OsVault/npm/keystone
npm1 critical

keystone

8 known vulnerabilities · 1 critical · 3 high

CVE-2017-15879HIGH

Keystone is vulnerable to CSV injection

Published Nov 16, 2017
CVE-2015-9240HIGH

Authentication Weakness in keystone

Published Jun 7, 2018
CVE-2017-15881MEDIUM

Cross-Site Scripting in keystone

Published Nov 16, 2017
CVE-2017-16570HIGH

Cross-Site Request Forgery (CSRF) in keystone

Published Nov 30, 2017
CVE-2017-15878MEDIUM

Cross-Site Scripting in keystone

Published Nov 15, 2017
CVE-2022-39382CRITICAL

@keystone-6/core's NODE_ENV defaults to development with esbuild

Published Nov 3, 2022
CVE-2023-34247MEDIUM

@keystone-6/auth Open Redirect vulnerability

Published Jun 14, 2023
CVE-2026-33326

@keystone-6/core: `isFilterable` bypass via `cursor` parameter in findMany (CVE-2025-46720 incomplete fix)

Published Mar 19, 2026
Check your entire dependency tree at onceRun dependency scan →