34 matches found
EUVD-2025-121696
Malicious code in sqlite-iota-passport-frontend npm...
MAL-2025-41250 Malicious code in @navify-platform/i18n (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 306d60012db44c48b4e577372019b8171e2eb15c6cfb80a9c1e5eb7df32149de The OpenSSF Package Analysis project identified '@navify-platform/i18n' @ 1.2.0 npm as malicious. It is considered malicious because: - The...
MAL-2025-37503 Malicious code in udzura (npm)
The package udzura was found to contain malicious code...
MAL-2025-39479 Malicious code in wpapptest (npm)
The package wpapptest was found to contain malicious code...
MAL-2025-40657 Malicious code in yuizhou (npm)
The package yuizhou was found to contain malicious code...
MAL-2025-38520 Malicious code in vizthis (npm)
The package vizthis was found to contain malicious code...
MAL-2025-8084 Malicious code in @juigorg/corrupti-corrupti-minima (npm)
The package @juigorg/corrupti-corrupti-minima was found to contain malicious code...
MAL-2025-38367 Malicious code in vidwall (npm)
The package vidwall was found to contain malicious code...
MAL-2025-9098 Malicious code in @market-explorer/market-explorer (npm)
The package @market-explorer/market-explorer was found to contain malicious code...
MAL-2025-39802 Malicious code in xigua-date-qygr (npm)
The package xigua-date-qygr was found to contain malicious code...
MAL-2025-39782 Malicious code in xiaomei (npm)
The package xiaomei was found to contain malicious code...
MAL-2025-38775 Malicious code in wardah (npm)
The package wardah was found to contain malicious code...
MAL-2025-38732 Malicious code in waaass (npm)
The package waaass was found to contain malicious code...
MAL-2025-37011 Malicious code in togglepin (npm)
The package togglepin was found to contain malicious code...
MAL-2025-39988 Malicious code in xrcctrl (npm)
The package xrcctrl was found to contain malicious code...
CVE-2024-21524
All versions of the package node-stringbuilder are vulnerable to Out-of-bounds Read due to incorrect memory length calculation, by calling ToBuffer, ToString, or CharAt on a StringBuilder object with a non-empty string value input. It's possible to return previously allocated memory, for example,...
CVE-2022-21698 affecting package node-problem-detector for versions less than 0.8.10-19
CVE-2022-21698 affecting package node-problem-detector for versions less than 0.8.10-19. A patched version of the package is available...
Security fix for the ALT Linux 10 package node version 16.18.1-alt1
16.18.1-alt1 built March 18, 2023 Andrey Cherepanov in task 310327 Nov. 23, 2022 Vitaly Lipatov - new version 16.18.1 with rpmrb script - CVE-2022-43548: DNS rebinding in --inspect via invalid octal IP address Medium...
CVE-2022-24375
The package node-opcua before 2.74.0 are vulnerable to Denial of Service DoS when bypassing the limitations for excessive memory consumption by sending multiple CloseSession requests with the deleteSubscription parameter equal to False...
CVE-2022-24375
The package node-opcua before 2.74.0 are vulnerable to Denial of Service DoS when bypassing the limitations for excessive memory consumption by sending multiple CloseSession requests with the deleteSubscription parameter equal to False...