26517 matches found
nineone152 (>=1.1.9 <=1.1.11) potentially affected by unknown CVE via node-ftp (=0.0.1-security)
node-ftp NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on node-ftp and may be impacted: - nineone152 =1.1.9, =1.1.11 Source cves: unknown CVE Source advisory: OSV:MAL-2025-27624...
cli-form (>=0.0.0 <=0.1.4), cli-qa (>=0.0.0 <=2.3.0) +2 more potentially affected by unknown CVE via on-key-press (=0.0.0)
on-key-press NPM version =0.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on on-key-press and may be impacted: - cli-form =0.0.0, =0.0.0, =0.0.0, =0.0.0, =1.0.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-28228...
deletenewf (=1.0.0), itheima-tool-time (=1.0.0) +1 more potentially affected by unknown CVE via jquey (=0.0.1-security)
jquey NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on jquey and may be impacted: - deletenewf =1.0.0 - itheima-tool-time =1.0.0 - untitledfedorsh =1.2.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-23906...
xiaojs-5tools (>=1.0.5 <=1.0.6) potentially affected by unknown CVE via reatc (=0.0.1-security)
reatc NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on reatc and may be impacted: - xiaojs-5tools =1.0.5, =1.0.6 Source cves: unknown CVE Source advisory: OSV:MAL-2025-31897...
http-run (=0.0.1) potentially affected by unknown CVE via requet (=0.0.1-security)
requet NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on requet and may be impacted: - http-run =0.0.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-32114...
dep_grap_gen (>=1.0.0 <=1.0.2) potentially affected by unknown CVE via shalk (=0.0.1-security)
shalk NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on shalk and may be impacted: - depgrapgen =1.0.0, =1.0.2 Source cves: unknown CVE Source advisory: OSV:MAL-2025-33056...
cli-form (>=0.0.0 <=0.1.4), cli-qa (>=0.0.0 <=2.3.0) +1 more potentially affected by unknown CVE via read-cli-input (=1.0.1)
read-cli-input NPM version =1.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on read-cli-input and may be impacted: - cli-form =0.0.0, =0.0.0, =0.0.0, =1.3.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-31878...
change-object (=0.0.0), cli-qa (=2.0.0) +7 more potentially affected by unknown CVE via filter-stack (=0.0.0)
filter-stack NPM version =0.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on filter-stack and may be impacted: - change-object =0.0.0 - cli-qa =2.0.0 - comma-list =0.0.0 - fd-select =1.0.0 - frp-tick =1.0.0 - innkeeper =1.0.4 - limited-parallel-loop...
helper_project (=1.3.0), twitter-buddy (>=1.0.0 <=1.0.4) potentially affected by unknown CVE via requst (=0.0.1-security)
requst NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on requst and may be impacted: - helperproject =1.3.0 - twitter-buddy =1.0.0, =1.0.4 Source cves: unknown CVE Source advisory: OSV:MAL-2025-32121...
formii (=1.0.0), html-patcher-stream (>=1.0.0 <=1.1.0) +1 more potentially affected by unknown CVE via html-patcher (>=0.0.3 <=0.1.0)
html-patcher NPM version =0.0.3, =1.0.0, =0.1.0, =1.0.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-22751...
tea07-xokohero (=1.0.1) potentially affected by unknown CVE via api-chatfb-test (=0.0.1-security)
api-chatfb-test NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on api-chatfb-test and may be impacted: - tea07-xokohero =1.0.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-14640...
evy-fanyi (>=0.0.1 <=0.0.2), starry_icon_tool (=1.0.0) potentially affected by unknown CVE via langdet (=0.0.1-security)
langdet NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on langdet and may be impacted: - evy-fanyi =0.0.1, =0.0.2 - starryicontool =1.0.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-24945...
@tgticketing/common (>=1.0.2 <=1.0.25), pirvp (=1.0.0) potentially affected by unknown CVE via exrpess (=0.0.1-security)
exrpess NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on exrpess and may be impacted: - @tgticketing/common =1.0.2, =1.0.25 - pirvp =1.0.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-20101...
cassandra-query (>=1.0.1 <=1.0.3), toobatel-bot-lib-js (=1.0.0) potentially affected by unknown CVE via blubird (=0.0.1-security)
blubird NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on blubird and may be impacted: - cassandra-query =1.0.1, =1.0.3 - toobatel-bot-lib-js =1.0.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-15874...
brick-node (>=0.0.0 <=0.0.17) potentially affected by unknown CVE via categorize-files (=0.0.1)
categorize-files NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on categorize-files and may be impacted: - brick-node =0.0.0, =0.0.17 Source cves: unknown CVE Source advisory: OSV:MAL-2025-16663...
@naologic/design (>=1.0.5 <=1.1.4) potentially affected by unknown CVE via iodash (=0.0.1-security)
iodash NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on iodash and may be impacted: - @naologic/design =1.0.5, =1.1.4 Source cves: unknown CVE Source advisory: OSV:MAL-2025-23307...
userbook (>=0.2.0 <=0.2.6) potentially affected by unknown CVE via propertify (=0.0.0)
propertify NPM version =0.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on propertify and may be impacted: - userbook =0.2.0, =0.2.6 Source cves: unknown CVE Source advisory: OSV:MAL-2025-30750...
@artemislunapatron/common (>=1.0.4 <=1.0.14), pwp-core (>=1.0.0 <=1.2.4) +1 more potentially affected by unknown CVE via exprss (=0.0.1-security)
exprss NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on exprss and may be impacted: - @artemislunapatron/common =1.0.4, =1.0.0, =0.0.1, =0.0.2 Source cves: unknown CVE Source advisory: OSV:MAL-2025-20100...
@kash_tt/common (>=1.0.1 <=1.1.236), @topperdev17/common (>=1.0.0 <=2.0.1) +6 more potentially affected by unknown CVE via typecript (=0.0.1-security)
typecript NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on typecript and may be impacted: - @kashtt/common =1.0.1, =1.0.0, =1.0.3, =1.0.53, =0.0.1, =1.0.5, =1.0.14 - tant-intl-new =1.0.14 Source cves: unknown CVE Source...
brick-node (>=0.0.0 <=0.0.3) potentially affected by unknown CVE via brick-browserify-plugin (>=0.0.0 <=0.0.1)
brick-browserify-plugin NPM version =0.0.0, =0.0.0, =0.0.3 Source cves: unknown CVE Source advisory: OSV:MAL-2025-16164...
@wcd/gqio.angular-element-starter-kit (=0.1.0), @wcd/gqio.angular-element-todo (=0.1.0) +1 more potentially affected by unknown CVE via platform-browser (=0.0.1-security)
platform-browser NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on platform-browser and may be impacted: - @wcd/gqio.angular-element-starter-kit =0.1.0 - @wcd/gqio.angular-element-todo =0.1.0 - clinicaamandao =1.0.0 Source cve...
@dudadev/zip-modifier-utils (=1.1.0), @newsssticketing/common (>=1.0.4 <=1.0.16) +4 more potentially affected by unknown CVE via experss (=0.0.1-security)
experss NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on experss and may be impacted: - @dudadev/zip-modifier-utils =1.1.0 - @newsssticketing/common =1.0.4, =2.0.1, =1.0.2, =1.0.6 Source cves: unknown CVE Source advisory:...
@itutoring/itutoring_application_js_api (>=1.3.3 <=1.20.7), html-to-unicode (>=1.0.0 <=1.0.2) +2 more potentially affected by unknown CVE via reacct (=0.0.1-security)
reacct NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on reacct and may be impacted: - @itutoring/itutoringapplicationjsapi =1.3.3, =1.0.0, =1.0.0, =1.0.0, =1.0.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-31760...
ni3ba45_marksheet (=1.0.8), zain-khan-179-simple-calculator (>=1.0.0 <=2.1.0) potentially affected by unknown CVE via cahlk (=0.0.1-security)
cahlk NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on cahlk and may be impacted: - ni3ba45marksheet =1.0.8 - zain-khan-179-simple-calculator =1.0.0, =2.1.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-16430...
swagger-koa88 (>=1.0.2 <=1.0.5-0), windows10-electron-vibrancy (>=1.0.0 <=1.0.1) +1 more potentially affected by unknown CVE via coffe-script (=0.0.1-security)
coffe-script NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on coffe-script and may be impacted: - swagger-koa88 =1.0.2, =1.0.0, =1.0.5, =1.1.3 Source cves: unknown CVE Source advisory: OSV:MAL-2025-17263...
circle (>=0.0.0 <=0.0.9), democirclepackage (=1.0.3) +3 more potentially affected by unknown CVE via post-data (=0.0.0)
post-data NPM version =0.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on post-data and may be impacted: - circle =0.0.0, =0.0.40, =0.0.0, =0.0.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-29531...
brick (=0.0.0), duo-parse (=0.4.0) +4 more potentially affected by unknown CVE via memoize-sync (>=0.0.2 <=2.0.0)
memoize-sync NPM version =0.0.2, =0.0.9, =5.0.0, =3.0.0, =0.0.0, =0.0.2 Source cves: unknown CVE Source advisory: OSV:MAL-2025-26179...
failing-line (=0.0.1), mp3s (=0.0.0) +3 more potentially affected by unknown CVE via findall (=0.0.4)
findall NPM version =0.0.4 is affected by a known vulnerability. The following packages have a transitive dependency on findall and may be impacted: - failing-line =0.0.1 - mp3s =0.0.0 - ourtunes =0.0.0, =0.0.2, =0.0.3, =2.1.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-20572...
on-duty-js (=3.0.0), todo-app-23426 (=1.0.0) potentially affected by unknown CVE via chalkk (=0.0.1-security)
chalkk NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on chalkk and may be impacted: - on-duty-js =3.0.0 - todo-app-23426 =1.0.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-16776...
cli-form (>=0.0.0 <=0.1.4), kik (>=0.0.0 <=1.3.0) potentially affected by unknown CVE via cli-qa (>=0.3.0 <=2.3.0)
cli-qa NPM version =0.3.0, =0.0.0, =0.0.0, =1.3.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-17116...
nice-elements (>=1.1.2 <=1.13.4), olaii-web-common (>=1.0.0 <=1.0.33) potentially affected by unknown CVE via angular-truncate (=0.0.1-security)
angular-truncate NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on angular-truncate and may be impacted: - nice-elements =1.1.2, =1.0.0, =1.0.33 Source cves: unknown CVE Source advisory: OSV:MAL-2025-14532...
@c0b41/prettify-error (=1.0.0), assume (>=0.0.10 <=1.4.0) +22 more potentially affected by unknown CVE via failing-code (>=0.0.2 <=0.1.0)
failing-code NPM version =0.0.2, =0.0.10, =7.1.0, =1.0.0, =0.1.1, =1.0.0, =0.0.1, =0.0.4 - innkeeper =1.0.4 - limited-parallel-loop =0.0.0 and more Source cves: unknown CVE Source advisory: OSV:MAL-2025-20162...
@c0b41/prettify-error (=1.0.0), assume (>=0.0.10 <=1.4.0) +24 more potentially affected by unknown CVE via failing-line (>=0.0.0 <=0.1.0)
failing-line NPM version =0.0.0, =0.0.10, =7.1.0, =0.0.0, =1.0.0, =0.1.1, =0.0.0, =1.0.0, =0.0.1, =0.0.4 and more Source cves: unknown CVE Source advisory: OSV:MAL-2025-20163...
gezi-core (>=0.0.0 <=0.0.2), kik-starter (>=2.1.0 <=2.2.0) potentially affected by unknown CVE via parallelly (>=0.0.1 <=0.1.0)
parallelly NPM version =0.0.1, =0.0.0, =2.1.0, =2.2.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-28866...
gulu-ui (>=0.0.6 <=0.0.7) potentially affected by unknown CVE via dev-test (=0.0.1-security)
dev-test NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on dev-test and may be impacted: - gulu-ui =0.0.6, =0.0.7 Source cves: unknown CVE Source advisory: OSV:MAL-2025-18345...
as-design-v1 (=1.0.0) potentially affected by unknown CVE via preinstall (=0.0.1-security)
preinstall NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on preinstall and may be impacted: - as-design-v1 =1.0.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-29612...
bud (>=0.0.0 <=0.1.2), declarative-js (>=0.0.0 <=0.0.2) +3 more potentially affected by unknown CVE via new-partial (=0.0.1)
new-partial NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on new-partial and may be impacted: - bud =0.0.0, =0.0.0, =0.0.1, =0.0.0, =0.0.4 Source cves: unknown CVE Source advisory: OSV:MAL-2025-27364...
go-api-starter (>=0.0.0 <=1.3.0), redux-starter (>=0.0.0 <=1.1.0) potentially affected by unknown CVE via kik-starter (>=0.0.1 <=2.2.1)
kik-starter NPM version =0.0.1, =0.0.0, =0.0.0, =1.1.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-24454...
com.prototyper.openai-editor-tool (=0.1.3) potentially affected by unknown CVE via com.unity.nuget.newtonsoft-json (=0.0.1-security)
com.unity.nuget.newtonsoft-json NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on com.unity.nuget.newtonsoft-json and may be impacted: - com.prototyper.openai-editor-tool =0.1.3 Source cves: unknown CVE Source advisory:...
cli-form (>=0.0.0 <=0.1.4), kik (>=0.0.0 <=1.3.0) potentially affected by unknown CVE via config-doc (=0.1.0)
config-doc NPM version =0.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on config-doc and may be impacted: - cli-form =0.0.0, =0.0.0, =1.3.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-17474...
bud-live-server (>=0.0.0 <=0.0.5), just-a-browserify-server (>=0.0.0 <=1.0.0) potentially affected by unknown CVE via just-a-server (>=0.0.0 <=0.0.1)
just-a-server NPM version =0.0.0, =0.0.0, =0.0.0, =1.0.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-24109...
after-time (>=0.0.0 <=0.0.1), every-time (=0.0.0) +17 more potentially affected by unknown CVE via english-time (>=0.0.1 <=2.0.0)
english-time NPM version =0.0.1, =0.0.0, =1.5.0, =0.0.4, =0.0.0, =0.0.0, =0.0.1, =0.0.2, =0.0.0, =0.0.6, =0.0.0, =0.0.5 - taky-cache-loop =0.0.1 and more Source cves: unknown CVE Source advisory: OSV:MAL-2025-19656...
containervisibleonclickbymobe (=1.0.0) potentially affected by unknown CVE via webpac (=0.0.1-security)
webpac NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on webpac and may be impacted: - containervisibleonclickbymobe =1.0.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-39019...
domquery (>=1.0.0 <=1.0.1) potentially affected by unknown CVE via bind-key (=0.0.0)
bind-key NPM version =0.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on bind-key and may be impacted: - domquery =1.0.0, =1.0.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-15691...
kik (>=0.0.0 <=1.3.0), kik-starter (=2.2.0) potentially affected by unknown CVE via install-module (>=0.2.0 <=1.1.0)
install-module NPM version =0.2.0, =0.0.0, =1.3.0 - kik-starter =2.2.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-23249...
kik (>=0.2.0 <=1.3.0) potentially affected by unknown CVE via to-class-name (=0.0.0)
to-class-name NPM version =0.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on to-class-name and may be impacted: - kik =0.2.0, =1.3.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-37001...
@pagopa/io-react-native-wallet (>=1.2.2 <=1.5.0), @repay/eslint-config (=0.1.1) +9 more potentially affected by unknown CVE via yarn.lock (=0.0.1-security)
yarn.lock NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on yarn.lock and may be impacted: - @pagopa/io-react-native-wallet =1.2.2, =1.0.0, =2.14.0-beta.8eb3a007.e73b8c3, =4.2.0, =2.7.0, =2.0.29, =1.0.5, =0.1.0, =1.2.0, =1.2.5...
brick (=0.0.0), brick-node (>=0.0.0 <=0.0.17) +18 more potentially affected by unknown CVE via uniques (>=0.0.0 <=0.0.1)
uniques NPM version =0.0.0, =0.0.0, =0.0.0, =0.0.9, =0.0.0, =1.1.0, =2.7.12 and more Source cves: unknown CVE Source advisory: OSV:MAL-2025-37826...
sr-npm (=1.7.308) potentially affected by unknown CVE via wix-secrets-backend (=0.0.1-security)
wix-secrets-backend NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on wix-secrets-backend and may be impacted: - sr-npm =1.7.308 Source cves: unknown CVE Source advisory: OSV:MAL-2025-39369...
attr (>=0.0.0 <=0.0.1), door (>=0.0.5 <=0.0.6) +3 more potentially affected by unknown CVE via new-prop (=2.0.0)
new-prop NPM version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on new-prop and may be impacted: - attr =0.0.0, =0.0.5, =0.0.7, =0.0.0, =0.0.0, =0.0.2 Source cves: unknown CVE Source advisory: OSV:MAL-2025-27365...