:R/MAV:A

CVSSv2:

Base Score: MEDIUM (5.0)
Vector: /AV:N/AC:L/Au:N/C:N/I:N/A:P

References:

af854a3a-2127-422b-91ae-364da2661108 - EXPLOIT,ISSUE_TRACKING,PATCH,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - EXPLOIT,ISSUE_TRACKING,PATCH,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - ISSUE_TRACKING,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - MAILING_LIST,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - PATCH,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - THIRD_PARTY_ADVISORY
info - https://github.com/moment/moment/security/advisories/GHSA-wc69-rhjr-hc9g
info - https://security.snyk.io/vuln/SNYK-JS-MOMENT-2944238
security-advisories@github.com - EXPLOIT,ISSUE_TRACKING,PATCH,THIRD_PARTY_ADVISORY
security-advisories@github.com - EXPLOIT,ISSUE_TRACKING,PATCH,THIRD_PARTY_ADVISORY
security-advisories@github.com - ISSUE_TRACKING,THIRD_PARTY_ADVISORY
security-advisories@github.com - MAILING_LIST,THIRD_PARTY_ADVISORY
security-advisories@github.com - PATCH,THIRD_PARTY_ADVISORY
security-advisories@github.com - THIRD_PARTY_ADVISORY

Vulnerable Software & Versions (NVD):

cpe:2.3:a:momentjs:moment:*:*:*:*:*:node.js:*:* versions from (including) 2.18.0; versions up to (excluding) 2.29.4
cpe:2.3:a:momentjs:moment:*:*:*:*:*:nuget:*:* versions from (including) 2.18.0; versions up to (excluding) 2.29.4

Type	Source	Name	Value	Confidence
Vendor	file	name	bootstrap	High
Product	file	name	bootstrap	High
Version	file	version	4.6.2	High

Type	Source	Name	Value	Confidence
Vendor	package.json	name	cross-spawn	High
Product	package.json	name	cross-spawn	Highest
Version	package.json	version	6.0.5	Highest

How to read the report | Suppressing false positives | Getting Help: github issues Sponsor

Project: zmsstatistic

Summary

Dependencies (vulnerable)

.eslintrc.js

Evidence

Identifiers

AssignThisUnitTest.js

Evidence

Related Dependencies

Identifiers

ClosureLinterUnitTest.js

Evidence

Related Dependencies

Identifiers

ComparisonOperatorUsageUnitTest.js

Evidence

Related Dependencies

Identifiers

ConfigForm.js

Evidence

Identifiers

ControlSignatureUnitTest.js

Evidence

Related Dependencies

Identifiers

ControlStructureSpacingUnitTest.js

Evidence

Related Dependencies

Identifiers

CreateWidgetTypeCallbackUnitTest.js

Evidence

Related Dependencies

Identifiers

DisallowInlineIfUnitTest.js

Evidence

Related Dependencies

Identifiers

DisallowObjectStringIndexUnitTest.js

Evidence

Related Dependencies

Identifiers

DisallowSizeFunctionsInLoopsUnitTest.js

Evidence

Related Dependencies

Identifiers

DisallowSpaceIndentUnitTest.js

Evidence

Related Dependencies

Identifiers

DisallowTabIndentUnitTest.js

Evidence

Related Dependencies

Identifiers

DocCommentAlignmentUnitTest.js

Evidence

Related Dependencies

Identifiers

DocCommentUnitTest.1.js

Evidence

Related Dependencies

Identifiers

DocCommentUnitTest.2.js

Evidence

Related Dependencies

Identifiers

DuplicatePropertyUnitTest.js

Evidence

Related Dependencies

Identifiers

ESLintUnitTest.js

Evidence

Related Dependencies

Identifiers

EndFileNewlineUnitTest.1.js

Evidence

Related Dependencies

Identifiers

EndFileNewlineUnitTest.2.js

Evidence

How to read the report | Suppressing false positives | Getting Help: github issues

Sponsor