Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
C Malicious Package	vitejs-plugin-refresh*	npm	15 Jul 2025
C Malicious Package	@yinc/ui*	npm	15 Jul 2025
C Malicious Package	corplogger*	npm	15 Jul 2025
C Malicious Package	@sfdc-ogs/v1-stable*	npm	15 Jul 2025
C Malicious Package	vsts-iiswebapp*	npm	15 Jul 2025
C Malicious Package	@rev-security/identity-rev*	npm	15 Jul 2025
C Malicious Package	securityresearchpocaplmalpkg*	npm	15 Jul 2025
C Malicious Package	pp-react-utils*	npm	15 Jul 2025
C Malicious Package	agoda.cronos.gql*	npm	15 Jul 2025
C Malicious Package	agoda.cronos.activities.client-side*	npm	15 Jul 2025
C Malicious Package	@cewe-designsystem/component_modal*	npm	15 Jul 2025
C Malicious Package	open-source-catalog*	npm	15 Jul 2025
C Malicious Package	@gmgn/app-icons*	npm	15 Jul 2025
C Malicious Package	symphony-cryptolib*	npm	15 Jul 2025
C Malicious Package	groq-link*	npm	15 Jul 2025
C Malicious Package	@platform-clientextensions/rum-web*	npm	15 Jul 2025
C Malicious Package	ultraconvert*	npm	15 Jul 2025
C Malicious Package	@cbre-internal/mapping-component*	npm	15 Jul 2025
C Malicious Package	ltiditest*	npm	15 Jul 2025
C Malicious Package	ltiditest2*	npm	15 Jul 2025
C Malicious Package	@subsplash/auth*	npm	15 Jul 2025
C Malicious Package	@didi-pebble/pblint*	npm	15 Jul 2025
C Malicious Package	@stride-mfe/wmc*	npm	15 Jul 2025
M Insertion of Sensitive Information into Log File	@directus/api>=27.0.0 <28.0.0	npm	15 Jul 2025
H Directory Traversal	@modelcontextprotocol/server-filesystem<2025.7.1	npm	14 Jul 2025
H Symlink Attack	@modelcontextprotocol/server-filesystem<2025.7.1	npm	14 Jul 2025
C Arbitrary Command Injection	node-code-sandbox-mcp<1.3.0	npm	14 Jul 2025
C Command Injection	mcp-remote>=0.0.5 <0.1.16	npm	14 Jul 2025
M Information Exposure	docusaurus-plugin-content-gists<4.0.0	npm	14 Jul 2025
C Malicious Package	colortoolsv2*	npm	14 Jul 2025

APPLICATION

OPERATING SYSTEM