Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • C
Malicious Package
Affects ansi-universal-ui | Versions *
No fix available
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects oxnoxon | Versions *
No fix available
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects lvldragdrop | Versions *
No fix available
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects kol7a | Versions *
No fix available
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects h-jsencrypt | Versions *
No fix available
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects eits | Versions *
No fix available
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects chai-as-extended | Versions *
No fix available
npmPublished 28 Jan 2026
  • M
Relative Path TraversalCVE-2026-24909
Affects @vltpkg/tar | Versions <1.0.0-rc.10
Has fix
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects chai-px | Versions *
No fix available
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects chai-async-tests | Versions *
No fix available
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects chai-chains-async | Versions *
No fix available
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects dotenv-embed | Versions *
No fix available
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects chai-sub | Versions *
No fix available
npmPublished 28 Jan 2026
  • H
Cross-site Scripting (XSS)
Affects @saltcorn/server | Versions >=1.1.1 <1.4.2>=1.5.0-beta.0 <1.5.0-beta.19
Has fix
npmPublished 28 Jan 2026
  • H
Cross-site Scripting (XSS)
Affects @saltcorn/admin-models | Versions >=1.1.1 <1.4.2>=1.5.0-beta.0 <1.5.0-beta.19
Has fix
npmPublished 28 Jan 2026
  • H
Cross-site Scripting (XSS)
Affects @saltcorn/data | Versions >=1.1.1 <1.4.2>=1.5.0-beta.0 <1.5.0-beta.19
Has fix
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects @pukpuk1/somsodamsd | Versions *
No fix available
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects skndkjasndkjan | Versions *
No fix available
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects vuejavascript | Versions *
No fix available
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects somsodamsd | Versions *
No fix available
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects somesomesome | Versions *
No fix available
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects somesomesomesome | Versions *
No fix available
npmPublished 28 Jan 2026
  • M
Missing AuthorizationCVE-2026-24134
Affects studiocms | Versions <0.2.0
Has fix
npmPublished 28 Jan 2026
  • M
Use of Less Trusted SourceCVE-2026-24910
Affects bun | Versions <1.3.5
Has fix
npmPublished 28 Jan 2026
  • M
Use of Cache Containing Sensitive InformationCVE-2026-24472
Affects hono | Versions <4.11.7
Has fix
npmPublished 28 Jan 2026
  • C
Improper Control of Dynamically-Managed Code ResourcesCVE-2026-23830
Affects @nyariv/sandboxjs | Versions <0.8.26
Has fix
npmPublished 28 Jan 2026
  • M
Incorrect AuthorizationCVE-2026-24473
Affects hono | Versions <4.11.7
Has fix
npmPublished 28 Jan 2026
  • M
Cross-site Scripting (XSS)CVE-2026-24771
Affects hono | Versions <4.11.7
Has fix
npmPublished 28 Jan 2026
  • M
Incorrect Regular ExpressionCVE-2026-24398
Affects hono | Versions <4.11.7
Has fix
npmPublished 28 Jan 2026
  • C
Malicious Package
Affects translation-note | Versions *
No fix available
npmPublished 28 Jan 2026