Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • C
Malicious Package
Affects helium-module | Versions *
No fix available
npmPublished 13 Jan 2026
  • C
Malicious Package
Affects francium-web-visitors | Versions *
No fix available
npmPublished 13 Jan 2026
  • C
Malicious Package
Affects francium-ui | Versions *
No fix available
npmPublished 13 Jan 2026
  • C
Malicious Package
Affects francium-utils | Versions *
No fix available
npmPublished 13 Jan 2026
  • C
Malicious Package
Affects chai-as-enhanced | Versions *
No fix available
npmPublished 13 Jan 2026
  • C
Malicious Package
Affects extended-path | Versions *
No fix available
npmPublished 13 Jan 2026
  • C
Malicious Package
Affects paytmsiddlewaree | Versions *
No fix available
npmPublished 13 Jan 2026
  • C
Arbitrary Command Injection
Affects super-shell-mcp | Versions <2.0.15
Has fix
npmPublished 12 Jan 2026
  • M
Server-side Request Forgery (SSRF)
Affects ghost | Versions >=5.38.0 <5.130.6>=6.0.0-alpha.1 <6.11.0
Has fix
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects @workleap-ai/shared | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects @t4i-cms-components/contact-card | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects gradle-plugin | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects yargs-js | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects tailwindcss-animate-tool | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects @gwp-gtmt-components/event-listener | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects rxjs-js | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects @maxcointech/simple-string-utils | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects lyonscg | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects react-hook-form-js | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects inquirer-js | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects jz-test-npm | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects jsdom-js | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects framer-motion-js | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects llamaindex-js | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects cors-base | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects express-sessions-id | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects @workleap-widgets/client | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects xml2js-js | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects firestore-types | Versions *
No fix available
npmPublished 12 Jan 2026
  • C
Malicious Package
Affects huggingface-js | Versions *
No fix available
npmPublished 12 Jan 2026