Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
MAL-2026-3764
  • npm/glob-helper
 Malicious code in glob-helper (npm) 14 May
  • No fix available
GHSA-5j98-mcp5-4vw2
  • npm/glob
 glob CLI: Command injection via -c/--cmd executes matches with shell:true 17 Nov 2025
  • Fix available
  • Severity - 7.5 (High)
MAL-2025-20688
  • npm/flat-glob
 Malicious code in flat-glob (npm) 14 Aug 2025
  • No fix available
MAL-2025-21577
  • npm/glob-match
 Malicious code in glob-match (npm) 14 Aug 2025
  • No fix available
MAL-2025-32233
  • npm/rimraf-glob
 Malicious code in rimraf-glob (npm) 14 Aug 2025
  • No fix available
MAL-2023-744
  • npm/reload-glob
 Malicious code in reload-glob (npm) 06 Feb 2023
  • No fix available
MAL-2022-2613
  • npm/dup-glob
 Malicious code in dup-glob (npm) 29 Sep 2022
  • No fix available
MAL-2022-6652
  • npm/trin-glob
 Malicious code in trin-glob (npm) 14 Sep 2022
  • No fix available
GHSA-cj88-88mr-972w
  • npm/glob-parent
 glob-parent 6.0.0 vulnerable to Regular Expression Denial of Service 18 Jul 2022
  • Fix available
  • Severity - 7.5 (High)
GHSA-ww39-953v-wcq6
  • npm/glob-parent
 glob-parent vulnerable to Regular Expression Denial of Service in enclosure regex 07 Jun 2021
  • Fix available
  • Severity - 7.5 (High)