OSV - Open Source Vulnerabilities

MAL-2025-191468

npm/@lokeswari-satyanarayanan/rn-zustand-expo-template

Malicious code in @lokeswari-satyanarayanan/rn-zustand-expo-template (npm)

2 hours ago

No fix available

GHSA-675q-66gf-gqg8

npm/@oneuptime/common

OneUptime is Vulnerable to Privilege Escalation via Login Response Manipulation

5 hours ago

Fix available
Severity - 6.9 (Medium)

GHSA-4vcf-q4xf-f48m

npm/@better-auth/passkey

Better Auth Passkey Plugin allows passkey deletion through IDOR

7 hours ago

Fix available
Severity - 7.1 (High)

MAL-2025-191469

npm/bip40

Malicious code in bip40 (npm)

10 hours ago

No fix available

GHSA-wqch-xfxh-vrr4

npm/body-parser

body-parser is vulnerable to denial of service when url encoding is used

14 hours ago

Fix available
Severity - 5.5 (Medium)

MAL-2025-191464

npm/mayhem-wma

Malicious code in mayhem-wma (npm)

19 hours ago

No fix available

MAL-2025-191465

npm/mcp-polymarket

Malicious code in mcp-polymarket (npm)

19 hours ago

No fix available

MAL-2025-191466

npm/rpc-validator

Malicious code in rpc-validator (npm)

19 hours ago

No fix available

MAL-2025-191467

npm/xrpl-api

Malicious code in xrpl-api (npm)

19 hours ago

No fix available

MAL-2025-191463

npm/initial-path

Malicious code in initial-path (npm)

19 hours ago

No fix available

MAL-2025-191462

npm/react-svgs-helper

Malicious code in react-svgs-helper (npm)

19 hours ago

No fix available

MAL-2025-191461

npm/baidu-src-test3

Malicious code in baidu-src-test3 (npm)

21 hours ago

No fix available

MAL-2025-191460

npm/baidu-src-test

Malicious code in baidu-src-test (npm)

21 hours ago

No fix available

MAL-2025-191459

npm/@vleo-dev/a11y-js-service

Malicious code in @vleo-dev/a11y-js-service (npm)

22 hours ago

No fix available

MAL-2025-191178

npm/@actbase/native

Malicious code in @actbase/native (npm)

yesterday

No fix available

MAL-2025-191179

npm/@afetcan/api

Malicious code in @afetcan/api (npm)

yesterday

No fix available