Launch Week Day 1: Announcing Security Design Review
Start for Free
npm

matrix-react-sdk

View on npm registry
9 Total advisories
9 Vulnerabilities
0 Malware

Vulnerabilities

LOW 2.6
npm

CVE-2021-21320

User content sandbox can be confused into opening arbitrary documents
MEDIUM 4.2
npm

GHSA-8796-gc9j-63rv

File upload local preview can run embedded scripts after user interaction
MEDIUM 4.2
npm

CVE-2021-32622

Improper file handling in matrix-react-sdk
NONE 0.0
npm

CVE-2024-47824

Malicious homeservers can steal message keys when the matrix-react-sdk user invites another user to a room
MEDIUM 4.1
npm

CVE-2024-42347

Matrix SDK for React's URL preview setting for a room is controllable by the homeserver
MEDIUM 6.1
npm

CVE-2023-37259

matrix-react-sdk vulnerable to XSS in Export Chat feature
HIGH 8.2
npm

CVE-2023-30609

HTML injection in search results via plaintext message highlighting
HIGH 8.2
npm

CVE-2023-28103

Prototype pollution in matrix-react-sdk

HIGH 7.2
npm

CVE-2022-36060

matrix-react-sdk Prototype pollution vulnerability

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes