OSV - Open Source Vulnerabilities

MAL-2025-42128

npm/berachain-metadata

Malicious code in berachain-metadata (npm)

yesterday

No fix available

MAL-2025-41822

npm/cyclic-dep-explicit-1

Malicious code in cyclic-dep-explicit-1 (npm)

yesterday

No fix available

MAL-2025-41821

npm/esm-package

Malicious code in esm-package (npm)

yesterday

No fix available

MAL-2025-41820

npm/openmct-e2e

Malicious code in openmct-e2e (npm)

yesterday

No fix available

MAL-2025-41819

npm/@hpx-core-experiences/react-my-account-commons

Malicious code in @hpx-core-experiences/react-my-account-commons (npm)

yesterday

No fix available

MAL-2025-42132

npm/test343tttt

Malicious code in test343tttt (npm)

2 days ago

No fix available

GHSA-g5qg-72qw-gw5v

npm/next

Next.js Affected by Cache Key Confusion for Image Optimization API Routes

2 days ago

Fix available
Severity - 6.2 (Medium)

GHSA-xv57-4mr9-wg8v

npm/next

Next.js Content Injection Vulnerability for Image Optimization

2 days ago

Fix available
Severity - 4.3 (Medium)

GHSA-4342-x723-ch2f

npm/next

Next.js Improper Middleware Redirect Handling Leads to SSRF

2 days ago

Fix available
Severity - 6.5 (Medium)

MAL-2025-42029

npm/mpesa-backoffice-frontend

Malicious code in mpesa-backoffice-frontend (npm)

2 days ago

No fix available

MAL-2025-41914

npm/@ibm-integration/flow-canvas

Malicious code in @ibm-integration/flow-canvas (npm)

2 days ago

No fix available

MAL-2025-41952

npm/cameraroll

Malicious code in cameraroll (npm)

2 days ago

No fix available

MAL-2025-41946

npm/batchedbridge

Malicious code in batchedbridge (npm)

2 days ago

No fix available

MAL-2025-41935

npm/accumulateinfo

Malicious code in accumulateinfo (npm)

2 days ago

No fix available

MAL-2025-41830

npm/@callcenter-frontend/ui-components

Malicious code in @callcenter-frontend/ui-components (npm)

2 days ago

No fix available

MAL-2025-41828

npm/@callcenter-frontend/shared-types

Malicious code in @callcenter-frontend/shared-types (npm)

2 days ago

No fix available