Lucene search
+L

5 matches found

ossf
ossf
added 2025/11/13 3:23 a.m.6 views

Malicious code in fork-eslint-slidev-chakra-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14f8ab67ea8427ea5b62140b04dc5a91e4b2512ef31a7be5a7f29ca3f838dfed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
euvd
euvd
added 2025/11/13 3:23 a.m.3 views

EUVD-2025-178858

Malicious code in fork-webpack-kastra-chai npm...

6.6AI score
Exploits0
ossf
ossf
added 2025/11/12 4:29 a.m.4 views

Malicious code in playwright-achernar-fork-quantum (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92b8f8c34cd0569e980d0406ca537a6f31f0966e068ac568d2797b35fc517fbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
osv
osv
added 2025/09/05 5:10 p.m.3 views

MAL-2025-44287 Malicious code in fork-superflare-multiverse-spectron (npm)

The package fork-superflare-multiverse-spectron was found to contain malicious code...

7AI score
Exploits0
osv
osv
added 2023/03/06 6:30 a.m.16 views

GHSA-5G97-WHC9-8G7J node-static and @nubosoftware/node-static vulnerable to Directory Traversal

node-static and its fork, @nubosoftware/node-static, are vulnerable to Directory Traversal due to improper file path sanitization in the startsWith method in the servePath function...

7.5CVSS7.1AI score0.01445EPSS
Exploits1References6
Rows per page
Query Builder