Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
M Insufficiently Protected Credentials	kibana<8.1.0>=8.14.0 <8.18.8>=8.19.0 <8.19.5>=9.0.0 <9.0.8>=9.1.0 <9.1.5	npm	27 Oct 2025
C Malicious Package	paysafe-client-proxy*	npm	27 Oct 2025
C Malicious Package	jquery-ui-source*	npm	27 Oct 2025
C Malicious Package	ember-simplepractice*	npm	27 Oct 2025
C Malicious Package	@chatgptclaude_club/claude-code*	npm	27 Oct 2025
M Cross-site Scripting (XSS)	kibana>=7.0.0 <8.18.8>=8.19.0 <8.19.5>=9.0.0 <9.0.8>=9.1.0 <9.15	npm	27 Oct 2025
C Malicious Package	bad-santa-claude*	npm	27 Oct 2025
C Malicious Package	vite-plugin-parsify*	npm	27 Oct 2025
C Malicious Package	badgekit-api-client*	npm	27 Oct 2025
C Malicious Package	eslint-comments*	npm	27 Oct 2025
C Malicious Package	m0chan-does-notexist*	npm	27 Oct 2025
C Malicious Package	dataflow-unified*	npm	27 Oct 2025
C Malicious Package	orderbook-backend*	npm	27 Oct 2025
C Malicious Package	orderbook-sdk*	npm	27 Oct 2025
C Malicious Package	add-module-exports*	npm	27 Oct 2025
C Malicious Package	ark-experience*	npm	27 Oct 2025
C Malicious Package	vue-sfc-require-hook*	npm	27 Oct 2025
C Malicious Package	cooler-loans-api-generate*	npm	27 Oct 2025
C Malicious Package	unused-imports*	npm	27 Oct 2025
C Malicious Package	op-cli-installer*	npm	27 Oct 2025
C Malicious Package	tailwind-chart*	npm	27 Oct 2025
C Malicious Package	cooler-loans-api-get*	npm	27 Oct 2025
C Malicious Package	tailwind-config-view*	npm	27 Oct 2025
C Malicious Package	ajna-rewards-snapshot*	npm	27 Oct 2025
C Malicious Package	graphclient*	npm	27 Oct 2025
C Malicious Package	tailwind-utils-plus*	npm	27 Oct 2025
C Malicious Package	web-vitals-helpers*	npm	27 Oct 2025
C Malicious Package	polyfill-corejs3*	npm	27 Oct 2025
C Access Control Bypass	@kottster/server>=3.2.0 <3.3.2	npm	24 Oct 2025
C Access Control Bypass	@kottster/cli>=3.2.0 <3.3.2	npm	24 Oct 2025

APPLICATION

OPERATING SYSTEM