Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
C Malicious Package	npm_rce_exp=0.4.0	npm	8 Sept 2022
C Malicious Package	npm_rce_exp_1=0.4.0	npm	8 Sept 2022
C Malicious Package	npm_rce_exp_2=0.4.0	npm	8 Sept 2022
C Malicious Package	npm-rce-hackerone-corraldev*	npm	30 Aug 2023
C Malicious Package	npmrce-trials*	npm	30 Aug 2023
M Insertion of Sensitive Information into Log File	npm-registry-fetch<4.0.5>=5.0.0 <8.1.1	npm	8 Jul 2020
C Malicious Package	npm-run-lal*	npm	29 Aug 2022
C Malicious Package	npmrunnall*	npm	27 Nov 2024
M Malicious Package	npm-script-demo*	npm	6 Dec 2017
H Malicious Package	npm_scripts_test_metrics*	npm	17 Sept 2017
C Malicious Package	npm-test-211221*	npm	30 Aug 2023
C Malicious Package	npm-test-bravol33*	npm	30 Aug 2023
C Malicious Package	npm-test-failer*	npm	30 Aug 2023
C Malicious Package	npm-testlist*	npm	13 Mar 2025
C Malicious Package	npm_test_nothing=1.0.0	npm	23 Jun 2022
H Resources Downloaded over Insecure Protocol	npm-test-sqlite3-trunk*	npm	4 Jan 2017
C Malicious Package	npmtest-v1nd*	npm	2 Oct 2022
C Malicious Package	npmupload_test-xxxxxxxxxxxxx*	npm	30 Aug 2023
H Regular Expression Denial of Service (ReDoS)	npm-user-validate<1.0.1	npm	18 Oct 2020
C Malicious Package	npm-webcomponent-murphysms1*	npm	30 Aug 2023
C Malicious Package	npm-website-example*	npm	3 Feb 2025
C Malicious Package	npm_windows*	npm	2 Oct 2022
C Malicious Package	paychex-common-npm*	npm	7 Mar 2021
C Malicious Package	pipeline-npm-artifactory=999.9.9	npm	4 Jul 2022
M Untrusted Search Path	pnpm<9.14.4	npm	11 Dec 2024
H Access Control Bypass	pnpm<7.33.4>=8.0.0 <8.6.8	npm	1 Aug 2023
M Improper Input Validation	pnpm<6.15.1	npm	22 Mar 2022
H Access Control Bypass	@pnpm/cafs<7.0.5	npm	1 Aug 2023
H Access Control Bypass	@pnpm/exe<7.33.4>=8.0.0 <8.6.8	npm	1 Aug 2023
C Malicious Package	pnpmfile.js*	npm	29 Jun 2023

APPLICATION

OPERATING SYSTEM