基础信息
项目名称:cgoldsby/LoginCritter
项目徽章:
仓库地址:https://github.com/pterodactyl/panel
检测报告地址:https://www.murphysec.com/console/report/1721081315473752064/1727631865080668160
此报告由Murphysec提供
漏洞列表
| 漏洞名称 | 漏洞类型 | MPS编号 | CVE编号 | 漏洞等级 |
|---|---|---|---|---|
| Addressable资源管理错误漏洞 | 拒绝服务 | MPS-2021-9447 | CVE-2021-32740 | 高危 |
缺陷组件
| 组件名称 | 版本 | 最小修复版本 | 依赖关系 | 修复建议 |
|---|---|---|---|---|
| addressable | 2.7.0 | 2.8.0 | 间接依赖 | 建议修复 |
许可证风险
| 许可证类型 | 相关组件 | 许可证风险 |
|---|---|---|
| Apache-2.0 OR MIT | 1 | 低 |
| 自定义许可证 | 5 | 低 |
| Apache-2.0 | 3 | 低 |
| MIT | 7 | 低 |
SBOM清单
| 组件名称 | 组件版本 | 是否直接依赖 | 仓库 |
|---|---|---|---|
| uber | 0.1.0 | 间接依赖 | bundler |
| xcpretty-travis-formatter | 1.0.0 | 间接依赖 | bundler |
| xcpretty | 0.3.0 | 间接依赖 | bundler |
| plist | 3.5.0 | 间接依赖 | bundler |
| faraday_middleware | 0.13.1 | 间接依赖 | bundler |
| mini_magick | 4.9.5 | 间接依赖 | bundler |
| security | 0.1.3 | 间接依赖 | bundler |
| json | 2.3.0 | 间接依赖 | bundler |
| gh_inspector | 1.1.3 | 间接依赖 | bundler |
| simctl | 1.6.6 | 间接依赖 | bundler |
| CFPropertyList | 3.0.2 | 间接依赖 | bundler |
| google-cloud-storage | 1.16.0 | 间接依赖 | bundler |
| rouge | 2.0.7 | 间接依赖 | bundler |
| jwt | 2.1.0 | 间接依赖 | bundler |
| multi_json | 1.14.1 | 间接依赖 | bundler |
| faraday | 0.17.1 | 间接依赖 | bundler |
| rubyzip | 1.3.0 | 间接依赖 | bundler |
| nanaimo | 0.2.6 | 间接依赖 | bundler |
| slack-notifier | 2.3.2 | 间接依赖 | bundler |
| unf_ext | 0.0.7.6 | 间接依赖 | bundler |
| retriable | 3.1.2 | 间接依赖 | bundler |
| fastlane-plugin-appicon | 0.14.1 | 间接依赖 | bundler |
| commander-fastlane | 4.4.6 | 间接依赖 | bundler |
| bundler | 间接依赖 | bundler | |
| memoist | 0.16.2 | 间接依赖 | bundler |
| googleauth | 0.6.7 | 间接依赖 | bundler |
| faraday-cookie_jar | 0.0.6 | 间接依赖 | bundler |
| addressable | 2.7.0 | 间接依赖 | bundler |
| tty-spinner | 0.9.2 | 间接依赖 | bundler |
| mime-types | 3.3 | 间接依赖 | bundler |
| claide | 1.0.3 | 间接依赖 | bundler |
| xcodeproj | 1.14.0 | 间接依赖 | bundler |
| babosa | 1.0.3 | 间接依赖 | bundler |
| tty-screen | 0.7.0 | 间接依赖 | bundler |
| os | 1.0.1 | 间接依赖 | bundler |
| httpclient | 2.8.3 | 间接依赖 | bundler |
| multipart-post | 2.0.0 | 间接依赖 | bundler |
| fastimage | 2.1.7 | 间接依赖 | bundler |
| emoji_regex | 1.0.1 | 间接依赖 | bundler |
| colored | 1.2 | 间接依赖 | bundler |
| declarative-option | 0.1.0 | 间接依赖 | bundler |
| declarative | 0.0.10 | 间接依赖 | bundler |
| terminal-table | 1.8.0 | 间接依赖 | bundler |
| naturally | 2.2.0 | 间接依赖 | bundler |
| unicode-display_width | 1.6.0 | 间接依赖 | bundler |
| unf | 0.1.4 | 间接依赖 | bundler |
| highline | 1.7.10 | 间接依赖 | bundler |
| google-cloud-env | 1.3.0 | 间接依赖 | bundler |
| domain_name | 0.5.20190701 | 间接依赖 | bundler |
| dotenv | 2.7.5 | 间接依赖 | bundler |
| digest-crc | 0.4.1 | 间接依赖 | bundler |
| signet | 0.12.0 | 间接依赖 | bundler |
| tty-cursor | 0.7.0 | 间接依赖 | bundler |
| word_wrap | 1.0.0 | 间接依赖 | bundler |
| mime-types-data | 3.2019.1009 | 间接依赖 | bundler |
| excon | 0.71.0 | 间接依赖 | bundler |
| http-cookie | 1.0.3 | 间接依赖 | bundler |
| fastlane | 2.137.0 | 间接依赖 | bundler |
| representable | 3.0.4 | 间接依赖 | bundler |
| multi_xml | 0.6.0 | 间接依赖 | bundler |
| google-cloud-core | 1.4.1 | 间接依赖 | bundler |
| google-api-client | 0.23.9 | 间接依赖 | bundler |
| colored2 | 3.1.2 | 间接依赖 | bundler |
| public_suffix | 2.0.5 | 间接依赖 | bundler |
| atomos | 0.1.3 | 间接依赖 | bundler |
| terminal-notifier | 2.0.0 | 间接依赖 | bundler |