Malicious code in celeste-testcafe-postgres-unuk (npm)

The package celeste-testcafe-postgres-unuk was found to contain malicious code...

MAL-2025-23184 Malicious code in indus-postgres-avior-node-config (npm)

The package indus-postgres-avior-node-config was found to contain malicious code...

Malicious code in postgres-rocket-install-postcss (npm)

The package postgres-rocket-install-postcss was found to contain malicious code...

MAL-2025-14970 Malicious code in astro-postgres-init-oauth (npm)

The package astro-postgres-init-oauth was found to contain malicious code...

MAL-2025-16706 Malicious code in celeste-testcafe-postgres-unuk (npm)

The package celeste-testcafe-postgres-unuk was found to contain malicious code...

MAL-2025-29548 Malicious code in postgres-child-process-package-arcturus (npm)

The package postgres-child-process-package-arcturus was found to contain malicious code...

Malicious code in astro-postgres-init-oauth (npm)

The package astro-postgres-init-oauth was found to contain malicious code...

Malicious code in mantle-async-nebula-postgres (npm)

The package mantle-async-nebula-postgres was found to contain malicious code...

Malicious code in avior-halley-postgres-lynx (npm)

The package avior-halley-postgres-lynx was found to contain malicious code...

Malicious code in paleoecology-comet-postgres-blazar (npm)

The package paleoecology-comet-postgres-blazar was found to contain malicious code...

MAL-2025-29547 Malicious code in postgres-astroinformatics-janus-mocha (npm)

The package postgres-astroinformatics-janus-mocha was found to contain malicious code...

MAL-2025-29549 Malicious code in postgres-rocket-install-postcss (npm)

The package postgres-rocket-install-postcss was found to contain malicious code...

MAL-2025-25206 Malicious code in levels-postgres-io-grus (npm)

The package levels-postgres-io-grus was found to contain malicious code...

Malicious code in levels-postgres-io-grus (npm)

The package levels-postgres-io-grus was found to contain malicious code...

Malicious code in mocha-helios-postgres-registry (npm)

The package mocha-helios-postgres-registry was found to contain malicious code...

MAL-2025-28673 Malicious code in paleoecology-comet-postgres-blazar (npm)

The package paleoecology-comet-postgres-blazar was found to contain malicious code...

MAL-2025-15205 Malicious code in avior-halley-postgres-lynx (npm)

The package avior-halley-postgres-lynx was found to contain malicious code...

MAL-2025-26576 Malicious code in mocha-helios-postgres-registry (npm)

The package mocha-helios-postgres-registry was found to contain malicious code...

CRLF Injection

Overview Affected versions of this package are vulnerable to CRLF Injection in the restore process via psql meta-commands inside a purpose-crafted object name. An attacker can execute arbitrary code by injecting meta commands into the file, which can be executed by an unknowing user during the...

CVE-2025-8715 PostgreSQL pg_dump newline in object name executes arbitrary code in psql client and in restore target server

Improper neutralization of newlines in pgdump in PostgreSQL allows a user of the origin server to inject arbitrary code for restore-time execution as the client operating system account running psql to restore the dump, via psql meta-commands inside a purpose-crafted object name. The same attacks...