EUVD-2018-0452

Malware in sbrugna...

EUVD-2021-0600

Malware in sbrugna...

MAL-2025-21458 Malicious code in git-ps (npm)

The package git-ps was found to contain malicious code...

Malicious code in marked-ps (npm)

This package deploys Windows gh0strat malware via VBScript. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c33f4820622bde56fc1bf9394cd1a6d5af92c7099d9fc2ed247a512cfc480372 Any computer that has this package installed or running should be considered fully compromise...

Joyent Node.js ps package command injection vulnerability

Joyent Node.js is the United States Joyent company's set of web applications built on Google V8 JavaScript engine on top of the platform. ps package is one of the modules used to view the running state of the process . A command injection vulnerability exists in Joyent Node.js ps package versions...

CVE-2018-16460

Summary: CVE-2018-16460 describes a command injection in the Node.js ps package when using versions before 1.0.0. The vulnerability arises because an attacker can control the PID, allowing arbitrary commands to be executed on the affected system. Affected software: ps package (Node.js ecosystem),...

CVE-2018-16460

A command Injection in ps package versions 1.0.0 for Node.js allowed arbitrary commands to be executed when attacker controls the PID...

CVE-2018-16460

A command Injection in ps package versions 1.0.0 for Node.js allowed arbitrary commands to be executed when attacker controls the PID...

CVE-2018-16460

A command Injection in ps package versions 1.0.0 for Node.js allowed arbitrary commands to be executed when attacker controls the PID...

Node.js third-party modules: Command Injection is ps Package

I would like to report a command injection in ps package. It allows attacker to inject arbitrary OS commands instead of PID numbers. Module module name: ps version: 0.0.2 npm page: https://www.npmjs.com/package/ps Module Description A Node.js module for looking up running processes. Module Stats ...