Components Vulnerabilities Pricing MCP API

Docs

Find vulnerabilities. Fix fast with AI.

Search components by package, version, or CVE to get started.

Get full component data and automated fixes with Sonatype Guide.

maven

org.webjars.bowergithub.chainsafe

web3.js

3.0.0

web3.js 3.0.0

Latest

org.webjars.bowergithub.chainsafe

PublishedSep 13, 2021•Policy

compliance

maven Registry

Developer Trust Score

Recommended Version:x.y.z

Recommended upgrade that meets your policy.

Compare Versions

org.webjars.bowergithub.chainsafe/web3.js… | Sonatype Guide

Get full component data and automated fixes with Sonatype Guide.

maven

org.webjars.bowergithub.chainsafe

web3.js

3.0.0

web3.js 3.0.0

Latest

org.webjars.bowergithub.chainsafe

PublishedSep 13, 2021•Policy

compliance

maven Registry

Developer Trust Score

Recommended Version:x.y.z

Recommended upgrade that meets your policy.

Compare Versions

Severity

Critical (0)

High (1)

Medium (0)

Low (0)

CVSS Score

0.010.0

EPSS Score

0.01.0

Malware

KEV StatusPublished

8.8CVE-2025-57330

The web3-core-subscriptions is a package designed to manages web3 subscriptions. A Prototype Pollution vulnerability in the attachToObject function of web3-core-subscriptions version 1.10.4 and before allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service (DoS) as the minimum consequence.

affected

SeverityHigh

PublishedSep 25, 2025

Severity

Critical (0)

High (1)

Medium (0)

Low (0)

CVSS Score

0.010.0

EPSS Score

0.01.0

Malware

KEV StatusPublished

8.8CVE-2025-57330

affected

SeverityHigh

PublishedSep 25, 2025