Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
MAL-2025-4048
  • npm/coreapi-export-template
Malicious code in coreapi-export-template (npm) yesterday
  • No fix available
MAL-2025-4049
  • npm/firewall-node
Malicious code in firewall-node (npm) yesterday
  • No fix available
MAL-2025-4053
  • npm/passport-approved-token
Malicious code in passport-approved-token (npm) yesterday
  • No fix available
MAL-2025-4050
  • npm/discord-clients
Malicious code in discord-clients (npm) yesterday
  • No fix available
MAL-2025-4054
  • npm/web3-provider-wallet
Malicious code in web3-provider-wallet (npm) yesterday
  • No fix available
MAL-2025-4051
  • npm/evm-validator
Malicious code in evm-validator (npm) 2 days ago
  • No fix available
MAL-2025-4052
  • npm/hashcrypt265
Malicious code in hashcrypt265 (npm) 2 days ago
  • No fix available
MAL-2025-4055
  • npm/web3connectjs
Malicious code in web3connectjs (npm) 2 days ago
  • No fix available
GHSA-r683-v43c-6xqv
  • npm/samlify
samlify SAML Signature Wrapping attack 2 days ago
  • Fix available
  • Severity - 9.9 (Critical)
GHSA-4pg4-qvpc-4q3h
  • npm/multer
Multer vulnerable to Denial of Service from maliciously crafted requests 2 days ago
  • Fix available
  • Severity - 7.5 (High)
GHSA-44fp-w29j-9vj5
  • npm/multer
Multer vulnerable to Denial of Service via memory leaks from unclosed streams 2 days ago
  • Fix available
  • Severity - 7.5 (High)
GHSA-8qff-qr5q-5pr8
  • npm/openpgp
OpenPGP.js's message signature verification can be spoofed 2 days ago
  • Fix available
  • Severity - 8.7 (High)
MAL-2025-4044
  • npm/ort-web-template
Malicious code in ort-web-template (npm) 2 days ago
  • No fix available
MAL-2025-4045
  • npm/service-catalog-copilot
Malicious code in service-catalog-copilot (npm) 2 days ago
  • No fix available
MAL-2025-4042
  • npm/conventional-changelog-tf-a
Malicious code in conventional-changelog-tf-a (npm) 2 days ago
  • No fix available
MAL-2025-4041
  • npm/@abb-ux/commonux-web-components
Malicious code in @abb-ux/commonux-web-components (npm) 2 days ago
  • No fix available