Vulnerability Database
Blog
FAQ
Docs
Vulnerabilities
search
All ecosystems
304178
AlmaLinux
3552
Alpine
3692
Android
2865
Bitnami
5384
Chainguard
26378
CRAN
10
crates.io
1697
Debian
46136
GHC
3
GIT
28432
GitHub Actions
27
Go
4214
Hackage
23
Hex
35
Linux
13573
Mageia
5595
Maven
5498
npm
25552
NuGet
1434
openSUSE
9947
OSS-Fuzz
3597
Packagist
4654
Pub
10
PyPI
15728
Red Hat
15879
Rocky Linux
1757
RubyGems
1682
SUSE
16155
SwiftURL
35
Ubuntu
46249
Wolfi
14385
ID
Packages
Summary
Published
arrow_upward
Attributes
MAL-2025-4048
npm/coreapi-export-template
Malicious code in coreapi-export-template (npm)
yesterday
No fix available
MAL-2025-4049
npm/firewall-node
Malicious code in firewall-node (npm)
yesterday
No fix available
MAL-2025-4053
npm/passport-approved-token
Malicious code in passport-approved-token (npm)
yesterday
No fix available
MAL-2025-4050
npm/discord-clients
Malicious code in discord-clients (npm)
yesterday
No fix available
MAL-2025-4054
npm/web3-provider-wallet
Malicious code in web3-provider-wallet (npm)
yesterday
No fix available
MAL-2025-4051
npm/evm-validator
Malicious code in evm-validator (npm)
2 days ago
No fix available
MAL-2025-4052
npm/hashcrypt265
Malicious code in hashcrypt265 (npm)
2 days ago
No fix available
MAL-2025-4055
npm/web3connectjs
Malicious code in web3connectjs (npm)
2 days ago
No fix available
GHSA-r683-v43c-6xqv
npm/samlify
samlify SAML Signature Wrapping attack
2 days ago
Fix available
Severity - 9.9 (Critical)
GHSA-4pg4-qvpc-4q3h
npm/multer
Multer vulnerable to Denial of Service from maliciously crafted requests
2 days ago
Fix available
Severity - 7.5 (High)
GHSA-44fp-w29j-9vj5
npm/multer
Multer vulnerable to Denial of Service via memory leaks from unclosed streams
2 days ago
Fix available
Severity - 7.5 (High)
GHSA-8qff-qr5q-5pr8
npm/openpgp
OpenPGP.js's message signature verification can be spoofed
2 days ago
Fix available
Severity - 8.7 (High)
MAL-2025-4044
npm/ort-web-template
Malicious code in ort-web-template (npm)
2 days ago
No fix available
MAL-2025-4045
npm/service-catalog-copilot
Malicious code in service-catalog-copilot (npm)
2 days ago
No fix available
MAL-2025-4042
npm/conventional-changelog-tf-a
Malicious code in conventional-changelog-tf-a (npm)
2 days ago
No fix available
MAL-2025-4041
npm/@abb-ux/commonux-web-components
Malicious code in @abb-ux/commonux-web-components (npm)
2 days ago
No fix available
Load more...
npm - OSV