16 matches found
EUVD-2026-1136
Malicious code in oj-sp-common-util npm...
Malicious Package
Overview oj-sp-common-util is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2026-63 Malicious code in oj-sp-common-util (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b8c112d75458c1c8c9af95739b5a983b3617fbb578a147933a3d4cab77360dc4 The package oj-sp-common-util was found to contain malicious code. Source: ghsa-malware...
Malicious code in oj-sp-common-util (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b8c112d75458c1c8c9af95739b5a983b3617fbb578a147933a3d4cab77360dc4 The package oj-sp-common-util was found to contain malicious code. Source: ghsa-malware...
Malicious code in oj-sp-common (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4192506d43fafb67a79ea826406a174aa2d05bfc74c3df203366e1ec7cdce0af The package oj-sp-common was found to contain malicious code. Source: ghsa-malware 0321cb6ed931a42d70b5f2e4cf235b07bd7ce205d6781729c28cfe5475a1ad9b A...
Malicious Package
Overview oj-sp-common is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
EUVD-2026-1140
Malicious code in oj-sp-common npm...
MAL-2026-61 Malicious code in oj-sp-common (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4192506d43fafb67a79ea826406a174aa2d05bfc74c3df203366e1ec7cdce0af The package oj-sp-common was found to contain malicious code. Source: ghsa-malware 0321cb6ed931a42d70b5f2e4cf235b07bd7ce205d6781729c28cfe5475a1ad9b A...
EUVD-2026-1139
Malicious code in oj-sp-common-strings npm...
Malicious code in oj-sp-common-strings (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f5466d410ace77d36cbf4ad77f4ff2bec3030d7b19266a78de448ef1517b2679 The package oj-sp-common-strings was found to contain malicious code. Source: ghsa-malware...
CVE-2024-38990
Tada5hi sp-common v0.5.4 was discovered to contain a prototype pollution via the function mergeDeep. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...
CVE-2024-38990
Tada5hi sp-common v0.5.4 was discovered to contain a prototype pollution via the function mergeDeep. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...
sp-common Security Vulnerabilities
sp-common is a library by Peter Personal Developer. A security vulnerability exists in sp-common version v0.5.4, which originates from the inclusion of prototype contamination via the function mergeDeep, allowing an attacker to execute arbitrary code or cause a denial of service DoS by injecting...
CVE-2024-38990
CVE-2024-38990 affects Tada5hi sp-common v0.5.4. The issue is a prototype pollution in the mergeDeep function that allows an attacker to inject arbitrary properties, potentially leading to arbitrary code execution or a DoS. CVSS v3.1 base score 6.3 (Network attack, low privileges, no user interac...
CVE-2024-38990
Tada5hi sp-common v0.5.4 was discovered to contain a prototype pollution via the function mergeDeep. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties...
PT-2024-28306 · Tada5Hi · Sp-Common
Name of the Vulnerable Software and Affected Versions: Tada5hi sp-common version 0.5.4 Description: The issue allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties through a prototype pollution vulnerability in the mergeDeep function...