Vulnerability Library

ID
Packages
Summary
Affected versions
Published
Fix
MAL-2024-1386
Malicious code in tec-docs (npm)
  • 1.0.0
2024-05-27T15:08:05Z No fix available
MAL-2024-1385
Malicious code in taxes-experience-malicious (npm)
  • 1.0.0
2024-05-27T12:15:52Z No fix available
MAL-2024-1384
Malicious code in protonme (npm)
  • 1200.1.1
  • 1201.1.1
2024-05-25T20:54:03Z No fix available
MAL-2024-1383
Malicious code in rich-relevance (npm)
  • 99.1.1
2024-05-25T00:20:51Z No fix available
MAL-2024-1382
Malicious code in cst-web-chat (npm)
  • 3.3.7
2024-05-24T19:45:53Z No fix available
MAL-2024-1381
Malicious code in hydra-player-sdk (npm)
  • 2.2.4
  • 2.2.5
2024-05-24T17:38:14Z No fix available
GHSA-2qjp-fg8c-g878
  • npm/vxe-table
vxe-table Cross-site Scripting vulnerability
  • See details.
2024-05-24T14:45:19Z Fix available
GHSA-3965-hpx2-q597
  • npm/pug-code-gen
  • npm/pug
Pug allows JavaScript code execution if an application accepts untrusted input
  • See details.
2024-05-24T14:45:02Z No fix available
GHSA-xgwh-cgv9-783v
  • npm/@tryghost/members-csv
Ghost allows CSV Injection during member CSV export
  • See details.
2024-05-22T18:30:40Z Fix available
GHSA-pj27-2xvp-4qxg
  • npm/@fastify/session
@fastify/session reuses destroyed session cookie
  • See details.
2024-05-21T18:09:57Z Fix available
MAL-2024-1379
  • npm/fetch-datas
Malicious code in fetch-datas (npm)
  • See details.
2024-05-21T02:08:51Z No fix available
MAL-2024-1380
  • npm/tcm-app-migration-miles-react
Malicious code in tcm-app-migration-miles-react (npm)
  • See details.
2024-05-21T01:59:20Z No fix available
GHSA-5f97-h2c2-826q
  • npm/@apidevtools/json-schema-ref-parser
json-schema-ref-parser Prototype Pollution issue
  • See details.
2024-05-20T18:31:23Z Fix available
GHSA-8vr4-h4rr-8ph6
  • npm/@bit/loader
MiguelCastillo @bit/loader Prototype Pollution issue
  • See details.
2024-05-20T18:31:23Z No fix available
GHSA-g3q2-vcjq-rgrc
  • npm/@blackprint/engine
Blackprint @blackprint/engine Prototype Pollution issue
  • See details.
2024-05-20T18:31:22Z Fix available
MAL-2024-1376
  • npm/cors-app
Malicious code in cors-app (npm)
  • See details.
2024-05-20T05:00:57Z No fix available