OsVault/npm/gatsby
npm

gatsby

38 known vulnerabilities · 0 critical · 3 high

CVE-2023-34238MEDIUM

Gatsby develop server has Local File Inclusion vulnerability

Published Jun 9, 2023
CVE-2023-30548MEDIUM

Path traversal vulnerability in gatsby-plugin-sharp

Published Apr 20, 2023
CVE-2021-32770HIGH

Basic-auth app bundle credential exposure in gatsby-source-wordpress

Published Jul 19, 2021
CVE-2023-22491HIGH

gatsby-transformer-remark has possible unsanitized JavaScript code injection

Published Jan 11, 2023
MAL-2023-8431

Malicious code in gatsby-starter-gitlab (npm)

Published Nov 5, 2023
MAL-2025-191396

Malicious code in gatsby-plugin-antd (npm)

Published Nov 25, 2025
MAL-2025-191100

Malicious code in gatsby-plugin-cname (npm)

Published Nov 24, 2025
CVE-2022-25863HIGH

Unsanitized JavaScript code injection possible in gatsby-plugin-mdx

Published Jun 3, 2022
MAL-2025-191183

Malicious code in @alexadark/gatsby-theme-wordpress-blog (npm)

Published Nov 25, 2025
MAL-2022-313

Malicious code in @harrysforge/gatsby-theme-experiment-manager (npm)

Published Jun 20, 2022
MAL-2025-2508

Malicious code in gatsby-starter-hello-world (npm)

Published Mar 18, 2025
MAL-2025-191182

Malicious code in @alexadark/gatsby-theme-events (npm)

Published Nov 25, 2025
MAL-2025-78

Malicious code in gatsby-hampton-theme (npm)

Published Jan 13, 2025
MAL-2022-3280

Malicious code in gatsby-plugin-conecad (npm)

Published May 31, 2022
MAL-2022-3282

Malicious code in gatsby-plugin-ghost-manifest (npm)

Published Jun 20, 2022
MAL-2023-467

Malicious code in gatsby-remark-images-uploadcare (npm)

Published Apr 12, 2023
MAL-2022-3278

Malicious code in gatsby-pancake-api (npm)

Published Aug 9, 2022
MAL-2022-3279

Malicious code in gatsby-plugin-added-by-parent-theme (npm)

Published May 16, 2022
MAL-2022-311

Malicious code in @harrysforge/gatsby-plugin-bugsnag (npm)

Published Jun 20, 2022
MAL-2022-312

Malicious code in @harrysforge/gatsby-theme-cart (npm)

Published Jun 20, 2022
MAL-2023-773

Malicious code in shared-gatsby-components (npm)

Published Jan 10, 2023
MAL-2025-4352

Malicious code in gatsby-plugin-source-map (npm)

Published May 23, 2025
MAL-2025-1554

Malicious code in honeybook-marketing-gatsby (npm)

Published Feb 23, 2025
MAL-2022-3281

Malicious code in gatsby-plugin-consent-cookies (npm)

Published Jun 20, 2022
MAL-2022-3283

Malicious code in gatsby-plugin-wts (npm)

Published Jun 20, 2022
MAL-2022-3284

Malicious code in gatsby-remark-gifplayer-transformer (npm)

Published Jun 20, 2022
MAL-2022-3285

Malicious code in gatsby-site (npm)

Published Jun 20, 2022
MAL-2022-3286

Malicious code in gatsby-source-data-dictionary (npm)

Published Jun 20, 2022
MAL-2022-3287

Malicious code in gatsby-source-newrelic-sdk (npm)

Published Jun 20, 2022
MAL-2022-3288

Malicious code in gatsby-source-remote-images (npm)

Published Jun 20, 2022
MAL-2022-3289

Malicious code in gatsby-theme-about (npm)

Published Jun 20, 2022
MAL-2022-3291

Malicious code in gatsby-theme-parent (npm)

Published Jun 20, 2022
MAL-2024-11981

Malicious code in gatsby-plugin-guru-export (npm)

Published Dec 19, 2024
MAL-2022-3370

Malicious code in git-gatsby (npm)

Published Jun 20, 2022
MAL-2025-4080

Malicious code in gatsby-mars-pet-parent-journey--server (npm)

Published May 21, 2025
MAL-2022-3290

Malicious code in gatsby-theme-lego (npm)

Published Jun 20, 2022
MAL-2025-7059

Malicious code in @amber-team/gatsby-plugin-semrush2 (npm)

Published Aug 14, 2025
MAL-2025-594

Malicious code in gatsby-theme-tinker-tailor (npm)

Published Jan 28, 2025
Check your entire dependency tree at onceRun dependency scan →