Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
MAL-2026-6699
  • npm/ecto-corsair-flag-7kq3mz
Malicious code in ecto-corsair-flag-7kq3mz (npm) 3 hours ago
  • No fix available
MAL-2026-6700
  • npm/module-index-cache
Malicious code in module-index-cache (npm) 3 hours ago
  • No fix available
MAL-2026-6701
  • npm/ripshakti
Malicious code in ripshakti (npm) 3 hours ago
  • No fix available
MAL-2026-6697
  • npm/@sudoughnym/enviro-demo
Malicious code in @sudoughnym/enviro-demo (npm) 3 hours ago
  • No fix available
MAL-2026-6696
  • npm/@businessapp-microsites/apis
Malicious code in @businessapp-microsites/apis (npm) 3 hours ago
  • No fix available
MAL-2026-6698
  • npm/cursed-modules
Malicious code in cursed-modules (npm) 3 hours ago
  • No fix available
GHSA-qcm7-3vpr-hj5h
  • npm/@adonisjs/bodyparser
@adonisjs/bodyparser has an incomplete fix for CVE-2026-25754 5 hours ago
  • Fix available
  • Severity - 8.6 (High)
GHSA-g4w6-vmgf-xqvx
  • npm/@cedar-policy/authorization-for-expressjs
@cedar-policy/authorization-for-expressjs has an authorization bypass via query string manipulation 5 hours ago
  • Fix available
  • Severity - 8.8 (High)
MAL-2026-6687
  • npm/procwire
Malicious code in procwire (npm) 7 hours ago
  • No fix available
MAL-2026-6680
  • npm/brock-loader
Malicious code in brock-loader (npm) 8 hours ago
  • No fix available
MAL-2026-6681
  • npm/brock-react-alerts
Malicious code in brock-react-alerts (npm) 8 hours ago
  • No fix available
MAL-2026-6685
  • npm/quoting
Malicious code in quoting (npm) 8 hours ago
  • No fix available
MAL-2026-6679
  • npm/agent-starter-pack
Malicious code in agent-starter-pack (npm) 8 hours ago
  • No fix available
MAL-2026-6682
  • npm/confluent-kafka-javascript
Malicious code in confluent-kafka-javascript (npm) 8 hours ago
  • No fix available
MAL-2026-6683
  • npm/nbmolviz-js
Malicious code in nbmolviz-js (npm) 8 hours ago
  • No fix available
MAL-2026-6684
  • npm/postcss-property-rollup
Malicious code in postcss-property-rollup (npm) 8 hours ago
  • No fix available