234871 matches found
EUVD-2026-4510
Malicious code in rank4222wun npm...
MAL-2026-489 Malicious code in rank4222wun (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8943e200fcb8e9490a807104f88b84a3de7f0755cf78db6eabf1622e2116b7bb The package rank4222wun was found to contain malicious code. Source: ghsa-malware b038264ab3a4c0c18b74f04b49afed8d46c5294841a752da7aa3455b32eaa8e1 An...
EUVD-2026-4512
Malicious code in ntwsc npm...
EUVD-2026-4511
Malicious code in ntwsx npm...
EUVD-2026-4513
Malicious code in a5xm npm...
Malicious code in a5xm (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 59318b8cded3eb39d4e5d1cf0e5320f1a6642ee9cf10efada20f75811ca117a2 The package a5xm was found to contain malicious code. Source: ghsa-malware af04e818925f6a7dfdce51341c120a1afe18e57ef12daa899e5246aafd56297f Any...
MAL-2026-487 Malicious code in ntwsc (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 101f5ffdce019ee61ce0775bc9de5dba96de50e5e03e8fd70ac1b30b28cf13e0 The package ntwsc was found to contain malicious code. Source: ghsa-malware ef0dd5d822ddc7c0a00339f31b43d1a99cf79532857cdd157bf1eeb4b2a31ea2 Any...
MAL-2026-486 Malicious code in a5xm (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 59318b8cded3eb39d4e5d1cf0e5320f1a6642ee9cf10efada20f75811ca117a2 The package a5xm was found to contain malicious code. Source: ghsa-malware af04e818925f6a7dfdce51341c120a1afe18e57ef12daa899e5246aafd56297f Any...
Malicious Package
Overview a4wu is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...
EUVD-2026-4514
Malicious code in a4wu npm...
Malicious code in a4wu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65f0ae226eb7aef794335d5c42f8f82348461976fcd5188fdb74129e54e36f5a The package a4wu was found to contain malicious code. Source: ghsa-malware dbda459fa895bbd7a94bd12494e3092b3964f21d8a480826313bdb3f7302904b Any...
Duplicate Advisory: npm cli Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
Duplicate Advisory This advisory has been withdrawn because describes a dependency bump and therefore, per CVE CNA rule 4.1.12, is a duplicate of GHSA-34x7-hfp2-rc4v/CVE-2026-24842. Additionally, per https://github.com/npm/cli/issues/8939issuecomment-3862719883, npm cli should not be listed as an...
GHSA-3966-F6P6-2QR9 Duplicate Advisory: npm cli Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
Duplicate Advisory This advisory has been withdrawn because describes a dependency bump and therefore, per CVE CNA rule 4.1.12, is a duplicate of GHSA-34x7-hfp2-rc4v/CVE-2026-24842. Additionally, per https://github.com/npm/cli/issues/8939issuecomment-3862719883, npm cli should not be listed as an...
CVE-2026-0775 npm cli Incorrect Permission Assignment Local Privilege Escalation Vulnerability
npm cli Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of npm cli. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploi...
Malicious code in kwp-shared-components-production-system (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2b2bf82ab1e7b02c2c3398dc73b6c1635e7f3e8da7f0a3aa11123d5db5a19b56 The package kwp-shared-components-production-system was found to contain malicious code. Source: ghsa-malware...
EUVD-2026-4531
Malicious code in @transaction-list/transaction-list-sm npm...
EUVD-2026-4527
Malicious code in integromat-ui npm...
EUVD-2026-4525
Malicious code in oasis-os-provider-messaging npm...
EUVD-2026-4523
Malicious code in public-site-cms-ui npm...
Malicious code in public-site-cms-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ab3fee105c88cb2417b79efd376d25e9f23afaaef354d5f154635820c702079 The package public-site-cms-ui was found to contain malicious code...