Vulnerability Database
Blog
FAQ
Docs
arrow_forward
search
light_mode
dark_mode
Vulnerabilities
search
All ecosystems
740174
AlmaLinux
5166
Alpaquita
11308
Alpine
4310
Android
2912
Azure Linux
12016
BellSoft Hardened Containers
521
Bitnami
8215
Chainguard
7257
CleanStart
1524
CRAN
14
crates.io
2500
Debian
58884
Echo
4126
GHC
3
GIT
90939
GitHub Actions
54
Go
7909
Hackage
32
Hex
164
Julia
979
Linux
25246
Mageia
6003
Maven
6624
MinimOS
77055
npm
221169
NuGet
1758
opam
18
openEuler
7055
openSUSE
13292
OSS-Fuzz
3957
Packagist
6593
Pub
11
PyPI
20688
Red Hat
20892
Rocky Linux
3524
Root
17061
RubyGems
2007
SUSE
21012
SwiftURL
58
TuxCare
5803
Ubuntu
56720
VSCode
20
Wolfi
4775
ID
Packages
Summary
Published
arrow_upward
Attributes
MAL-2026-6699
npm/ecto-corsair-flag-7kq3mz
Malicious code in ecto-corsair-flag-7kq3mz (npm)
3 hours ago
No fix available
MAL-2026-6700
npm/module-index-cache
Malicious code in module-index-cache (npm)
3 hours ago
No fix available
MAL-2026-6701
npm/ripshakti
Malicious code in ripshakti (npm)
3 hours ago
No fix available
MAL-2026-6697
npm/@sudoughnym/enviro-demo
Malicious code in @sudoughnym/enviro-demo (npm)
3 hours ago
No fix available
MAL-2026-6696
npm/@businessapp-microsites/apis
Malicious code in @businessapp-microsites/apis (npm)
3 hours ago
No fix available
MAL-2026-6698
npm/cursed-modules
Malicious code in cursed-modules (npm)
3 hours ago
No fix available
GHSA-qcm7-3vpr-hj5h
npm/@adonisjs/bodyparser
@adonisjs/bodyparser has an incomplete fix for CVE-2026-25754
5 hours ago
Fix available
Severity - 8.6 (High)
GHSA-g4w6-vmgf-xqvx
npm/@cedar-policy/authorization-for-expressjs
@cedar-policy/authorization-for-expressjs has an authorization bypass via query string manipulation
5 hours ago
Fix available
Severity - 8.8 (High)
MAL-2026-6687
npm/procwire
Malicious code in procwire (npm)
7 hours ago
No fix available
MAL-2026-6680
npm/brock-loader
Malicious code in brock-loader (npm)
8 hours ago
No fix available
MAL-2026-6681
npm/brock-react-alerts
Malicious code in brock-react-alerts (npm)
8 hours ago
No fix available
MAL-2026-6685
npm/quoting
Malicious code in quoting (npm)
8 hours ago
No fix available
MAL-2026-6679
npm/agent-starter-pack
Malicious code in agent-starter-pack (npm)
8 hours ago
No fix available
MAL-2026-6682
npm/confluent-kafka-javascript
Malicious code in confluent-kafka-javascript (npm)
8 hours ago
No fix available
MAL-2026-6683
npm/nbmolviz-js
Malicious code in nbmolviz-js (npm)
8 hours ago
No fix available
MAL-2026-6684
npm/postcss-property-rollup
Malicious code in postcss-property-rollup (npm)
8 hours ago
No fix available
Load more...
npm - OSV