Homepage

Find out if you have vulnerabilities that put you at risk

Test your applications
Toggle filtering controls
Report a new vulnerability
  • C
Malicious Package
Affects eslint-supertest | Versions *
No fix available
npmPublished 6 Jan 2026
  • C
Malicious Package
Affects oj-sp-messages-banner | Versions *
No fix available
npmPublished 6 Jan 2026
  • C
Malicious Package
Affects redis-cookie-js | Versions *
No fix available
npmPublished 6 Jan 2026
  • C
Malicious Package
Affects oj-sp-common | Versions *
No fix available
npmPublished 6 Jan 2026
  • C
Malicious Package
Affects oj-sp-common-strings | Versions *
No fix available
npmPublished 6 Jan 2026
  • C
Malicious Package
Affects oj-sp-css-additions | Versions *
No fix available
npmPublished 6 Jan 2026
  • C
Authentication Bypass Using an Alternate Path or ChannelCVE-2025-68620
Affects signalk-server | Versions <2.19.0-beta.5
Has fix
npmPublished 6 Jan 2026
  • C
Malicious Package
Affects github-badge-bot | Versions *
No fix available
npmPublished 5 Jan 2026
  • C
Malicious Package
Affects @signify/vue-components | Versions *
No fix available
npmPublished 5 Jan 2026
  • C
Malicious Package
Affects utif-updated | Versions *
No fix available
npmPublished 5 Jan 2026
  • C
Malicious Package
Affects @airtel-web/clickstream | Versions *
No fix available
npmPublished 5 Jan 2026
  • C
Malicious Package
Affects @airtel-web/legos | Versions *
No fix available
npmPublished 5 Jan 2026
  • C
Malicious Package
Affects tiny-model-update | Versions *
No fix available
npmPublished 5 Jan 2026
  • C
Malicious Package
Affects published_at | Versions *
No fix available
npmPublished 5 Jan 2026
  • H
Arbitrary Code InjectionCVE-2025-68619
Affects signalk-server | Versions <2.19.0-beta.5
Has fix
npmPublished 4 Jan 2026
  • H
Allocation of Resources Without Limits or ThrottlingCVE-2025-68272
Affects signalk-server | Versions <2.19.0-beta.5
Has fix
npmPublished 4 Jan 2026
  • H
Improper Control of Dynamically-Managed Code ResourcesCVE-2025-66398
Affects signalk-server | Versions <2.19.0-beta.5
Has fix
npmPublished 4 Jan 2026
  • M
Information ExposureCVE-2025-68273
Affects signalk-server | Versions <2.19.0-beta.5
Has fix
npmPublished 4 Jan 2026
  • C
Directory TraversalCVE-2026-21440
Affects @adonisjs/bodyparser | Versions <10.1.2>=11.0.0-next.0 <11.0.0-next.6
Has fix
npmPublished 4 Jan 2026
  • L
User ImpersonationCVE-2025-69203
Affects signalk-server | Versions <2.19.0-beta.5
Has fix
npmPublished 4 Jan 2026
  • M
Cross-site Scripting (XSS)
Affects trix | Versions <2.1.16
Has fix
npmPublished 1 Jan 2026
  • M
Zip Slip
Affects psitransfer | Versions <2.3.1
Has fix
npmPublished 1 Jan 2026
  • C
Malicious Package
Affects @polystream/streaming | Versions *
No fix available
npmPublished 31 Dec 2025
  • C
Malicious Package
Affects @vietmoney/react-native-action-button | Versions *
No fix available
npmPublished 31 Dec 2025
  • C
Malicious Package
Affects @vietmoney/react-native-smart-gallery | Versions *
No fix available
npmPublished 31 Dec 2025
  • C
Malicious Package
Affects @vietmoney/react-native-smart-page | Versions *
No fix available
npmPublished 31 Dec 2025
  • C
Malicious Package
Affects @vietmoney/react-big-calendar | Versions *
No fix available
npmPublished 31 Dec 2025
  • C
Malicious Package
Affects @vietmoney/react-native-image-transformer | Versions *
No fix available
npmPublished 31 Dec 2025
  • C
Malicious Package
Affects @vietmoney/react-native-htmlview | Versions *
No fix available
npmPublished 31 Dec 2025
  • C
Malicious Package
Affects @vietmoney/react-native-true-id | Versions *
No fix available
npmPublished 31 Dec 2025