VYPR

npm package

storybook

pkg:npm/storybook

Vulnerabilities (2)

  • CVE-2026-27148Feb 25, 2026
    affected >= 8.1.0, < 8.6.17fixed 8.6.17

    Storybook is a frontend workshop for building user interface components and pages in isolation. Prior to versions 7.6.23, 8.6.17, 9.1.19, and 10.2.10, the WebSocket functionality in Storybook's dev server, used to create and update stories, is vulnerable to WebSocket hijacking. T

  • CVE-2025-68429HigDec 17, 2025
    affected >= 7.0.0, < 7.6.21fixed 7.6.21

    Storybook is a frontend workshop for building user interface components and pages in isolation. A vulnerability present starting in versions 7.0.0 and prior to versions 7.6.21, 8.6.15, 9.1.17, and 10.1.10 relates to Storybook’s handling of environment variables defined in a `.env