Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-w5fx-fh39-j5rw
  • npm/@openai/codex
 Codex has sandbox bypass due to bug in path configuration logic 4 hours ago
  • Fix available
  • Severity - 8.6 (High)
MAL-2025-47460
  • npm/circuit-retained
 Malicious code in circuit-retained (npm) 13 hours ago
  • No fix available
MAL-2025-47461
  • npm/circuit-runtime-presenter
 Malicious code in circuit-runtime-presenter (npm) 13 hours ago
  • No fix available
MAL-2025-47462
  • npm/skiko-js
 Malicious code in skiko-js (npm) 13 hours ago
  • No fix available
GHSA-2h8j-8r9p-849f
  • npm/@digitalocean/do-markdownit
 @digitalocean/do-markdownit has Type Confusion vulnerability 15 hours ago
  • No fix available
  • Severity - 5.4 (Medium)
MAL-2025-47456
  • npm/regex-validator-pro
 Malicious code in regex-validator-pro (npm) 21 hours ago
  • No fix available
MAL-2025-47457
  • npm/validator-utils-pro
 Malicious code in validator-utils-pro (npm) 21 hours ago
  • No fix available
MAL-2025-47459
  • npm/libvirt-python
 Malicious code in libvirt-python (npm) 23 hours ago
  • No fix available
GHSA-m79r-r765-5f9j
  • npm/@lobehub/chat
 Lobe Chat Desktop vulnerable to Remote Code Execution via XSS in Chat Messages yesterday
  • Fix available
  • Severity - 6.8 (Medium)
MAL-2025-47455
  • npm/@rxap/ngx-bootstrap
 Malicious code in @rxap/ngx-bootstrap (npm) yesterday
  • No fix available
MAL-2025-47450
  • npm/hello-shai
 Malicious code in hello-shai (npm) yesterday
  • No fix available
MAL-2025-47449
  • npm/another-shai
 Malicious code in another-shai (npm) yesterday
  • No fix available
MAL-2025-47426
  • npm/playground_root
 Malicious code in playground_root (npm) yesterday
  • No fix available
MAL-2025-47425
  • npm/storj-satellite
 Malicious code in storj-satellite (npm) yesterday
  • No fix available
GHSA-9pw5-wx67-q964
  • npm/@sequa-ai/sequa-mcp
 @sequa-ai/sequa-mcp has Command Injection vulnerability 2 days ago
  • Fix available
  • Severity - 2.1 (Low)
GHSA-qm9p-f9j5-w83w
  • npm/@parcel/reporter-dev-server
 Parcel has an Origin Validation Error vulnerability 2 days ago
  • No fix available
  • Severity - 6.5 (Medium)
Load more...