MAL-2026-556 Malicious code in digital-music-dynmsg-ribbon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 539cc4d9f61bd9add970da883b5bd746b0b08614fbf948e143e6a35c606e593f The package digital-music-dynmsg-ribbon was found to contain malicious code. Source: ghsa-malware...

Malicious code in transform-regenerator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f27369af46b5944368333c959121eb4c1203bb7451f05eab71a7e8d030300331 The package transform-regenerator was found to contain malicious code. Source: ghsa-malware...

CVE-2025-69559

code-projects Computer Book Store 1.0 is vulnerable to File Upload in adminadd.php...

CVE-2025-69559

code-projects Computer Book Store 1.0 is vulnerable to File Upload in adminadd.php...

CVE-2025-69559

code-projects Computer Book Store 1.0 is vulnerable to File Upload in adminadd.php...

MAL-2026-536 Malicious code in morgan.js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34775085e6638773de4ccac41092ae9954c9889f2c2a7bcd7cb7909375b53c4c The package morgan.js was found to contain malicious code. Source: ghsa-malware 6d6ee3da39907b410bc3a7d0baf6736a9c9c2f1c770a6e749c5ad2119c848d9f Any...

Malicious code in grepleaks (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fbb12eb31b13d48c3bceaf932a48991331324e560fdf0dba37561862844fa2e8 The package grepleaks was found to contain malicious code. Source: ghsa-malware 3017ce71ea8163be051e049bafc4e07b09bcc4cf3b05675c0e5c300c105705ce Any...

MAL-2026-533 Malicious code in hiagentxhjrceme (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 817c81554dd53439cd7598a86165d6d0668444ead8912fb3cc0d4e0a96d35a93 The package hiagentxhjrceme was found to contain malicious code. Source: ghsa-malware 294835f0eba279be35d5f1d7cf834eba2af68a7f16e0b5730d79debc1245d83...

MAL-2026-525 Malicious code in sandbox-hooks (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de188418d12a5397810d78eeeb5b8e939a4fc430f8c2aa3113e7fa3a5360e2c8 The package sandbox-hooks was found to contain malicious code. Source: ghsa-malware 7d12de65eeb03f7f648a293f5f7217cce1215878610d2bf4f973cd510733eedb...

MAL-2026-524 Malicious code in mapkit-example-vue (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a99b2a1b5d1181c18ff26056481018d107fc6fc38df563e0d7fba6aa44b7cd51 The package mapkit-example-vue was found to contain malicious code. Source: ghsa-malware...

PT-2026-4965

code-projects Computer Book Store 1.0 is vulnerable to File Upload in admin add.php...

CVE-2025-69559

code-projects Computer Book Store 1.0 is vulnerable to File Upload in adminadd.php...

Code-Projects Computer Book Store Security Vulnerabilities

Code-Projects Computer Book Store is an open-source computer bookstore developed by Code-Projects. Version 1.0 of Code-Projects Computer Book Store contains a security vulnerability, which stems from a file upload vulnerability in the adminadd.php file...

CVE-2025-69559

code-projects Computer Book Store 1.0 is vulnerable to File Upload in adminadd.php...

EUVD-2025-206389

code-projects Computer Book Store 1.0 is vulnerable to File Upload in adminadd.php...

CVE-2025-69559

The CVE-2025-69559 entry concerns code-projects Computer Book Store 1.0, with a File Upload vulnerability in admin_add.php. Multiple connected sources corroborate this issue, including Red Hat, NVD, CVE List, and others. The available data identify the affected software/component as the admin_add...

CVE-2025-69559

code-projects Computer Book Store 1.0 is vulnerable to File Upload in adminadd.php...

CERTFR-2026-ACT-004

creationtimestamp| type| source ---|---|--- 2026-01-26 14:47:11+00:00| seen| https://bsky.app/profile/cert-fr.bsky.social/post/3mddiej3zy226 2026-01-26 14:47:12+00:00| seen| https://social.numerique.gouv.fr/users/certfr/statuses/115961943162528773 2026-01-26 16:02:17+00:00| seen|...

Malicious code in ostk-otel-autoconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b222e0d41ae144cf784f7fd2c40bd0c9bcb213c76581f4f9285f6f5d3baf36a The package ostk-otel-autoconfig was found to contain malicious code. Source: ghsa-malware...

CVE-2025-10024

Authorization Bypass Through User-Controlled Key vulnerability in EXERT Computer Technologies Software Ltd. Co. Education Management System allows Parameter Injection.This issue affects Education Management System: through 23.09.2025...