Malicious code in @emerald-react/datepicker (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f364652ac7b03828a4bc962c38182499ca673463ce30d328f6171f1b6331cd8 The package @emerald-react/datepicker was found to contain malicious code...

MAL-2026-1606 Malicious code in @emerald-react/datepicker (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f364652ac7b03828a4bc962c38182499ca673463ce30d328f6171f1b6331cd8 The package @emerald-react/datepicker was found to contain malicious code...

CVE-2025-8082

Vuetify CVE-2025-8082 affects the VDatePicker component where the title-date-format property can output user-generated content which is assigned to innerHTML without sanitization, enabling Cross-Site Scripting. Affected versions are Vuetify 2.0.0 and above up to, but not including, 3.0.0. The iss...

CVE-2025-8082 Vuetify XSS via unsanitized 'titleDateFormat' in 'VDatePicker'

Improper neutralization of the title date in the 'VDatePicker' component in Vuetify, allows unsanitized HTML to be inserted into the page. This can lead to a Cross-Site Scripting XSS https://owasp.org/www-community/attacks/xss attack. The vulnerability occurs because the 'title-date-format'...

Malicious code in react-native-datepicker-modal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86014f2b55c2d58c217fd51ebbffc71cbc86fad9b13d443647f1cb11c19c7ade The package react-native-datepicker-modal was found to contain malicious code. Source: ghsa-malware...

EUVD-2020-3869

Malware in sbrugna...

EUVD-2021-2214

Malware in sbrugna...

EUVD-2017-8979

Malware in sbrugna...

EUVD-2024-42357

Malicious code in bioql PyPI...

EUVD-2024-40824

Malicious code in bioql PyPI...

EUVD-2025-7831

Malicious code in bioql PyPI...

CVE-2025-54111 Windows UI XAML Phone DatePickerFlyout Elevation of Privilege Vulnerability

...

MAL-2025-15990 Malicious code in bootstrap-material-design-datepicker (npm)

The package bootstrap-material-design-datepicker was found to contain malicious code...

Malicious code in mz-vue-datepicker (npm)

The package mz-vue-datepicker was found to contain malicious code...

MAL-2025-27038 Malicious code in mz-vue-datepicker (npm)

The package mz-vue-datepicker was found to contain malicious code...

CVE-2024-44042

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Fahad Mahmood WP Datepicker wp-datepicker allows Stored XSS.This issue affects WP Datepicker: from n/a through = 2.1.1...

CVE-2024-47321

Missing Authorization vulnerability in Fahad Mahmood WP Datepicker wp-datepicker.This issue affects WP Datepicker: from n/a through = 2.1.1...

CVE-2024-12468

The WP Datepicker plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'wpdpgetselecteddatepicker' parameter in all versions up to, and including, 2.1.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inje...

CVE-2021-27330

Triconsole Datepicker Calendar 3.77 is affected by cross-site scripting XSS in calendarform.php. Attackers can read authentication cookies that are still active, which can be used to perform further attacks such as reading browser history, directory listings, and file contents...

CVE-2025-28861

Cross-Site Request Forgery CSRF vulnerability in bhzad WP jQuery Persian Datepicker wpjqp-datepicker allows Stored XSS.This issue affects WP jQuery Persian Datepicker: from n/a through = 0.1.0...