234870 matches found
Malicious code in cowsay-deluxe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23689b5603efd5f0d639b4d6767c885941794f801324da60cbbe76afa159c139 The package cowsay-deluxe was found to contain malicious code...
Malicious code in solhint-plugin-hyperlane (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc1aa9de63bf20821ba2b8081862d56bf4238d4d5138cdfae10fa1d260ee9b57 The package solhint-plugin-hyperlane was found to contain malicious code. Source: ghsa-malware...
Malicious code in idv-script (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1bde07a7c30476e3cb1a1025e47aed005d4c7dd1795c0643ac2095a64e88b54 The package idv-script was found to contain malicious code. Source: ghsa-malware ee9e8b3868a2f4ff7829c20134e3617ac9a2d68093b156c31685710169c3f430 Any...
Malicious code in finnairshop (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79d4d53f987d9f13e00e895d04155d3d28ea228eacb34a2f273667e520c5525f The package finnairshop was found to contain malicious code...
Malicious code in cowsay-caps (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17661a2b5a74d9c2f32dceee01043881ce230427c3121c4bdd6f43987e49765e The package cowsay-caps was found to contain malicious code...
Malicious code in @casaverso/frontend-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48584fd15701448c3394285943de2520455a7b1fc07cead90b74d535437feda4 The package @casaverso/frontend-core was found to contain malicious code. Source: ghsa-malware...
MAL-2026-633 Malicious code in cowsay-fancy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0f9486b25540d8b6cc57f25e49747500f20e247fa207953354e74d2cc62fbfd The package cowsay-fancy was found to contain malicious code...
MAL-2026-637 Malicious code in launchdarkly-cpp-networking (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6c4fb76fdf3a3ab10ddc884a1fcc11f57ef3b0e44df500c5f2881f40cec0b20 The package launchdarkly-cpp-networking was found to contain malicious code. Source: ghsa-malware...
MAL-2026-638 Malicious code in solhint-plugin-hyperlane (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc1aa9de63bf20821ba2b8081862d56bf4238d4d5138cdfae10fa1d260ee9b57 The package solhint-plugin-hyperlane was found to contain malicious code. Source: ghsa-malware...
MAL-2026-632 Malicious code in cowsay-deluxe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23689b5603efd5f0d639b4d6767c885941794f801324da60cbbe76afa159c139 The package cowsay-deluxe was found to contain malicious code...
MAL-2026-631 Malicious code in cowsay-caps (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17661a2b5a74d9c2f32dceee01043881ce230427c3121c4bdd6f43987e49765e The package cowsay-caps was found to contain malicious code...
Malicious code in roots-cms-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9670a58bdf8573b9c7d94a74cf58593a55692bfcf33d931693680389b981f89c The package roots-cms-client was found to contain malicious code. Source: ghsa-malware 88007d193d64ac8d7a2a970903353601b1f620a48f22c3cd3c7a838da0cce4...
MAL-2026-616 Malicious code in c11dff444 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d47b3f981fe050f2eab507069b880d1c47c4107c28eba0d1a16010400a249ad The package c11dff444 was found to contain malicious code. Source: ghsa-malware 437d8651f7d884d1905e0d01e2accffb3fcce5408fc4a6b0ef2ca6c37f0bade4 Any...
Malicious code in sharedclasses (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d92097d15ef8e4712a31a9d8abdaecd9e1afa7d718078fda3457ed45ef6a1c6 The package sharedclasses was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-612 Malicious code in sharedclasses (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d92097d15ef8e4712a31a9d8abdaecd9e1afa7d718078fda3457ed45ef6a1c6 The package sharedclasses was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-611 Malicious code in mbo-letters-cl (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d367723532d1a3f90f88a1d23230230dafb47b5f26a68af29aafda36084f5417 The package mbo-letters-cl was found to contain malicious code. Source: ossf-package-analysis...
@activepieces/piece-amazon-s3 (>=0.5.4 <=0.5.8), @activepieces/piece-amazon-ses (>=0.0.1 <=0.1.3) +988 more potentially affected by CVE-2026-25128 via fast-xml-parser (>=5.0.9 <=5.3.3)
fast-xml-parser NPM version =5.0.9, =0.5.4, =0.0.1, =13.1.4, =1.0.0, =1.9.12, =1.0.3, =1.1.31, =1.0.0, =1.7.16, =2.33.6, =1.4.37, =1.6.11, =1.7.1 and more Source cves: CVE-2026-25128 Source advisory: SNYK:JS-FASTXMLPARSER-15155603...
Malicious code in banquet-runtime-modules (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 236dee5bac395a6446685322fb3dadb454e4b7f7d43a132111a8392721fed206 The package banquet-runtime-modules was found to contain malicious code. Source: ghsa-malware...
CVE-2026-25047
deepHas provides a test for the existence of a nested object key and optionally returns that key. A prototype pollution vulnerability exists in version 1.0.7 of the deephas npm package that allows an attacker to modify global object behavior. This issue was fixed in version 1.0.8...
CVE-2026-25047
CVE-2026-25047 affects the deephas npm package, specifically version 1.0.7, which contains a prototype pollution vulnerability in its handling of nested object keys. The issue allows an attacker to modify global object behavior (e.g., via constructor.prototype.polluted or proto .polluted) and can...