基础信息
项目名称:YetiForceCompany/YetiForceCRM
项目徽章:
仓库地址:https://github.com/pterodactyl/panel
检测报告地址:https://www.murphysec.com/console/report/1721661857037881344/1721661857075630080
此报告由Murphysec提供
漏洞列表
暂无
缺陷组件
暂无
许可证风险
| 许可证类型 | 相关组件 | 许可证风险 |
|---|---|---|
| MIT | 126 | 低 |
| ISC | 4 | 低 |
| BSD-3-Clause | 19 | 低 |
| Apache-2.0 | 10 | 低 |
| SDK | 1 | 低 |
| BSD-2-Clause | 2 | 低 |
| BSD-4-Clause | 1 | 低 |
| LGPL-3.0 | 4 | 中 |
| LGPL-2.1 | 2 | 中 |
| The MIT License (MIT) | 1 | 低 |
| GPL-2.0 | 2 | 中 |
| GPL-3.0 | 2 | 中 |
| LGPL-2.0 | 2 | 中 |
SBOM清单
| 组件名称 | 组件版本 | 是否直接依赖 | 仓库 |
|---|---|---|---|
| sass-material-colors | 0.0.5 | 直接依赖 | npm |
| jquery-outside-events | 1.0.0 | 直接依赖 | npm |
| bootstrap | 4.6.2 | 直接依赖 | npm |
| base64-arraybuffer | 1.0.2 | 间接依赖 | npm |
| illuminate/collections | v8.83.27 | 间接依赖 | composer |
| good-listener | 1.2.2 | 间接依赖 | npm |
| regenerator-runtime | 0.14.0 | 间接依赖 | npm |
| lib-libxml | 间接依赖 | composer | |
| jstree | 3.3.16 | 直接依赖 | npm |
| parsecsv/php-parsecsv | 1.3.2 | 间接依赖 | composer |
| sabre/uri | 2.3.3 | 间接依赖 | composer |
| ckeditor/ckeditor | 4.22.1 | 间接依赖 | composer |
| setasign/fpdi | v2.5.0 | 间接依赖 | composer |
| sabre/event | 5.1.4 | 间接依赖 | composer |
| markbaker/complex | 3.0.2 | 间接依赖 | composer |
| datatables.net | 1.13.6 | 直接依赖 | npm |
| evenement/evenement | v3.0.2 | 间接依赖 | composer |
| phpmailer/dkimvalidator | v0.3 | 间接依赖 | composer |
| select | 1.1.2 | 间接依赖 | npm |
| guzzlehttp/psr7 | 2.6.1 | 间接依赖 | composer |
| zbateson/mb-wrapper | 1.2.0 | 间接依赖 | composer |
| ralouphie/getallheaders | 3.0.3 | 间接依赖 | composer |
| floatthead | 2.2.5 | 直接依赖 | npm |
| markbaker/matrix | 3.0.1 | 间接依赖 | composer |
| color-name | 1.1.4 | 间接依赖 | npm |
| respond.js | 1.4.2 | 直接依赖 | npm |
| vue-virtual-scroller | 1.1.2 | 间接依赖 | npm |
| chartjs-color | 2.4.1 | 间接依赖 | npm |
| picocolors | 1.0.0 | 间接依赖 | npm |
| twig/twig | v3.7.1 | 间接依赖 | composer |
| text-segmentation | 1.0.3 | 间接依赖 | npm |
| smarty/smarty | v4.3.4 | 间接依赖 | composer |
| @mdi/font | 7.3.67 | 直接依赖 | npm |
| html2canvas | 1.4.1 | 直接依赖 | npm |
| jquery-lazy | 1.7.11 | 直接依赖 | npm |
| leaflet.markercluster | 1.5.3 | 直接依赖 | npm |
| phpoffice/phpspreadsheet | 1.29.0 | 间接依赖 | composer |
| symfony/translation-contracts | v2.5.2 | 间接依赖 | composer |
| scrollparent | 2.1.0 | 间接依赖 | npm |
| nesbot/carbon | 2.71.0 | 间接依赖 | composer |
| popper.js | 1.16.1 | 直接依赖 | npm |
| css-line-break | 2.1.0 | 间接依赖 | npm |
| chartjs-plugin-datalabels | 1.0.0 | 直接依赖 | npm |
| maximebf/debugbar | v1.19.1 | 间接依赖 | composer |
| setasign/fpdf | 1.8.6 | 间接依赖 | composer |
| chart.js | 4.4.0 | 间接依赖 | npm |
| lib-pcre | 间接依赖 | composer | |
| @pnotify/bootstrap4 | 5.2.0 | 直接依赖 | npm |
| @pnotify/mobile | 5.2.0 | 直接依赖 | npm |
| device-uuid | 1.0.4 | 直接依赖 | npm |
| source-map | 0.6.1 | 间接依赖 | npm |
| yetiforce/yii2 | 2.0.45 | 间接依赖 | composer |
| blueimp-load-image | 5.16.0 | 直接依赖 | npm |
| maennchen/zipstream-php | 2.2.6 | 间接依赖 | composer |
| overlayscrollbars | 1.13.3 | 直接依赖 | npm |
| split.js | 1.6.5 | 直接依赖 | npm |
| add | 2.0.6 | 直接依赖 | npm |
| fullcalendar | 5.11.5 | 直接依赖 | npm |
| datatables.net-responsive | 2.5.0 | 间接依赖 | npm |
| composer/ca-bundle | 1.3.7 | 间接依赖 | composer |
| illuminate/support | v8.83.27 | 间接依赖 | composer |
| bootstrap-datepicker | 1.10.0 | 直接依赖 | npm |
| guzzlehttp/promises | 2.0.1 | 间接依赖 | composer |
| datatables.net-bs4 | 1.13.6 | 直接依赖 | npm |
| psr/clock | 1.0.0 | 间接依赖 | composer |
| color-convert | 1.9.3 | 间接依赖 | npm |
| simshaun/recurr | v5.0.2 | 间接依赖 | composer |
| flag-icons | 6.11.2 | 直接依赖 | npm |
| clockpicker | 0.0.7 | 直接依赖 | npm |
| illuminate/contracts | v8.83.27 | 间接依赖 | composer |
| resize-observer-polyfill | 1.5.1 | 间接依赖 | npm |
| @pnotify/confirm | 5.2.0 | 直接依赖 | npm |
| jquery-ui-dist | 1.13.2 | 直接依赖 | npm |
| html5shiv | 3.7.3 | 直接依赖 | npm |
| @babel/parser | 7.23.0 | 间接依赖 | npm |
| illuminate/macroable | v8.83.27 | 间接依赖 | composer |
| select2-theme-bootstrap4 | 1.0.2 | 直接依赖 | npm |
| jstree-bootstrap-theme | 1.0.1 | 直接依赖 | npm |
| @vue/compiler-sfc | 2.7.15 | 间接依赖 | npm |
| sabberworm/php-css-parser | 8.4.0 | 间接依赖 | composer |
| milon/barcode | 9.0.1 | 间接依赖 | composer |
| core-js | 3.33.2 | 间接依赖 | npm |
| emoji-mart-vue-fast | 11.2.0 | 直接依赖 | npm |
| vue | 2.7.15 | 直接依赖 | npm |
| simplepie/simplepie | 1.8.0 | 间接依赖 | composer |
| bootstrap-tabdrop | 0.0.0 | 直接依赖 | npm |
| voku/portable-ascii | 1.6.1 | 间接依赖 | composer |
| quasar | 1.22.10 | 直接依赖 | npm |
| symfony/polyfill-iconv | v1.28.0 | 间接依赖 | composer |
| phpmailer/phpmailer | v6.8.1 | 间接依赖 | composer |
| color-name | 1.1.3 | 间接依赖 | npm |
| block-ui | 2.70.1 | 直接依赖 | npm |
| myclabs/php-enum | 1.8.4 | 间接依赖 | composer |
| nette/php-generator | v3.6.9 | 间接依赖 | composer |
| @pnotify/desktop | 5.2.0 | 直接依赖 | npm |
| moment | 2.29.4 | 直接依赖 | npm |
| ezyang/htmlpurifier | v4.16.0 | 间接依赖 | composer |
| jQuery-Validation-Engine | 3.1.1 | 直接依赖 | npm |
| blueimp-file-upload | 10.32.0 | 直接依赖 | npm |
| symfony/translation | v5.4.30 | 间接依赖 | composer |
| jquery.class.js | 1.0.0 | 直接依赖 | npm |
| bootstrap-daterangepicker | 3.1.0 | 直接依赖 | npm |
| doctrine/collections | 1.8.0 | 间接依赖 | composer |
| symfony/process | v5.4.28 | 间接依赖 | composer |
| symfony/polyfill-mbstring | v1.28.0 | 间接依赖 | composer |
| csstype | 3.1.2 | 间接依赖 | npm |
| dayjs | 1.11.10 | 间接依赖 | npm |
| league/climate | 3.8.2 | 间接依赖 | composer |
| symfony/deprecation-contracts | v2.5.2 | 间接依赖 | composer |
| chrome-php/wrench | v1.5.0 | 间接依赖 | composer |
| utrie | 1.0.2 | 间接依赖 | npm |
| gantt-elastic | 1.0.12 | 直接依赖 | npm |
| mlocati/spf-lib | 3.1.2 | 间接依赖 | composer |
| globalcitizen/php-iban | v4.2.1 | 间接依赖 | composer |
| seld/cli-prompt | 1.0.4 | 间接依赖 | composer |
| zbateson/stream-decorators | 1.2.1 | 间接依赖 | composer |
| vue-observe-visibility | 0.4.6 | 间接依赖 | npm |
| psr/http-client | 1.0.3 | 间接依赖 | composer |
| adhocore/jwt | 1.1.2 | 间接依赖 | composer |
| select2 | 4.0.13 | 直接依赖 | npm |
| url-polyfill | 1.1.12 | 直接依赖 | npm |
| clipboard | 2.0.11 | 直接依赖 | npm |
| yetiforce/yetiforcepdf | 0.1.40 | 间接依赖 | composer |
| blueimp-tmpl | 3.20.0 | 直接依赖 | npm |
| phenx/php-font-lib | 0.5.4 | 间接依赖 | composer |
| sabre/http | 5.1.10 | 间接依赖 | composer |
| psr/simple-cache | 1.0.1 | 间接依赖 | composer |
| datatables.net-responsive-bs4 | 2.5.0 | 直接依赖 | npm |
| zbateson/mail-mime-parser | 2.4.0 | 间接依赖 | composer |
| symfony/polyfill-ctype | v1.28.0 | 间接依赖 | composer |
| sabre/vobject | 4.5.3 | 间接依赖 | composer |
| chart.js | 2.9.4 | 直接依赖 | npm |
| @pnotify/core | 5.2.0 | 直接依赖 | npm |
| vue-resize | 0.4.5 | 间接依赖 | npm |
| perfect-scrollbar | 1.5.5 | 直接依赖 | npm |
| jquery-slimscroll | 1.3.8 | 直接依赖 | npm |
| source-map-js | 1.0.2 | 间接依赖 | npm |
| gridstack | 5.1.1 | 直接依赖 | npm |
| animate.css | 4.1.1 | 直接依赖 | npm |
| blueimp-canvas-to-blob | 3.29.0 | 直接依赖 | npm |
| psr/log | 1.1.4 | 间接依赖 | composer |
| symfony/polyfill-php80 | v1.28.0 | 间接依赖 | composer |
| nanoid | 3.3.6 | 间接依赖 | npm |
| mlocati/ip-lib | 1.18.0 | 间接依赖 | composer |
| psr/container | 1.1.2 | 间接依赖 | composer |
| psr/http-factory | 1.0.2 | 间接依赖 | composer |
| chrome-php/chrome | v1.9.1 | 间接依赖 | composer |
| tiny-emitter | 2.1.0 | 间接依赖 | npm |
| footable | 2.0.6 | 直接依赖 | npm |
| symfony/var-dumper | v5.4.29 | 间接依赖 | composer |
| yetiforce/csrf-magic | v1.1.3 | 间接依赖 | composer |
| css-element-queries | 1.2.3 | 直接依赖 | npm |
| pimple/pimple | v3.5.0 | 间接依赖 | composer |
| mousetrap | 1.6.5 | 直接依赖 | npm |
| leaflet.awesome-markers | 2.0.5 | 直接依赖 | npm |
| guzzlehttp/guzzle | 7.8.0 | 间接依赖 | composer |
| @babel/runtime | 7.23.2 | 间接依赖 | npm |
| giggsey/locale | 2.4 | 间接依赖 | composer |
| postcss | 8.4.31 | 间接依赖 | npm |
| leaflet | 1.9.4 | 直接依赖 | npm |
| mlocati/idna | 1.1.2 | 间接依赖 | composer |
| @kurkle/color | 0.3.2 | 间接依赖 | npm |
| pragmarx/google2fa | v8.0.1 | 间接依赖 | composer |
| giggsey/libphonenumber-for-php | 8.13.23 | 间接依赖 | composer |
| @fortawesome/fontawesome-free | 6.4.2 | 直接依赖 | npm |
| jquery | 3.7.1 | 直接依赖 | npm |
| sabre/xml | 2.2.6 | 间接依赖 | composer |
| store | 2.0.12 | 直接依赖 | npm |
| sabre/dav | 4.4.0 | 间接依赖 | composer |
| inputmask | 5.0.8 | 直接依赖 | npm |
| symfony/filesystem | v5.4.25 | 间接依赖 | composer |
| delegate | 3.2.0 | 间接依赖 | npm |
| doctrine/inflector | 2.0.8 | 间接依赖 | composer |
| @pnotify/font-awesome5 | 5.2.0 | 直接依赖 | npm |
| nette/utils | v3.2.10 | 间接依赖 | composer |
| chartjs-plugin-funnel | 1.1.5 | 直接依赖 | npm |
| tributejs | 5.1.3 | 直接依赖 | npm |
| monolog/monolog | 2.9.2 | 间接依赖 | composer |
| paragonie/constant_time_encoding | v2.6.3 | 间接依赖 | composer |
| chartjs-color-string | 0.6.0 | 间接依赖 | npm |
| notihnio/php-multipart-form-data-parser | 1.0.0 | 间接依赖 | composer |
| whatwg-fetch | 3.6.19 | 直接依赖 | npm |
| doctrine/deprecations | 1.1.2 | 间接依赖 | composer |
| psr/http-message | 1.1 | 间接依赖 | composer |
| jquery-hoverintent | 1.10.2 | 直接依赖 | npm |