15465 matches found
MAL-2026-2638 Malicious code in billing-paywidget (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a1d045f893bda154c8f1c451045b34000b97a678cef9952b2dc3ba2f1c83db2 The package billing-paywidget was found to contain malicious code. Source: ghsa-malware...
Malicious code in vip-landing (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1a30b342d6480583e23a375439f7332f03167d039b9b5471fa038d2374438fc The package vip-landing was found to contain malicious code. Source: ghsa-malware 63f1dbbecde9c755138a598580ab543e38ddcd44460ce05ec9532e8475bfc2a2 An...
MAL-2026-2655 Malicious code in tailwind-lines-clamp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d3d215fb943fe734ea49a73d1d0f503c465c829b5f5b5327ca3d83eaa0e377a The package tailwind-lines-clamp was found to contain malicious code. Source: ghsa-malware...
CVE-2026-36946
Sourcecodester Computer and Mobile Repair Shop Management System v1.0 is vulnerable to SQL injection in the file /rsms/admin/inquiries/viewdetails.php...
CVE-2026-36945
Sourcecodester Computer and Mobile Repair Shop Management System v1.0 is vulnerable to SQL injection in the file /rsms/admin/clients/manageclient.php...
MAL-2026-2621 Malicious code in walmart-internal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4cb99836d95f651dcdf50a02819e299598fbb9e62a702601ce6fa89c3ed6ec0 The package walmart-internal was found to contain malicious code. Source: ghsa-malware 88f5dbf5cfe998f7ad3015cadd6b280accbeb5aadf15cdc7575f4f83a6f572...
Malicious code in @spreadjs/js-calc (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7909a65c6a2c928f12a2333a6e1c53c7dea90685fe7b2be35f120654a6f86d7 The package @spreadjs/js-calc was found to contain malicious code. Source: ghsa-malware...
Malicious code in @sports-api/api-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6445b51deb95e237826188e8e4897f9c43cf8d9232f7d479b59922066a5ad3c The package @sports-api/api-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in @relxui/react (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b91a4fd21ef12fb1580ab9240c8b51f39c0ba26d19b683ebcac2d86ed7936e78 The package @relxui/react was found to contain malicious code. Source: ghsa-malware 1a95206a60abfe74a108e76e52361543b36e7d78ff34a1273b5cf4c1bb183d1f...
Malicious code in @hrb-web/nuxt (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a79331843c585d4b6aa2d8f3256bd25c779d32339f82b689841407d6cf4b6f67 The package @hrb-web/nuxt was found to contain malicious code. Source: ghsa-malware e1fadac986a7b5658d8d9eb34082aba1718b1258ce2bda956c044c474c2a298c...
MAL-2026-2585 Malicious code in @hrb-web/nuxt (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a79331843c585d4b6aa2d8f3256bd25c779d32339f82b689841407d6cf4b6f67 The package @hrb-web/nuxt was found to contain malicious code. Source: ghsa-malware e1fadac986a7b5658d8d9eb34082aba1718b1258ce2bda956c044c474c2a298c...
Malicious code in @dtc-campaign-wizard/campaign-wizard (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99f551e16bdd57ec65154ddd0b1ebe5a701abe98d86f25490fb3c36b19e9fa41 The package @dtc-campaign-wizard/campaign-wizard was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2575 Malicious code in @ascend-ops/web-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57ec262f68b9b9bd081ce675c1eb28e56c6c630c03cf1ecb680e5b56035f0aaa The package @ascend-ops/web-client was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2598 Malicious code in babel-plugin-fbtee (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 82da31ad0bc5f3d25505f208dd3be88eaff3e4054e429cbdc7601dc5e3a3d42d The package babel-plugin-fbtee was found to contain malicious code. Source: ghsa-malware...
Malicious code in trade-in-lib (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 282ed834f41ff1362de41082e4502858b54128699bb58026d73f704aafa71035 The package trade-in-lib was found to contain malicious code. Source: ghsa-malware 927f61fc76a553ba10121fbae7bc4961b0d67d52ab41498d9b0b232a4c2362f7 A...
Malicious code in twilio-video.js (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9e3803147d3c0bc502c876bc9a0c17ab6abb0f35cef279419245d46843a57ee The package twilio-video.js was found to contain malicious code. Source: ghsa-malware cc5348f21258b1a1e011513da698c5544555a2b78063b41540c04c9b0b0bc58...
Malicious code in ih-icon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 29e7f19afb6ffd57012c61c6bef2ce8ad4238f192cac0679e216684a37ec672e The package ih-icon was found to contain malicious code. Source: ghsa-malware c7182707ae8272b3af4376c3dfec66a3b574b8c86217bf3b7c705d94dfb84b63 Any...
MAL-2026-2607 Malicious code in stats-api-js-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a84f9d7eef71d2b99a244ec63f5144ad80a0084e6c20fc903a1bbce208ad9777 The package stats-api-js-client was found to contain malicious code. Source: ghsa-malware...
Malicious code in @b2b-portal/core (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a28e67919e3dfef2a8a434caec109791355b6f43d434d22bd9515f348a692c5e The package @b2b-portal/core was found to contain malicious code. Source: ghsa-malware 7a10dd57d5e27c26f36c8207faa6449838827281be33c9ecc99e025cfdea19...
Malicious code in seaport-core-16 (npm)
Package exfiltrates user info to a remote server via wget in test, preinstall, and preupdate scripts. Very few published versions. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be2cd9e6e61b20566214a0627d5923ec7cbe799e9757d25fd883f46616e5b58b The package...