Ecosyste.ms: Packages

An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.

Top 0.6% on npmjs.org
Top 1.0% downloads on npmjs.org
Top 1.0% dependent packages on npmjs.org
Top 0.4% dependent repos on npmjs.org
Top 0.4% forks on npmjs.org
Top 1.0% docker downloads on npmjs.org

npmjs.org : strapi

An open source headless CMS solution to create and manage your own API. It provides a powerful dashboard and features to make your life easier. Databases supported: MongoDB, MySQL, MariaDB, PostgreSQL, SQLite

Registry - Source - Homepage - JSON
purl: pkg:npm/strapi
Keywords: strapi, cms, cmf, content management system, content management framework, admin panel, dashboard, api, auth, framework, http, json, koa, koajs, lusca, mvc, oauth, oauth2, orm, rest, restful, security, jam, jamstack, javascript, headless, MongoDB, MySQL, MariaDB, PostgreSQL, SQLite, graphqL, infrastructure, backend, open source, self hosted, lerna, lernajs, react, reactjs, cms-framework, content-management, content-management-system, customizable, graphql, hacktoberfest, headless-cms, koa2, mysql, no-code, nodejs, typescript
License: ICU
Latest release: over 1 year ago
First release: over 8 years ago
Dependent packages: 25
Dependent repositories: 4,153
Downloads: 28,731 last month
Stars: 60,540 on GitHub
Forks: 7,561 on GitHub
Docker dependents: 49
Docker downloads: 8,550
Total Commits: 22983
Committers: 1074
Average commits per author: 21.399
Development Distribution Score (DDS): 0.847
More commit stats: commits.ecosyste.ms
See more repository details: repos.ecosyste.ms
Funding links: https://opencollective.com/strapi
Last synced: 2 days ago

High
GSA_kwCzR0hTQS1mNmZtLXIyNnEtcDc0N84AAgbL
Improper Removal of Sensitive Information Before Storage or Transfer in Strapi
Ecosystems: npm
Packages: @strapi/strapi, strapi
Source: github
Published: almost 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ5dnYtNnE3cS13NWNm
OS Command Injection in Strapi
Ecosystems: npm
Packages: strapi
Source: github
Published: over 2 years ago
Moderate
GSA_kwCzR0hTQS14cmpmLXBodnYtcjR2cs0vLg
Command injection in strapi
Ecosystems: npm
Packages: strapi
Source: github
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS05cWdtLXc4N3EtaHg4Oc06zg
Unrestricted Upload of File with Dangerous Type in Strapi
Ecosystems: npm
Packages: strapi
Source: github
Published: about 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZ4YzItbWozOS1xNTk5
Strapi allows unauthenticated attacker to reset admin password without valid reset token
Ecosystems: npm
Packages: strapi
Source: github
Published: over 4 years ago
Moderate
GSA_kwCzR0hTQS1tY3FtLTZmZjQtNTNxeM4AArjX
Cross-site Scripting in Strapi
Ecosystems: npm
Packages: strapi
Source: github
Published: almost 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlwMnctcm14NC05bXc3
Command Injection in strapi
Ecosystems: npm
Packages: strapi
Source: github
Published: over 3 years ago
High
GSA_kwCzR0hTQS00cGhnLWhwcW0tYzNqNM4AAvGG
Strapi mishandles hidden attributes within admin API responses
Ecosystems: npm
Packages: @strapi/strapi, strapi
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS02NXd2LTUyOHItbTg5Ms4AAlF4
Improper Input Validation in strapi
Ecosystems: npm
Packages: strapi
Source: github
Published: almost 2 years ago
High
GSA_kwCzR0hTQS12Z2o3LTg5NWotZ3ByNs4AAgbK
Improper Removal of Sensitive Information Before Storage or Transfer in Strapi
Ecosystems: npm
Packages: @strapi/strapi, strapi
Source: github
Published: almost 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdmcnYtOXBody12cnZy
Authorization bypass in Strapi
Ecosystems: npm
Packages: strapi
Source: github
Published: about 3 years ago
High
GSA_kwCzR0hTQS0zN2h4LTRtY3Etd2MzaM0WMQ
Weak Password Recovery Mechanism for Forgotten Password in Strapi
Ecosystems: npm
Packages: strapi
Source: github
Published: over 2 years ago
High
GSA_kwCzR0hTQS04NXZnLWdycjUtcHc0Ms3dNw
Insecure password handling vulnerability in Strapi
Ecosystems: npm
Packages: @strapi/strapi, strapi
Source: github
Published: about 2 years ago