Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
C Embedded Malicious Code	@pkgr/core>0.2.7 <0.2.9	npm	22 Jul 2025
C Embedded Malicious Code	synckit>0.11.8 <0.11.10	npm	22 Jul 2025
C Embedded Malicious Code	eslint-plugin-prettier>4.2.1 <4.2.4	npm	22 Jul 2025
C Embedded Malicious Code	eslint-config-prettier>8.10.0 <8.10.2>9.1.0 <9.1.2>10.1.5 <10.1.8	npm	22 Jul 2025
M Cross-site Scripting (XSS)	@pdfme/common>=5.2.0 <5.4.1	npm	21 Jul 2025
C Malicious Package	evmlogger*	npm	21 Jul 2025
C Malicious Package	vite-lightsparse*	npm	21 Jul 2025
C Malicious Package	websyncer*	npm	21 Jul 2025
C Malicious Package	okta-core-component*	npm	21 Jul 2025
C Malicious Package	config-log*	npm	21 Jul 2025
C Malicious Package	rc-logger*	npm	21 Jul 2025
C Malicious Package	vite-postcss-helper*	npm	21 Jul 2025
C Malicious Package	grayavatar*	npm	21 Jul 2025
C Malicious Package	mooduliop*	npm	21 Jul 2025
H Denial of Service (DoS)	string-math>=0.0.0	npm	21 Jul 2025
M Cross-site Scripting (XSS)	@nuxtjs/mdc<0.17.2	npm	21 Jul 2025
C Command Injection	@sunwood-ai-labs/github-kanban-mcp-server>=0.0.0	npm	20 Jul 2025
L Regular Expression Denial of Service (ReDoS)	@eslint/plugin-kit<0.3.4	npm	20 Jul 2025
C Predictable Value Range from Previous Values	form-data<2.5.4>=3.0.0 <3.0.4>=4.0.0 <4.0.4	npm	20 Jul 2025
C Improper Verification of Cryptographic Signature	tiny-secp256k1<1.1.7	npm	18 Jul 2025
C Insufficiently Protected Credentials	tiny-secp256k1<1.1.7	npm	18 Jul 2025
C Malicious Package	public-tools-and-demos*	npm	18 Jul 2025
C Malicious Package	@jssrv/template*	npm	18 Jul 2025
C Malicious Package	@lensapp/eslint-config*	npm	18 Jul 2025
C Malicious Package	jenkins-for-jira-ui*	npm	18 Jul 2025
C Malicious Package	eth-multisig-v4*	npm	18 Jul 2025
C Malicious Package	eth-validator*	npm	18 Jul 2025
C Malicious Package	glean-mcp-server*	npm	18 Jul 2025
C Malicious Package	dex-sample-app*	npm	18 Jul 2025
C Malicious Package	rtp-rapyd*	npm	18 Jul 2025

APPLICATION

OPERATING SYSTEM