Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
M Open Redirect	koa*	npm	22 Aug 2025
C Malicious Package	apollo-ms*	npm	22 Aug 2025
M Regular Expression Denial of Service (ReDoS)	yarn*	npm	22 Aug 2025
C Function Call With Incorrect Argument Type	sha.js<2.4.12	npm	21 Aug 2025
C Function Call With Incorrect Argument Type	cipher-base<1.0.5	npm	21 Aug 2025
M Origin Validation Error	@elysiajs/cors<1.3.1	npm	21 Aug 2025
H Symlink Attack	n8n-core<1.106.0	npm	21 Aug 2025
C External Control of File Name or Path	@directus/api<28.0.3	npm	21 Aug 2025
C Arbitrary Command Injection	screenshot-desktop<1.15.2	npm	20 Aug 2025
H Command Injection	@anthropic-ai/claude-code<1.0.4	npm	20 Aug 2025
M Cross-site Scripting (XSS)	n8n-nodes-base>=1.77.0 <1.99.1	npm	20 Aug 2025
M Cross-site Scripting (XSS)	@astrojs/internal-helpers<0.7.2	npm	20 Aug 2025
M Cross-site Scripting (XSS)	astro<4.16.19>=5.0.0-alpha.0 <5.13.2	npm	20 Aug 2025
M Cross-site Scripting (XSS)	@mermaid-js/tiny<11.10.0	npm	20 Aug 2025
M Cross-site Scripting (XSS)	mermaid>=11.1.0 <11.10.0	npm	20 Aug 2025
M Cross-site Scripting (XSS)	mermaid>=10.9.0-rc.1 <11.10.0	npm	20 Aug 2025
C Malicious Package	monitor-package*	npm	19 Aug 2025
C Malicious Package	grok-sdk*	npm	19 Aug 2025
M Cross-site Scripting (XSS)	express-gateway*	npm	18 Aug 2025
M Cross-site Scripting (XSS)	express-gateway*	npm	18 Aug 2025
C Malicious Package	meid-cli*	npm	18 Aug 2025
C Arbitrary Code Injection	flowise-components*	npm	17 Aug 2025
M Open Redirect	@astrojs/node<9.4.1	npm	17 Aug 2025
M Cross-site Scripting (XSS)	@superset-ui/core*	npm	17 Aug 2025
C Command Injection	flowise-components>=0.0.0	npm	17 Aug 2025
L Insertion of Sensitive Information into Log File	@backstage/plugin-scaffolder-backend<2.1.1	npm	17 Aug 2025
C Malicious Package	redux-ace*	npm	14 Aug 2025
C Malicious Package	rtk-logger*	npm	14 Aug 2025
C Malicious Package	nvlore-hsc*	npm	14 Aug 2025
C Malicious Package	naya-flore*	npm	14 Aug 2025

APPLICATION

OPERATING SYSTEM