Malware advisories
Known malicious packages
Releases in the PkgRadar corpus that match a known-malicious advisory (OSV MAL- records). Each links to the affected packages and the upstream advisory.
| Advisory | Summary | Affected releases |
|---|---|---|
MAL-2026-2050 | Malicious code in @emilgroup/insurance-sdk (npm) | 47 |
MAL-2026-2051 | Malicious code in @emilgroup/insurance-sdk-node (npm) | 47 |
MAL-2026-3288 | Malicious code in common-tg-service (npm) | 34 |
MAL-2026-2041 | Malicious code in @emilgroup/claim-sdk (npm) | 33 |
MAL-2026-2042 | Malicious code in @emilgroup/claim-sdk-node (npm) | 33 |
MAL-2026-2060 | Malicious code in @emilgroup/tenant-sdk (npm) | 32 |
MAL-2026-2061 | Malicious code in @emilgroup/tenant-sdk-node (npm) | 31 |
MAL-2026-2055 | Malicious code in @emilgroup/partner-sdk-node (npm) | 24 |
MAL-2026-2058 | Malicious code in @emilgroup/public-api-sdk (npm) | 23 |
MAL-2026-2077 | Malicious code in @emilgroup/public-api-sdk-node (npm) | 23 |
MAL-2026-2038 | Malicious code in @emilgroup/billing-sdk (npm) | 21 |
MAL-2026-2039 | Malicious code in @emilgroup/billing-sdk-node (npm) | 21 |
MAL-2026-2056 | Malicious code in @emilgroup/payment-sdk (npm) | 20 |
MAL-2026-2057 | Malicious code in @emilgroup/payment-sdk-node (npm) | 20 |
MAL-2026-2075 | Malicious code in @emilgroup/document-sdk-node (npm) | 20 |
MAL-2026-2031 | Malicious code in @emilgroup/account-sdk (npm) | 19 |
MAL-2026-2046 | Malicious code in @emilgroup/document-sdk (npm) | 19 |
MAL-2026-2032 | Malicious code in @emilgroup/account-sdk-node (npm) | 18 |
MAL-2026-2044 | Malicious code in @emilgroup/customer-sdk (npm) | 17 |
MAL-2026-2045 | Malicious code in @emilgroup/customer-sdk-node (npm) | 17 |
MAL-2026-3757 | Malicious code in claw-subagent-service (npm) | 17 |
MAL-2026-5186 | Malicious code in autotel-terminal (npm) | 17 |
MAL-2025-191134 | Malicious code in nitroping (npm) | 15 |
MAL-2026-2033 | Malicious code in @emilgroup/accounting-sdk (npm) | 15 |
MAL-2026-2034 | Malicious code in @emilgroup/accounting-sdk-node (npm) | 15 |
MAL-2026-4625 | Malicious code in oh-langfuse (npm) | 15 |
MAL-2026-5396 | Malicious code in @sqlite-node/createsql (npm) | 14 |
MAL-2024-1006 | Malicious code in @ebay/ui-core-react (npm) | 13 |
MAL-2026-5394 | Malicious code in @sql-access/nodesql (npm) | 13 |
MAL-2026-2036 | Malicious code in @emilgroup/auth-sdk (npm) | 12 |
MAL-2026-2037 | Malicious code in @emilgroup/auth-sdk-node (npm) | 12 |
MAL-2026-2052 | Malicious code in @emilgroup/notification-sdk-node (npm) | 12 |
MAL-2026-6445 | Malicious code in base58-core (npm) | 12 |
MAL-2026-4533 | Malicious code in codebuff-cli (npm) | 11 |
MAL-2026-5753 | Malicious code in @gbrlxvi/ts-form-utils (npm) | 11 |
MAL-2026-6688 | Malicious code in console-fmt-cli (npm) | 11 |
MAL-2025-47009 | Malicious code in @magda/semantic-indexer-sdk (npm) | 10 |
MAL-2026-2054 | Malicious code in @emilgroup/partner-portal-sdk-node (npm) | 9 |
MAL-2026-5857 | Malicious code in event-metrics-q3x7 (npm) | 9 |
MAL-2026-2074 | Malicious code in @emilgroup/discount-sdk (npm) | 8 |
MAL-2026-3609 | Malicious code in forge-jsxy (npm) | 8 |
MAL-2026-6575 | Malicious code in @ibrahim1337/baksen (npm) | 8 |
MAL-2026-2509 | Malicious code in @langgraphjs/toolkit (npm) | 7 |
MAL-2026-4394 | Malicious code in @ikyyofc/gemini-cli (npm) | 7 |
MAL-2026-5807 | Malicious code in sam-package (npm) | 7 |
MAL-2026-2048 | Malicious code in @emilgroup/gdv-sdk (npm) | 6 |
MAL-2026-2049 | Malicious code in @emilgroup/gdv-sdk-node (npm) | 6 |
MAL-2026-2053 | Malicious code in @emilgroup/partner-portal-sdk (npm) | 6 |
MAL-2026-4288 | Malicious code in @jaggle/resizeobserves (npm) | 6 |
MAL-2026-4669 | Malicious code in shiroai (npm) | 6 |
MAL-2026-5163 | Malicious code in @emcd-vue/auth (npm) | 6 |
MAL-2026-5464 | Malicious code in db-xorma (npm) | 6 |
MAL-2026-5555 | Malicious code in express-timer (npm) | 6 |
MAL-2026-6275 | Malicious code in @ts-apis/ts-utils (npm) | 6 |
MAL-2025-34011 | Malicious code in strapi-upload-aws-s3 (npm) | 5 |
MAL-2026-10104 | Malicious code in px8my (npm) | 5 |
MAL-2026-2035 | Malicious code in @emilgroup/api-documentation (npm) | 5 |
MAL-2026-4346 | Malicious code in logger-draft (npm) | 5 |
MAL-2026-4564 | Malicious code in finup-mongo-library (npm) | 5 |
MAL-2026-4623 | Malicious code in npm-builderio-qwik-poc (npm) | 5 |
MAL-2026-5164 | Malicious code in @emcd-vue/b2b-pay-form (npm) | 5 |
MAL-2026-5165 | Malicious code in @emcd-vue/loans (npm) | 5 |
MAL-2026-5704 | Malicious code in friendly-greeter-demo (npm) | 5 |
MAL-2026-5717 | Malicious code in claudechor (npm) | 5 |
MAL-2026-5789 | Malicious code in claude-cup (npm) | 5 |
MAL-2026-5799 | Malicious code in boardflow (npm) | 5 |
MAL-2026-5834 | Malicious code in @wacrot/infra-data-kit (npm) | 5 |
MAL-2026-5980 | Malicious code in gpu-accelerator (npm) | 5 |
MAL-2026-6071 | Malicious code in n8n-nodes-security-test-poc (npm) | 5 |
GHSA-c83v-7274-4vgp | Malicious website can execute commands on the local system through XSS in the OpenCode web UI | 4 |
MAL-2025-190880 | Malicious code in @posthog/github-release-tracking-plugin (npm) | 4 |
MAL-2025-190947 | Malicious code in @posthog/plugin-server (npm) | 4 |
MAL-2025-191440 | Malicious code in unemail (npm) | 4 |
MAL-2025-25728 | Malicious code in lyu_pkg (npm) | 4 |
MAL-2026-2891 | Malicious code in chai-as-init (npm) | 4 |
MAL-2026-2930 | Malicious code in path-internal (npm) | 4 |
MAL-2026-3747 | Malicious code in @aiscene/aiserver (npm) | 4 |
MAL-2026-3774 | Malicious code in ts-build-optimize (npm) | 4 |
MAL-2026-4348 | Malicious code in api-rs-node (npm) | 4 |
MAL-2026-4350 | Malicious code in clobprice.api (npm) | 4 |
MAL-2026-4475 | Malicious code in aes-decode-runner-pro (npm) | 4 |
MAL-2026-4496 | Malicious code in bandkit (npm) | 4 |
MAL-2026-5209 | Malicious code in @vapi-ai/server-sdk (npm) | 4 |
MAL-2026-5225 | Malicious code in autotel-mongoose (npm) | 4 |
MAL-2026-5258 | Malicious code in executable-stories-vitest (npm) | 4 |
MAL-2026-5463 | Malicious code in db-dx-connector (npm) | 4 |
MAL-2026-5529 | Malicious code in v018-axios-cdntest (npm) | 4 |
MAL-2026-5534 | Malicious code in @thomlecter1122/lab-helper-test (npm) | 4 |
MAL-2026-5729 | Malicious code in houzidawang806 (npm) | 4 |
MAL-2026-5790 | Malicious code in ldpbootstrap-jquery (npm) | 4 |
MAL-2026-5837 | Malicious code in postcss-minify-selector (npm) | 4 |
MAL-2026-5919 | Malicious code in pretie_x1 (npm) | 4 |
MAL-2026-5920 | Malicious code in pretie_x2 (npm) | 4 |
MAL-2026-5921 | Malicious code in proto-bin (npm) | 4 |
MAL-2026-6214 | Malicious code in @chunklab/hexparse (npm) | 4 |
MAL-2026-6372 | Malicious code in rollup-runtime-polyfill-core (npm) | 4 |
MAL-2026-6511 | Malicious code in hydanlabs (npm) | 4 |
MAL-2026-6525 | Malicious code in ts-einkle-slot (npm) | 4 |
MAL-2026-6566 | Malicious code in date-uuid (npm) | 4 |
MAL-2025-190946 | Malicious code in @posthog/drop-events-on-property-plugin (npm) | 3 |
MAL-2025-49282 | Malicious code in ect-472839 (npm) | 3 |
MAL-2025-6214 | Malicious code in ecinc-cloud-moaxmpp (npm) | 3 |
MAL-2026-10064 | Malicious code in multer-orm (npm) | 3 |
MAL-2026-10161 | Malicious code in sidecar-mcp (npm) | 3 |
MAL-2026-2900 | Malicious code in dotenv-pack (npm) | 3 |
MAL-2026-2920 | Malicious code in buffer-util-extend (npm) | 3 |
MAL-2026-3309 | Malicious code in google-cloud-secret-manager-config-poc (npm) | 3 |
MAL-2026-3311 | Malicious code in path-addon (npm) | 3 |
MAL-2026-3323 | Malicious code in paypal-payouts-bridge (npm) | 3 |
MAL-2026-4444 | Malicious code in @shwfed/nuxt (npm) | 3 |
MAL-2026-4498 | Malicious code in bitrix24-tasks-mcp-server (npm) | 3 |
MAL-2026-4542 | Malicious code in crypto-javascript (npm) | 3 |
MAL-2026-4592 | Malicious code in jsontoken-extend (npm) | 3 |
MAL-2026-4600 | Malicious code in loading-session (npm) | 3 |
MAL-2026-4697 | Malicious code in twokey (npm) | 3 |
MAL-2026-5188 | Malicious code in hello244a (npm) | 3 |
MAL-2026-5221 | Malicious code in autotel-eventcatalog (npm) | 3 |
MAL-2026-5224 | Malicious code in autotel-mcp-instrumentation (npm) | 3 |
MAL-2026-5230 | Malicious code in autotel-subscribers (npm) | 3 |
MAL-2026-5238 | Malicious code in awaitly-postgres (npm) | 3 |
MAL-2026-5250 | Malicious code in executable-stories-cypress (npm) | 3 |
MAL-2026-5254 | Malicious code in executable-stories-jest (npm) | 3 |
MAL-2026-5256 | Malicious code in executable-stories-playwright (npm) | 3 |
MAL-2026-5263 | Malicious code in node-env-resolver-aws (npm) | 3 |
MAL-2026-5288 | Malicious code in uisp-connector (npm) | 3 |
MAL-2026-5542 | Malicious code in india-map-react (npm) | 3 |
MAL-2026-5565 | Malicious code in ai-sdk-helpers (npm) | 3 |
MAL-2026-5624 | Malicious code in edu-npm-postinstall-demo2 (npm) | 3 |
MAL-2026-5648 | Malicious code in unified-ui-components-library (npm) | 3 |
MAL-2026-5706 | Malicious code in theta-kit (npm) | 3 |
MAL-2026-5798 | Malicious code in @resolvx/core (npm) | 3 |
MAL-2026-5929 | Malicious code in backoffice-charges-module (npm) | 3 |
MAL-2026-5973 | Malicious code in classbreeze-utils (npm) | 3 |
MAL-2026-6066 | Malicious code in quirky-token (npm) | 3 |
MAL-2026-6087 | Malicious code in uol-simple-api-futebol (npm) | 3 |
MAL-2026-6122 | Malicious code in @onum-releases/api-client (npm) | 3 |
MAL-2026-6123 | Malicious code in @onum-releases/auth (npm) | 3 |
MAL-2026-6124 | Malicious code in @onum-releases/ixel (npm) | 3 |
MAL-2026-6125 | Malicious code in @onum-releases/sdk (npm) | 3 |
MAL-2026-6126 | Malicious code in @onum-releases/shared-components (npm) | 3 |
MAL-2026-6213 | Malicious code in @bytemend/mfebus (npm) | 3 |
MAL-2026-6309 | Malicious code in @nullzero/urlcat (npm) | 3 |
MAL-2026-6470 | Malicious code in chlklib (npm) | 3 |
MAL-2026-6555 | Malicious code in livekit-agents (npm) | 3 |
MAL-2026-6583 | Malicious code in pino-debugging (npm) | 3 |
MAL-2026-6584 | Malicious code in poly-kelly (npm) | 3 |
MAL-2026-6592 | Malicious code in maplibre-gl-vue3 (npm) | 3 |
MAL-2026-6672 | Malicious code in ulid-xyz (npm) | 3 |
MAL-2026-6689 | Malicious code in decimal-format-core (npm) | 3 |
MAL-2026-10160 | Malicious code in rollup-packages-polyfill-core (npm) | 2 |
MAL-2026-10187 | Malicious code in jscrambler (npm) | 2 |
MAL-2026-10501 | Malicious code in filewisee (npm) | 2 |
MAL-2026-10502 | Malicious code in gamified-trading-system (npm) | 2 |
MAL-2026-10627 | Malicious code in @sqlite-frame/nodesql (npm) | 2 |
MAL-2026-2929 | Malicious code in path-extend (npm) | 2 |
MAL-2026-3312 | Malicious code in path-internal-util (npm) | 2 |
MAL-2026-3509 | Malicious code in pp-react-v5 (npm) | 2 |
MAL-2026-4347 | Malicious code in @devcarron/clob (npm) | 2 |
MAL-2026-4349 | Malicious code in clob.api (npm) | 2 |
MAL-2026-4404 | Malicious code in @loans/vehicles-api (npm) | 2 |
MAL-2026-4435 | Malicious code in @service-suppliers/fetch_suppliers_action_saga (npm) | 2 |
MAL-2026-4436 | Malicious code in @service-suppliers/select-supplier-watcher-saga (npm) | 2 |
MAL-2026-4437 | Malicious code in @service-suppliers/set_selected_supplier (npm) | 2 |
MAL-2026-4438 | Malicious code in @service-suppliers/suppliers (npm) | 2 |
MAL-2026-4439 | Malicious code in @service-user-notifications/set_notifications_not_removable (npm) | 2 |
MAL-2026-4473 | Malicious code in @zizie071/libsignal-node (npm) | 2 |
MAL-2026-4491 | Malicious code in authcascade (npm) | 2 |
MAL-2026-4508 | Malicious code in cdk-insights (npm) | 2 |
MAL-2026-4543 | Malicious code in customerdigital-ui-containers-lib (npm) | 2 |
MAL-2026-4549 | Malicious code in dot-utils-plus (npm) | 2 |
MAL-2026-4551 | Malicious code in encrata-cli (npm) | 2 |
MAL-2026-4557 | Malicious code in ezymail (npm) | 2 |
MAL-2026-4561 | Malicious code in fe-utils-core (npm) | 2 |
MAL-2026-4563 | Malicious code in finkrouter (npm) | 2 |
MAL-2026-4565 | Malicious code in fnd-stores (npm) | 2 |
MAL-2026-4567 | Malicious code in freertc (npm) | 2 |
MAL-2026-4579 | Malicious code in hpsetup (npm) | 2 |
MAL-2026-4580 | Malicious code in http-uploader-dev (npm) | 2 |
MAL-2026-4588 | Malicious code in ionic-insta-api-wrapper (npm) | 2 |
MAL-2026-4674 | Malicious code in superacli (npm) | 2 |
MAL-2026-4699 | Malicious code in utils-mf (npm) | 2 |
MAL-2026-4707 | Malicious code in vue-compiler-sfc-plugin (npm) | 2 |
MAL-2026-4715 | Malicious code in weavedb-base (npm) | 2 |
MAL-2026-4778 | Malicious code in 1cat-tunnel-client-zx (npm) | 2 |
MAL-2026-4779 | Malicious code in ether-bn.js (npm) | 2 |
MAL-2026-4784 | Malicious code in react-ui-polyfills (npm) | 2 |
MAL-2026-4792 | Malicious code in react-json-chalk (npm) | 2 |
MAL-2026-4793 | Malicious code in vxui-react (npm) | 2 |
MAL-2026-4807 | Malicious code in shop-minis (npm) | 2 |
MAL-2026-4823 | Malicious code in msc-terminal (npm) | 2 |
MAL-2026-5150 | Malicious code in @aonunited/angular (npm) | 2 |
MAL-2026-5168 | Malicious code in vg-interaction-model (npm) | 2 |
MAL-2026-5210 | Malicious code in ai-sdk-ollama (npm) | 2 |
MAL-2026-5211 | Malicious code in autotel (npm) | 2 |
MAL-2026-5218 | Malicious code in autotel-devtools (npm) | 2 |
MAL-2026-5223 | Malicious code in autotel-mcp (npm) | 2 |
MAL-2026-5226 | Malicious code in autotel-pact (npm) | 2 |
MAL-2026-5235 | Malicious code in awaitly-analyze (npm) | 2 |
MAL-2026-5236 | Malicious code in awaitly-libsql (npm) | 2 |
MAL-2026-5237 | Malicious code in awaitly-mongo (npm) | 2 |
MAL-2026-5239 | Malicious code in awaitly-visualizer (npm) | 2 |
MAL-2026-5240 | Malicious code in create-cf-token (npm) | 2 |
MAL-2026-5242 | Malicious code in creditcard.js (npm) | 2 |
MAL-2026-5244 | Malicious code in discord-search (npm) | 2 |
MAL-2026-5246 | Malicious code in eslint-plugin-awaitly (npm) | 2 |
MAL-2026-5247 | Malicious code in eslint-plugin-executable-stories-jest (npm) | 2 |
MAL-2026-5248 | Malicious code in eslint-plugin-executable-stories-playwright (npm) | 2 |
MAL-2026-5249 | Malicious code in eslint-plugin-executable-stories-vitest (npm) | 2 |
MAL-2026-5264 | Malicious code in node-env-resolver-dotenvx (npm) | 2 |
MAL-2026-5286 | Malicious code in encrypted-archive (npm) | 2 |
MAL-2026-5287 | Malicious code in uhd-setup (npm) | 2 |
MAL-2026-5289 | Malicious code in unifi-portal (npm) | 2 |
MAL-2026-5349 | Malicious code in @demica/core (npm) | 2 |
MAL-2026-5350 | Malicious code in @demica/resources (npm) | 2 |
MAL-2026-5351 | Malicious code in @demica/shared (npm) | 2 |
MAL-2026-5392 | Malicious code in @open-banking/cabinet-providers (npm) | 2 |
MAL-2026-5395 | Malicious code in @sql-trigger/nodesql (npm) | 2 |
MAL-2026-5401 | Malicious code in savant-listing (npm) | 2 |
MAL-2026-5450 | Malicious code in o3forms (npm) | 2 |
MAL-2026-5476 | Malicious code in mcp-server-fetch (npm) | 2 |
MAL-2026-5477 | Malicious code in mcp-server-figma (npm) | 2 |
MAL-2026-5478 | Malicious code in mcp-server-git (npm) | 2 |
MAL-2026-5479 | Malicious code in mcp-server-github (npm) | 2 |
MAL-2026-5480 | Malicious code in mcp-server-notion (npm) | 2 |
MAL-2026-5481 | Malicious code in mcp-server-postgres (npm) | 2 |
MAL-2026-5482 | Malicious code in mcp-server-redis (npm) | 2 |
MAL-2026-5483 | Malicious code in mcp-server-sentry (npm) | 2 |
MAL-2026-5484 | Malicious code in mcp-server-sequential-thinking (npm) | 2 |
MAL-2026-5485 | Malicious code in mcp-server-supabase (npm) | 2 |
MAL-2026-5547 | Malicious code in @403name/electron-buidler (npm) | 2 |
MAL-2026-5548 | Malicious code in @403name/ether-js (npm) | 2 |
MAL-2026-5549 | Malicious code in @403name/fsevent (npm) | 2 |
MAL-2026-5575 | Malicious code in testzapier (npm) | 2 |
MAL-2026-5711 | Malicious code in chalk-pro (npm) | 2 |
MAL-2026-5714 | Malicious code in vite-plugin-logo (npm) | 2 |
MAL-2026-5737 | Malicious code in postcss-minify-selector-parser (npm) | 2 |
MAL-2026-5741 | Malicious code in @achuthvp/postinstall-poc (npm) | 2 |
MAL-2026-5777 | Malicious code in field-plus (npm) | 2 |
MAL-2026-5885 | Malicious code in wordpad-text-ui (npm) | 2 |
MAL-2026-5898 | Malicious code in strict-engine-peer (npm) | 2 |
MAL-2026-5909 | Malicious code in react-hook-use-debounce-throttle-12 (npm) | 2 |
MAL-2026-5924 | Malicious code in binproto (npm) | 2 |
MAL-2026-5931 | Malicious code in mci-sdk (npm) | 2 |
MAL-2026-6068 | Malicious code in swift-parse-stream (npm) | 2 |
MAL-2026-6088 | Malicious code in vite-common-utils (npm) | 2 |
MAL-2026-6127 | Malicious code in @onum-releases/utils (npm) | 2 |
MAL-2026-6185 | Malicious code in conversa-sdk (npm) | 2 |
MAL-2026-6187 | Malicious code in eslint-helper (npm) | 2 |
MAL-2026-6228 | Malicious code in base_parts_ai (npm) | 2 |
MAL-2026-6229 | Malicious code in routecraft (npm) | 2 |
MAL-2026-6305 | Malicious code in @frostnode/waitfor (npm) | 2 |
MAL-2026-6313 | Malicious code in @zynkit/jwtbytes (npm) | 2 |
MAL-2026-6363 | Malicious code in npmkekw (npm) | 2 |
MAL-2026-6457 | Malicious code in subsearch (npm) | 2 |
MAL-2026-6484 | Malicious code in random-string-64 (npm) | 2 |
MAL-2026-6509 | Malicious code in @merceas/anchor (npm) | 2 |
MAL-2026-6535 | Malicious code in disksweep (npm) | 2 |
MAL-2026-6539 | Malicious code in db-query-log (npm) | 2 |
MAL-2026-6562 | Malicious code in @epic-common/observability-node (npm) | 2 |
MAL-2026-6581 | Malicious code in ollama-helpers (npm) | 2 |
MAL-2026-6582 | Malicious code in openai-agents-helpers (npm) | 2 |
MAL-2024-1783 | Malicious code in auth0.net (npm) | 1 |
MAL-2024-1959 | Malicious code in ccl-component-resources (npm) | 1 |
MAL-2024-7463 | Malicious code in pempers (npm) | 1 |
MAL-2025-190901 | Malicious code in @postman/final-node-keytar (npm) | 1 |
MAL-2025-26629 | Malicious code in monaco-editor-loader (npm) | 1 |
MAL-2025-5455 | Malicious code in red-bull-venue-tools (npm) | 1 |
MAL-2025-6694 | Malicious code in amdocs-auth-package (npm) | 1 |
MAL-2025-6695 | Malicious code in amdocs-core-package (npm) | 1 |
MAL-2026-10095 | Malicious code in fury_frontend-andes-ui (npm) | 1 |
MAL-2026-10165 | Malicious code in @injectivelabs/sdk-ts (npm) | 1 |
MAL-2026-10210 | Malicious code in mcp-notes-server-poc-praetorian (npm) | 1 |
MAL-2026-10221 | Malicious code in @flex-ng/error-component (npm) | 1 |
MAL-2026-10222 | Malicious code in @flex-ng/filter-pipe (npm) | 1 |
MAL-2026-10223 | Malicious code in @flex-ng/header-component (npm) | 1 |
MAL-2026-10225 | Malicious code in @logdna-web/shared (npm) | 1 |
MAL-2026-10226 | Malicious code in @logdna-web/styles (npm) | 1 |
MAL-2026-10227 | Malicious code in box-react-uix (npm) | 1 |
MAL-2026-10228 | Malicious code in chat-adapter-zoom (npm) | 1 |
MAL-2026-10229 | Malicious code in enbd-react-error-boundry (npm) | 1 |
MAL-2026-10230 | Malicious code in enbd-react-lib (npm) | 1 |
MAL-2026-10231 | Malicious code in enbd-react-logger (npm) | 1 |
MAL-2026-10232 | Malicious code in salesforce-vscode-slds (npm) | 1 |
MAL-2026-10233 | Malicious code in sams-sr-sdk-h5 (npm) | 1 |
MAL-2026-10234 | Malicious code in slds-lsp-client (npm) | 1 |
MAL-2026-10235 | Malicious code in tme-error (npm) | 1 |
MAL-2026-10237 | Malicious code in tme-xca-react (npm) | 1 |
MAL-2026-10405 | Malicious code in @torbeck/heap (npm) | 1 |
MAL-2026-10469 | Malicious code in @sheltr_/agent (npm) | 1 |
MAL-2026-10472 | Malicious code in @torbeck/priority-queue (npm) | 1 |
MAL-2026-10489 | Malicious code in permcserver (npm) | 1 |
MAL-2026-10491 | Malicious code in assertcoreutils (npm) | 1 |
MAL-2026-10499 | Malicious code in eth-lib-utils (npm) | 1 |
MAL-2026-10520 | Malicious code in fastify-bundler (npm) | 1 |
MAL-2026-10524 | Malicious code in @velkov/isows (npm) | 1 |
MAL-2026-10532 | Malicious code in fluterjs (npm) | 1 |
MAL-2026-10536 | Malicious code in n8n-nodes-social-facebook (npm) | 1 |
MAL-2026-10541 | Malicious code in proxy-seller-mcp (npm) | 1 |
MAL-2026-10573 | Malicious code in harpoon-package (npm) | 1 |
MAL-2026-10623 | Malicious code in http-ws-listener (npm) | 1 |
MAL-2026-10635 | Malicious code in gmail-changer (npm) | 1 |
MAL-2026-10677 | Malicious code in deployowl (npm) | 1 |
MAL-2026-10705 | Malicious code in @agent-link/agent (npm) | 1 |
MAL-2026-10708 | Malicious code in @aicommander/agent (npm) | 1 |
MAL-2026-10729 | Malicious code in channel-worker (npm) | 1 |
MAL-2026-10735 | Malicious code in isite (npm) | 1 |
MAL-2026-10736 | Malicious code in memtry-cli (npm) | 1 |
MAL-2026-10737 | Malicious code in mmagrt (npm) | 1 |
MAL-2026-10745 | Malicious code in phantomx-tool-client (npm) | 1 |
MAL-2026-1259 | Malicious code in pino-sdk-v2 (npm) | 1 |
MAL-2026-1483 | Malicious code in @jaime9008/math-service (npm) | 1 |
MAL-2026-2047 | Malicious code in @emilgroup/docxtemplater-util (npm) | 1 |
MAL-2026-2076 | Malicious code in @emilgroup/document-uploader (npm) | 1 |
MAL-2026-2419 | Malicious code in express-session-js (npm) | 1 |
MAL-2026-2491 | Malicious code in @not-nemo/crypto-tracker (npm) | 1 |
MAL-2026-2505 | Malicious code in @aspect-security/argon2 (npm) | 1 |
MAL-2026-2527 | Malicious code in sjs-biginteger (npm) | 1 |
MAL-2026-2528 | Malicious code in sjs-lint-build1 (npm) | 1 |
MAL-2026-2680 | Malicious code in @veygo/component-library (npm) | 1 |
MAL-2026-2740 | Malicious code in chai-as-type (npm) | 1 |
MAL-2026-2879 | Malicious code in bjs-biginteger (npm) | 1 |
MAL-2026-2880 | Malicious code in bjs-lint-builder (npm) | 1 |
MAL-2026-2881 | Malicious code in bjs-lint-builders (npm) | 1 |
MAL-2026-2882 | Malicious code in cjs-biginteger (npm) | 1 |
MAL-2026-2883 | Malicious code in ts-lint-builds (npm) | 1 |
MAL-2026-2902 | Malicious code in lockedin-chai-chain (npm) | 1 |
MAL-2026-2905 | Malicious code in simple-auth-basic (npm) | 1 |
MAL-2026-2906 | Malicious code in swplayer-react-sl (npm) | 1 |
MAL-2026-2908 | Malicious code in pretty-logger-js (npm) | 1 |
MAL-2026-3287 | Malicious code in ams-ssk (npm) | 1 |
MAL-2026-3337 | Malicious code in @t-in-one/save_application_hid_to_storage (npm) | 1 |
MAL-2026-3848 | Malicious code in @antv/a8 (npm) | 1 |
MAL-2026-4132 | Malicious code in echarts-for-react (npm) | 1 |
MAL-2026-4136 | Malicious code in jest-canvas-mock (npm) | 1 |
MAL-2026-4153 | Malicious code in size-sensor (npm) | 1 |
MAL-2026-4171 | Malicious code in @mc-xp/mc-monolith-js-src-package (npm) | 1 |
MAL-2026-4252 | Malicious code in @43uh3ig43/telemetry-client (npm) | 1 |
MAL-2026-4255 | Malicious code in cdk-sagemaker-notebook-workflow (npm) | 1 |
MAL-2026-4274 | Malicious code in power-apps (npm) | 1 |
MAL-2026-4289 | Malicious code in @stockrepublic/republic-components (npm) | 1 |
MAL-2026-4344 | Malicious code in verify-mycommand (npm) | 1 |
MAL-2026-4345 | Malicious code in eo-terminal (npm) | 1 |
MAL-2026-4351 | Malicious code in @databus-service-ui/ui-event (npm) | 1 |
MAL-2026-4352 | Malicious code in xarc-webpack-cli (npm) | 1 |
MAL-2026-4356 | Malicious code in testing-on-npmjs (npm) | 1 |
MAL-2026-4378 | Malicious code in @databus-service-ui/scroll-up-content (npm) | 1 |
MAL-2026-4385 | Malicious code in @druids/ui (npm) | 1 |
MAL-2026-4396 | Malicious code in @izumiswap/sdk (npm) | 1 |
MAL-2026-4420 | Malicious code in @polka-ui/loader (npm) | 1 |
MAL-2026-4421 | Malicious code in @pulse-web-platform-core/scripts-loader (npm) | 1 |
MAL-2026-4422 | Malicious code in @qwedqwed/axios (npm) | 1 |
MAL-2026-4488 | Malicious code in auth-basic-vault (npm) | 1 |
MAL-2026-4489 | Malicious code in auth0-templates-scripts (npm) | 1 |
MAL-2026-4493 | Malicious code in axiosqqq (npm) | 1 |
MAL-2026-4497 | Malicious code in bingocode (npm) | 1 |
MAL-2026-4500 | Malicious code in bricks-builder-mcp (npm) | 1 |
MAL-2026-4504 | Malicious code in cami-design (npm) | 1 |
MAL-2026-4511 | Malicious code in chai-as-patch (npm) | 1 |
MAL-2026-4512 | Malicious code in chai-as-repaired (npm) | 1 |
MAL-2026-4521 | Malicious code in class-weaver (npm) | 1 |
MAL-2026-4523 | Malicious code in claude-channel-imessage (npm) | 1 |
MAL-2026-4524 | Malicious code in claude-content-writer (npm) | 1 |
MAL-2026-4536 | Malicious code in corelia (npm) | 1 |
MAL-2026-4537 | Malicious code in cosmosdb-server (npm) | 1 |
MAL-2026-4544 | Malicious code in cwao (npm) | 1 |
MAL-2026-4546 | Malicious code in cwao-units (npm) | 1 |
MAL-2026-4547 | Malicious code in cxpher-linux-arm32 (npm) | 1 |
MAL-2026-4550 | Malicious code in emojifancy-print (npm) | 1 |
MAL-2026-4555 | Malicious code in events-router (npm) | 1 |
MAL-2026-4566 | Malicious code in fpjson-lang (npm) | 1 |
MAL-2026-4570 | Malicious code in gehneb (npm) | 1 |
MAL-2026-4573 | Malicious code in git-userhub (npm) | 1 |
MAL-2026-4575 | Malicious code in happy-dlscord.js (npm) | 1 |
MAL-2026-4576 | Malicious code in hardhat-gas-analytics (npm) | 1 |
MAL-2026-4577 | Malicious code in harness-skil (npm) | 1 |
MAL-2026-4581 | Malicious code in idlidosa (npm) | 1 |
MAL-2026-4584 | Malicious code in ihubinternal (npm) | 1 |
MAL-2026-4589 | Malicious code in itc-actors-api (npm) | 1 |
MAL-2026-4590 | Malicious code in json-to-simple-graphql-schema (npm) | 1 |
MAL-2026-4591 | Malicious code in jsonbson (npm) | 1 |
MAL-2026-4599 | Malicious code in license-checker-plus (npm) | 1 |
MAL-2026-4603 | Malicious code in lynx-keeper (npm) | 1 |
MAL-2026-4604 | Malicious code in lynx-keeper-cli (npm) | 1 |
MAL-2026-4613 | Malicious code in monade (npm) | 1 |
MAL-2026-4615 | Malicious code in motion-tool (npm) | 1 |
MAL-2026-4620 | Malicious code in nikou-node (npm) | 1 |
MAL-2026-4622 | Malicious code in normalize-path-seq (npm) | 1 |
MAL-2026-4653 | Malicious code in qaq-core-util-v2 (npm) | 1 |
MAL-2026-4654 | Malicious code in qazaq-cli (npm) | 1 |
MAL-2026-4656 | Malicious code in raise-common-lib (npm) | 1 |
MAL-2026-4667 | Malicious code in seekcode (npm) | 1 |
MAL-2026-4670 | Malicious code in skills-detector (npm) | 1 |
MAL-2026-4672 | Malicious code in solidity-coverage-plus (npm) | 1 |
MAL-2026-4678 | Malicious code in sysnode (npm) | 1 |
MAL-2026-4680 | Malicious code in tailwind-style-typography (npm) | 1 |
MAL-2026-4681 | Malicious code in tailwind-typography-stylecss (npm) | 1 |
MAL-2026-4703 | Malicious code in veteran (npm) | 1 |
MAL-2026-4711 | Malicious code in wao (npm) | 1 |
MAL-2026-4716 | Malicious code in weavedb-client (npm) | 1 |
MAL-2026-4721 | Malicious code in weavedb-node-client (npm) | 1 |
MAL-2026-4722 | Malicious code in weavedb-offchain (npm) | 1 |
MAL-2026-4723 | Malicious code in weavedb-sdk (npm) | 1 |
MAL-2026-4728 | Malicious code in web-dotenv (npm) | 1 |
MAL-2026-4737 | Malicious code in your-unique-package-name1 (npm) | 1 |
MAL-2026-4738 | Malicious code in zest-product (npm) | 1 |
MAL-2026-4739 | Malicious code in zkjson (npm) | 1 |
MAL-2026-4781 | Malicious code in unique-id-64 (npm) | 1 |
MAL-2026-4785 | Malicious code in test-nonmal-pkg-5 (npm) | 1 |
MAL-2026-4796 | Malicious code in fastjsonlog (npm) | 1 |
MAL-2026-4797 | Malicious code in int-node (npm) | 1 |
MAL-2026-4798 | Malicious code in jsonlogbundler (npm) | 1 |
MAL-2026-4799 | Malicious code in pdf-lib-enhanced (npm) | 1 |
MAL-2026-4800 | Malicious code in web3-prices (npm) | 1 |
MAL-2026-4801 | Malicious code in web3.prc (npm) | 1 |
MAL-2026-4802 | Malicious code in xlsx-enhanced (npm) | 1 |
MAL-2026-4803 | Malicious code in @fhkry/baileys (npm) | 1 |
MAL-2026-4805 | Malicious code in metricflow-tracker (npm) | 1 |
MAL-2026-4806 | Malicious code in shizukyu (npm) | 1 |
MAL-2026-4808 | Malicious code in wm-idp-sdk (npm) | 1 |
MAL-2026-4817 | Malicious code in chainix (npm) | 1 |
MAL-2026-4818 | Malicious code in saturn-bail (npm) | 1 |
MAL-2026-4819 | Malicious code in token-me-uk (npm) | 1 |
MAL-2026-4822 | Malicious code in loadtest-browser-lib (npm) | 1 |
MAL-2026-4826 | Malicious code in wm-mapper (npm) | 1 |
MAL-2026-4827 | Malicious code in unleash-js (npm) | 1 |
MAL-2026-4833 | Malicious code in bulletproof-json (npm) | 1 |
MAL-2026-4836 | Malicious code in nemo-reporter (npm) | 1 |
MAL-2026-4838 | Malicious code in justsaying-docs (npm) | 1 |
MAL-2026-4839 | Malicious code in hellowornd (npm) | 1 |
MAL-2026-4840 | Malicious code in @bcs-bank-complex-ui/deeplink (npm) | 1 |
MAL-2026-4841 | Malicious code in @hcs-hybrid/uirouter-core (npm) | 1 |
MAL-2026-4846 | Malicious code in @service-suppliers/fetch-initial-suppliers-watcher-saga (npm) | 1 |
MAL-2026-4847 | Malicious code in @service-suppliers/fetch-suppliers-watcher-saga (npm) | 1 |
MAL-2026-4848 | Malicious code in @service-suppliers/fetch_initial_suppliers_action_saga (npm) | 1 |
MAL-2026-4849 | Malicious code in @service-suppliers/fetch_suppliers_country_list_action_saga (npm) | 1 |
MAL-2026-4850 | Malicious code in @service-suppliers/reset_country_list (npm) | 1 |
MAL-2026-4851 | Malicious code in @service-suppliers/set_country_list (npm) | 1 |
MAL-2026-4852 | Malicious code in @service-suppliers/set_initial_loaded (npm) | 1 |
MAL-2026-4853 | Malicious code in @service-suppliers/set_selected_supplier_action_saga (npm) | 1 |
MAL-2026-4854 | Malicious code in @service-suppliers/set_suppliers_data (npm) | 1 |
MAL-2026-4855 | Malicious code in @service-suppliers/set_suppliers_loading_start (npm) | 1 |
MAL-2026-4856 | Malicious code in @service-suppliers/set_suppliers_loading_stop (npm) | 1 |
MAL-2026-4857 | Malicious code in @service-user-notifications/reset_notifications_not_removable (npm) | 1 |
MAL-2026-4858 | Malicious code in @service-user-notifications/set_refresh_interval (npm) | 1 |
MAL-2026-4860 | Malicious code in @qlab/ui (npm) | 1 |
MAL-2026-4882 | Malicious code in @cloudplatform-single-spa/administration (npm) | 1 |
MAL-2026-4888 | Malicious code in @cloudplatform-single-spa/arenadata-db (npm) | 1 |
MAL-2026-4891 | Malicious code in @cloudplatform-single-spa/base-static-page (npm) | 1 |
MAL-2026-4893 | Malicious code in @cloudplatform-single-spa/business-solutions (npm) | 1 |
MAL-2026-4896 | Malicious code in @cloudplatform-single-spa/cloud-dns (npm) | 1 |
MAL-2026-4898 | Malicious code in @cloudplatform-single-spa/cnapp-ui (npm) | 1 |
MAL-2026-4901 | Malicious code in @cloudplatform-single-spa/cp-api-gw (npm) | 1 |
MAL-2026-4902 | Malicious code in @cloudplatform-single-spa/datagrid (npm) | 1 |
MAL-2026-4903 | Malicious code in @cloudplatform-single-spa/dataplatform (npm) | 1 |
MAL-2026-4909 | Malicious code in @cloudplatform-single-spa/dataplatform-metastore (npm) | 1 |
MAL-2026-4912 | Malicious code in @cloudplatform-single-spa/dataplatform-trino (npm) | 1 |
MAL-2026-4917 | Malicious code in @cloudplatform-single-spa/employees (npm) | 1 |
MAL-2026-4918 | Malicious code in @cloudplatform-single-spa/enterprise (npm) | 1 |
MAL-2026-4922 | Malicious code in @cloudplatform-single-spa/floating-ips (npm) | 1 |
MAL-2026-4926 | Malicious code in @cloudplatform-single-spa/logaas (npm) | 1 |
MAL-2026-4931 | Malicious code in @cloudplatform-single-spa/marketplace-gigachat (npm) | 1 |
MAL-2026-4933 | Malicious code in @cloudplatform-single-spa/ml-ai-agents-agent (npm) | 1 |
MAL-2026-4934 | Malicious code in @cloudplatform-single-spa/ml-ai-agents-agent-system (npm) | 1 |
MAL-2026-4952 | Malicious code in @cloudplatform-single-spa/monitoring (npm) | 1 |
MAL-2026-4967 | Malicious code in @cloudplatform-single-spa/security-groups (npm) | 1 |
MAL-2026-4972 | Malicious code in @cloudplatform-single-spa/ssh-keys (npm) | 1 |
MAL-2026-4975 | Malicious code in @cloudplatform-single-spa/support (npm) | 1 |
MAL-2026-4978 | Malicious code in @cloudplatform-single-spa/svp-baas (npm) | 1 |
MAL-2026-4984 | Malicious code in @cloudplatform-single-spa/svp-interfaces (npm) | 1 |
MAL-2026-4988 | Malicious code in @cloudplatform-single-spa/svp-s3-storage (npm) | 1 |
MAL-2026-5003 | Malicious code in @cloudplatform-single-spa/vpn (npm) | 1 |
MAL-2026-5028 | Malicious code in sorenson-webfonts (npm) | 1 |
MAL-2026-5031 | Malicious code in @capibar.chat/ui-kit (npm) | 1 |
MAL-2026-5032 | Malicious code in @sber-ecom-core/sberpay-widget (npm) | 1 |
MAL-2026-5033 | Malicious code in @t-in-one/add_app_middleware_token (npm) | 1 |
MAL-2026-5034 | Malicious code in @t-in-one/add_application (npm) | 1 |
MAL-2026-5035 | Malicious code in @t-in-one/add_application_service_token (npm) | 1 |
MAL-2026-5036 | Malicious code in @t-in-one/add_application_tid (npm) | 1 |
MAL-2026-5037 | Malicious code in @t-in-one/application_id_storage_key_token (npm) | 1 |
MAL-2026-5038 | Malicious code in @t-in-one/form_product_token (npm) | 1 |
MAL-2026-5039 | Malicious code in @t-in-one/get_application_hid (npm) | 1 |
MAL-2026-5040 | Malicious code in @t-in-one/only_difference_payload (npm) | 1 |
MAL-2026-5041 | Malicious code in @t-in-one/prefill_bundle_data_token (npm) | 1 |
MAL-2026-5042 | Malicious code in @t-in-one/prefill_credit_data_token (npm) | 1 |
MAL-2026-5043 | Malicious code in @t-in-one/prefill_transformers_data_token (npm) | 1 |
MAL-2026-5044 | Malicious code in @t-in-one/restore_application_hid_from_storage (npm) | 1 |
MAL-2026-5045 | Malicious code in @t-in-one/safe_local_storage_token (npm) | 1 |
MAL-2026-5046 | Malicious code in @t-in-one/send_add_application (npm) | 1 |
MAL-2026-5095 | Malicious code in @challenger6/vm-pattern-library (npm) | 1 |
MAL-2026-5098 | Malicious code in js-shared-modules (npm) | 1 |
MAL-2026-5110 | Malicious code in jingmeideshishi (npm) | 1 |
MAL-2026-5121 | Malicious code in nepsnowplow (npm) | 1 |
MAL-2026-5122 | Malicious code in picnic-react-mise-en-place (npm) | 1 |
MAL-2026-5132 | Malicious code in rookie-security-test-pkg (npm) | 1 |
MAL-2026-5158 | Malicious code in page-info-service (npm) | 1 |
MAL-2026-5159 | Malicious code in po-ops-local-dev (npm) | 1 |
MAL-2026-5166 | Malicious code in sourceflow-tracker (npm) | 1 |
MAL-2026-5174 | Malicious code in nodemon-pack (npm) | 1 |
MAL-2026-5175 | Malicious code in webpack-json (npm) | 1 |
MAL-2026-5189 | Malicious code in arjson (npm) | 1 |
MAL-2026-5190 | Malicious code in hbsig (npm) | 1 |
MAL-2026-5192 | Malicious code in weavedb-contracts (npm) | 1 |
MAL-2026-5212 | Malicious code in autotel-adapters (npm) | 1 |
MAL-2026-5213 | Malicious code in autotel-audit (npm) | 1 |
MAL-2026-5214 | Malicious code in autotel-aws (npm) | 1 |
MAL-2026-5215 | Malicious code in autotel-backends (npm) | 1 |
MAL-2026-5217 | Malicious code in autotel-cloudflare (npm) | 1 |
MAL-2026-5219 | Malicious code in autotel-drizzle (npm) | 1 |
MAL-2026-5220 | Malicious code in autotel-edge (npm) | 1 |
MAL-2026-5222 | Malicious code in autotel-hono (npm) | 1 |
MAL-2026-5227 | Malicious code in autotel-playwright (npm) | 1 |
MAL-2026-5228 | Malicious code in autotel-plugins (npm) | 1 |
MAL-2026-5229 | Malicious code in autotel-sentry (npm) | 1 |
MAL-2026-5231 | Malicious code in autotel-tanstack (npm) | 1 |
MAL-2026-5232 | Malicious code in autotel-vitest (npm) | 1 |
MAL-2026-5233 | Malicious code in autotel-web (npm) | 1 |
MAL-2026-5234 | Malicious code in awaitly (npm) | 1 |
MAL-2026-5241 | Malicious code in create-wrangler-deploy (npm) | 1 |
MAL-2026-5245 | Malicious code in effect-analyzer (npm) | 1 |
MAL-2026-5251 | Malicious code in executable-stories-demo (npm) | 1 |
MAL-2026-5252 | Malicious code in executable-stories-formatters (npm) | 1 |
MAL-2026-5253 | Malicious code in executable-stories-init (npm) | 1 |
MAL-2026-5255 | Malicious code in executable-stories-mcp (npm) | 1 |
MAL-2026-5257 | Malicious code in executable-stories-react (npm) | 1 |
MAL-2026-5260 | Malicious code in mountly (npm) | 1 |
MAL-2026-5261 | Malicious code in mountly-tailwind (npm) | 1 |
MAL-2026-5262 | Malicious code in node-env-resolver (npm) | 1 |
MAL-2026-5265 | Malicious code in node-env-resolver-nextjs (npm) | 1 |
MAL-2026-5266 | Malicious code in node-env-resolver-vite (npm) | 1 |
MAL-2026-5267 | Malicious code in wrangler-deploy (npm) | 1 |
MAL-2026-5291 | Malicious code in sequoia-engineering (npm) | 1 |
MAL-2026-5342 | Malicious code in kecak256 (npm) | 1 |
MAL-2026-5343 | Malicious code in progerss-cli (npm) | 1 |
MAL-2026-5365 | Malicious code in quickwinston (npm) | 1 |
MAL-2026-5385 | Malicious code in @0xlr/clerk-auth (npm) | 1 |
MAL-2026-5386 | Malicious code in @0xlr/prisma-client-js (npm) | 1 |
MAL-2026-5387 | Malicious code in @0xlr/sentry-web (npm) | 1 |
MAL-2026-5388 | Malicious code in @0xlr/stripe-checkout-js (npm) | 1 |
MAL-2026-5389 | Malicious code in @0xlr/stripe-frontend (npm) | 1 |
MAL-2026-5390 | Malicious code in @0xlr/supabase-db (npm) | 1 |
MAL-2026-5391 | Malicious code in @0xlr/vercel-analytics (npm) | 1 |
MAL-2026-5393 | Malicious code in @sflyinc-knapsack/shutterfly-react (npm) | 1 |
MAL-2026-5399 | Malicious code in kraken-ui (npm) | 1 |
MAL-2026-5408 | Malicious code in @easy-entry/landing-routes (npm) | 1 |
MAL-2026-5409 | Malicious code in @easy-entry/outside-registration-fop-navigator (npm) | 1 |
MAL-2026-5410 | Malicious code in @easy-entry/routes (npm) | 1 |
MAL-2026-5428 | Malicious code in @shell-cabinet/routes (npm) | 1 |
MAL-2026-5429 | Malicious code in @shell-landing/routes (npm) | 1 |
MAL-2026-5430 | Malicious code in @sourceflow-uk/sourceflow-tracker (npm) | 1 |
MAL-2026-5432 | Malicious code in @webda-features/dashboard (npm) | 1 |
MAL-2026-5434 | Malicious code in ac_calendar_ts (npm) | 1 |
MAL-2026-5435 | Malicious code in ac_semantic-ui_ts (npm) | 1 |
MAL-2026-5437 | Malicious code in commons-ui-styles (npm) | 1 |
MAL-2026-5438 | Malicious code in corporate-front-vue (npm) | 1 |
MAL-2026-5446 | Malicious code in housecall-ui (npm) | 1 |
MAL-2026-5447 | Malicious code in localization-lib (npm) | 1 |
MAL-2026-5448 | Malicious code in mazemap (npm) | 1 |
MAL-2026-5451 | Malicious code in privacy-sdk (npm) | 1 |
MAL-2026-5452 | Malicious code in shopify-app-bridge-internal (npm) | 1 |
MAL-2026-5460 | Malicious code in fhirproxy (npm) | 1 |
MAL-2026-5461 | Malicious code in fhirproxy-utils (npm) | 1 |
MAL-2026-5462 | Malicious code in @rockawayx/utils (npm) | 1 |
MAL-2026-5465 | Malicious code in getd-content-management (npm) | 1 |
MAL-2026-5466 | Malicious code in getd-eslint-rules (npm) | 1 |
MAL-2026-5467 | Malicious code in getd-handler-api (npm) | 1 |
MAL-2026-5468 | Malicious code in getd-pantallas-cliente (npm) | 1 |
MAL-2026-5469 | Malicious code in getd-transactional-web (npm) | 1 |
MAL-2026-5470 | Malicious code in getd-typescript-eslint-rules (npm) | 1 |
MAL-2026-5471 | Malicious code in getd-ui-library (npm) | 1 |
MAL-2026-5472 | Malicious code in getd-web-corporativa (npm) | 1 |
MAL-2026-5473 | Malicious code in gethandler-api (npm) | 1 |
MAL-2026-5474 | Malicious code in getui-library (npm) | 1 |
MAL-2026-5487 | Malicious code in tailwind-form (npm) | 1 |
MAL-2026-5488 | Malicious code in react-pinojs (npm) | 1 |
MAL-2026-5490 | Malicious code in sb-original (npm) | 1 |
MAL-2026-5515 | Malicious code in yelp-react-component-chaos (npm) | 1 |
MAL-2026-5517 | Malicious code in firefly-utilities-helper (npm) | 1 |
MAL-2026-5521 | Malicious code in @helpcentre/tesco-help (npm) | 1 |
MAL-2026-5522 | Malicious code in @orion-design-system/components (npm) | 1 |
MAL-2026-5523 | Malicious code in @orion-design-system/foundation (npm) | 1 |
MAL-2026-5550 | Malicious code in @my_name_is_khn/express-security-tool (npm) | 1 |
MAL-2026-5551 | Malicious code in @my_name_is_khn/express-security-tool-v1 (npm) | 1 |
MAL-2026-5552 | Malicious code in @my_name_is_khn/express-security-tool-v3 (npm) | 1 |
MAL-2026-5553 | Malicious code in express-self-destruct (npm) | 1 |
MAL-2026-5554 | Malicious code in express-self-destruct2 (npm) | 1 |
MAL-2026-5561 | Malicious code in @bestlzk/sectest (npm) | 1 |
MAL-2026-5564 | Malicious code in @tonsdk/core (npm) | 1 |
MAL-2026-5569 | Malicious code in js-crypto-promise (npm) | 1 |
MAL-2026-5574 | Malicious code in spotify-url-resolver (npm) | 1 |
MAL-2026-5577 | Malicious code in web-pool (npm) | 1 |
MAL-2026-5578 | Malicious code in webpack-cache-clean (npm) | 1 |
MAL-2026-5579 | Malicious code in webpack-cache-cycle (npm) | 1 |
MAL-2026-5580 | Malicious code in webpack-cache-reset (npm) | 1 |
MAL-2026-5581 | Malicious code in webpack-patch (npm) | 1 |
MAL-2026-5582 | Malicious code in wp-env (npm) | 1 |
MAL-2026-5588 | Malicious code in 0x2ai-demo10x (npm) | 1 |
MAL-2026-5593 | Malicious code in 0x2ai-demo6x (npm) | 1 |
MAL-2026-5594 | Malicious code in 0x2ai-demo7x (npm) | 1 |
MAL-2026-5596 | Malicious code in 0x2ai-demo8x (npm) | 1 |
MAL-2026-5598 | Malicious code in 0x2ai-demo9x (npm) | 1 |
MAL-2026-5604 | Malicious code in cache-section-helper (npm) | 1 |
MAL-2026-5606 | Malicious code in chai-dec (npm) | 1 |
MAL-2026-5611 | Malicious code in datetime-toolkit (npm) | 1 |
MAL-2026-5620 | Malicious code in telebot-server (npm) | 1 |
MAL-2026-5623 | Malicious code in edu-npm-dependency-chain-demo (npm) | 1 |
MAL-2026-5696 | Malicious code in voyager-web (npm) | 1 |
MAL-2026-5705 | Malicious code in theta-connector (npm) | 1 |
MAL-2026-5710 | Malicious code in chalk-plus-ts (npm) | 1 |
MAL-2026-5712 | Malicious code in jextic-eclib (npm) | 1 |
MAL-2026-5715 | Malicious code in workflow-postgres-setup (npm) | 1 |
MAL-2026-5716 | Malicious code in beamz (npm) | 1 |
MAL-2026-5723 | Malicious code in @ci-lifecycle-test/postinstall-ping (npm) | 1 |
MAL-2026-5724 | Malicious code in warp-dependency (npm) | 1 |
MAL-2026-5727 | Malicious code in vite-config-optimizer (npm) | 1 |
MAL-2026-5730 | Malicious code in class-synth (npm) | 1 |
MAL-2026-5734 | Malicious code in node-denv (npm) | 1 |
MAL-2026-5735 | Malicious code in node-multi-downloader (npm) | 1 |
MAL-2026-5742 | Malicious code in axl-ui (npm) | 1 |
MAL-2026-5744 | Malicious code in loadninja-shared (npm) | 1 |
MAL-2026-5749 | Malicious code in easy-time666 (npm) | 1 |
MAL-2026-5750 | Malicious code in mailconfirmer (npm) | 1 |
MAL-2026-5752 | Malicious code in patientdocuments (npm) | 1 |
MAL-2026-5767 | Malicious code in ltidiconf (npm) | 1 |
MAL-2026-5772 | Malicious code in npx-whoami-demo (npm) | 1 |
MAL-2026-5792 | Malicious code in nativescript-swisspost-imagepicker (npm) | 1 |
MAL-2026-5793 | Malicious code in nativescript-swisspost-pcc-creative-editor (npm) | 1 |
MAL-2026-5825 | Malicious code in @intentsolution/database-security-scanner (npm) | 1 |
MAL-2026-5835 | Malicious code in lab-helper (npm) | 1 |
MAL-2026-5838 | Malicious code in tn-advertisement (npm) | 1 |
MAL-2026-5856 | Malicious code in carousel-controller-mixin (npm) | 1 |
MAL-2026-5859 | Malicious code in setka-editor (npm) | 1 |
MAL-2026-5884 | Malicious code in vortnode (npm) | 1 |
MAL-2026-5889 | Malicious code in @dsft/ft-element (npm) | 1 |
MAL-2026-5890 | Malicious code in @dsft/ft-utils (npm) | 1 |
MAL-2026-5891 | Malicious code in atlassian-forge-skills (npm) | 1 |
MAL-2026-5894 | Malicious code in create-vercel-integration (npm) | 1 |
MAL-2026-5896 | Malicious code in jest-test-plugin-utils (npm) | 1 |
MAL-2026-5899 | Malicious code in stripe-cli-init-plugin (npm) | 1 |
MAL-2026-5900 | Malicious code in chai-as-decrypted (npm) | 1 |
MAL-2026-5901 | Malicious code in chai-as-polished (npm) | 1 |
MAL-2026-5908 | Malicious code in chain-chai-test (npm) | 1 |
MAL-2026-5911 | Malicious code in utils-common-helpers (npm) | 1 |
MAL-2026-5914 | Malicious code in nottuff15 (npm) | 1 |
MAL-2026-5915 | Malicious code in nottuff23 (npm) | 1 |
MAL-2026-5916 | Malicious code in nottuff25 (npm) | 1 |
MAL-2026-5917 | Malicious code in nottuff4 (npm) | 1 |
MAL-2026-5918 | Malicious code in nottuff7 (npm) | 1 |
MAL-2026-5922 | Malicious code in @kalipto/local (npm) | 1 |
MAL-2026-5923 | Malicious code in @welcome-onboarding-web/mobile-focus-account-beta-merging (npm) | 1 |
MAL-2026-5925 | Malicious code in motion-lib (npm) | 1 |
MAL-2026-5927 | Malicious code in aillmgen (npm) | 1 |
MAL-2026-5930 | Malicious code in bubblestr (npm) | 1 |
MAL-2026-5935 | Malicious code in tw-theme-kit (npm) | 1 |
MAL-2026-5937 | Malicious code in abuden21 (npm) | 1 |
MAL-2026-5972 | Malicious code in canary-ci-test (npm) | 1 |
MAL-2026-5989 | Malicious code in pathfix (npm) | 1 |
MAL-2026-5994 | Malicious code in ts-webplug (npm) | 1 |
MAL-2026-6065 | Malicious code in lab-services (npm) | 1 |
MAL-2026-6075 | Malicious code in opt-archetype-check (npm) | 1 |
MAL-2026-6079 | Malicious code in set-proto-chain (npm) | 1 |
MAL-2026-6084 | Malicious code in @array-util/nodepull (npm) | 1 |
MAL-2026-6085 | Malicious code in @hotcappuccino/nodepull (npm) | 1 |
MAL-2026-6090 | Malicious code in data-utils-bcf2 (npm) | 1 |
MAL-2026-6091 | Malicious code in datacamp-light (npm) | 1 |
MAL-2026-6093 | Malicious code in jwtmode (npm) | 1 |
MAL-2026-6095 | Malicious code in oem-agentic-shared (npm) | 1 |
MAL-2026-6098 | Malicious code in stackus (npm) | 1 |
MAL-2026-6099 | Malicious code in stream-read-35cf (npm) | 1 |
MAL-2026-6117 | Malicious code in final-shoaib (RubyGems) | 1 |
MAL-2026-6118 | Malicious code in final-poc-usa (RubyGems) | 1 |
MAL-2026-6121 | Malicious code in @gbrlxvi/ts-project-lint (npm) | 1 |
MAL-2026-6128 | Malicious code in abuden218 (npm) | 1 |
MAL-2026-6129 | Malicious code in abuden22 (npm) | 1 |
MAL-2026-6130 | Malicious code in abuden221 (npm) | 1 |
MAL-2026-6133 | Malicious code in panrouter (npm) | 1 |
MAL-2026-6134 | Malicious code in panrouter-admin (npm) | 1 |
MAL-2026-6135 | Malicious code in ratelimitsucks (npm) | 1 |
MAL-2026-6136 | Malicious code in ratelimitsucks6 (npm) | 1 |
MAL-2026-6137 | Malicious code in react-error-lint (npm) | 1 |
MAL-2026-6141 | Malicious code in clx-cookie-signature (npm) | 1 |
MAL-2026-6143 | Malicious code in node-vfs-polyfill (npm) | 1 |
MAL-2026-6144 | Malicious code in runtime-query (npm) | 1 |
MAL-2026-6183 | Malicious code in @mep-exp/api-tools (npm) | 1 |
MAL-2026-6184 | Malicious code in @qlab/component-intelligence (npm) | 1 |
MAL-2026-6188 | Malicious code in eslint-helper-1 (npm) | 1 |
MAL-2026-6190 | Malicious code in mjs-eslint-helper (npm) | 1 |
MAL-2026-6191 | Malicious code in node-slot (npm) | 1 |
MAL-2026-6192 | Malicious code in nodepathbalance54 (npm) | 1 |
MAL-2026-6193 | Malicious code in ordered-btree (npm) | 1 |
MAL-2026-6195 | Malicious code in ts-linter-builders (npm) | 1 |
MAL-2026-6209 | Malicious code in @antoncarlos1/nodelamp (npm) | 1 |
MAL-2026-6210 | Malicious code in @apexcraft/nano-key (npm) | 1 |
MAL-2026-6211 | Malicious code in @apiwizards/auth-middleware (npm) | 1 |
MAL-2026-6212 | Malicious code in @briskforge/envcheck (npm) | 1 |
MAL-2026-6223 | Malicious code in mjs-eslint (npm) | 1 |
MAL-2026-6227 | Malicious code in new-ts-helper (npm) | 1 |
MAL-2026-6235 | Malicious code in yianzzkf6687 (npm) | 1 |
MAL-2026-6237 | Malicious code in atlasora-api (npm) | 1 |
MAL-2026-6238 | Malicious code in atlasora-client (npm) | 1 |
MAL-2026-6239 | Malicious code in atlasora-config (npm) | 1 |
MAL-2026-6240 | Malicious code in atlasora-sdk (npm) | 1 |
MAL-2026-6241 | Malicious code in atlasora-shared (npm) | 1 |
MAL-2026-6242 | Malicious code in atlasora-types (npm) | 1 |
MAL-2026-6243 | Malicious code in atlasora-utils (npm) | 1 |
MAL-2026-6257 | Malicious code in crud-respect (npm) | 1 |
MAL-2026-6258 | Malicious code in onboarding-respects-modal (npm) | 1 |
MAL-2026-6259 | Malicious code in respects-switch (npm) | 1 |
MAL-2026-6304 | Malicious code in @frostnode/probe (npm) | 1 |
MAL-2026-6306 | Malicious code in @gleamkit/probe (npm) | 1 |
MAL-2026-6308 | Malicious code in @lazyutil/dater (npm) | 1 |
MAL-2026-6310 | Malicious code in @petitcode/eb-retry (npm) | 1 |
MAL-2026-6311 | Malicious code in @thymelab/logfx (npm) | 1 |
MAL-2026-6314 | Malicious code in @zynkit/probe (npm) | 1 |
MAL-2026-6316 | Malicious code in ts-biginteger-lib (npm) | 1 |
MAL-2026-6319 | Malicious code in ts-escro (npm) | 1 |
MAL-2026-6369 | Malicious code in hardhat-test-log (npm) | 1 |
MAL-2026-6376 | Malicious code in bn-lint (npm) | 1 |
MAL-2026-6417 | Malicious code in leo-auth (npm) | 1 |
MAL-2026-6418 | Malicious code in leo-aws (npm) | 1 |
MAL-2026-6419 | Malicious code in leo-cache (npm) | 1 |
MAL-2026-6420 | Malicious code in leo-cdk-lib (npm) | 1 |
MAL-2026-6421 | Malicious code in leo-cli (npm) | 1 |
MAL-2026-6422 | Malicious code in leo-config (npm) | 1 |
MAL-2026-6423 | Malicious code in leo-connector-elasticsearch (npm) | 1 |
MAL-2026-6424 | Malicious code in leo-connector-mongo (npm) | 1 |
MAL-2026-6425 | Malicious code in leo-connector-mysql (npm) | 1 |
MAL-2026-6426 | Malicious code in leo-connector-oracle (npm) | 1 |
MAL-2026-6427 | Malicious code in leo-connector-redshift (npm) | 1 |
MAL-2026-6428 | Malicious code in leo-cron (npm) | 1 |
MAL-2026-6430 | Malicious code in leo-sdk (npm) | 1 |
MAL-2026-6431 | Malicious code in leo-streams (npm) | 1 |
MAL-2026-6432 | Malicious code in rstreams-metrics (npm) | 1 |
MAL-2026-6433 | Malicious code in rstreams-shard-util (npm) | 1 |
MAL-2026-6434 | Malicious code in serverless-convention (npm) | 1 |
MAL-2026-6435 | Malicious code in serverless-leo (npm) | 1 |
MAL-2026-6436 | Malicious code in solo-nav (npm) | 1 |
MAL-2026-6441 | Malicious code in unifydata (npm) | 1 |
MAL-2026-6443 | Malicious code in agentsync-pkg (npm) | 1 |
MAL-2026-6446 | Malicious code in base62-86x (npm) | 1 |
MAL-2026-6464 | Malicious code in @colibri-event-types/megamarket-ru-web (npm) | 1 |
MAL-2026-6475 | Malicious code in textshape-css (npm) | 1 |
MAL-2026-6477 | Malicious code in runtimekit (npm) | 1 |
MAL-2026-6482 | Malicious code in kelly-stake (npm) | 1 |
MAL-2026-6494 | Malicious code in @help-forms/application-aff (npm) | 1 |
MAL-2026-6495 | Malicious code in animatecss-postcss-plugin (npm) | 1 |
MAL-2026-6498 | Malicious code in dttfdsdee (npm) | 1 |
MAL-2026-6502 | Malicious code in js-client-node (npm) | 1 |
MAL-2026-6510 | Malicious code in @merceas/cross-fetch (npm) | 1 |
MAL-2026-6524 | Malicious code in ts-einkle (npm) | 1 |
MAL-2026-6532 | Malicious code in chai-as-assured (npm) | 1 |
MAL-2026-6540 | Malicious code in db-rake (npm) | 1 |
MAL-2026-6543 | Malicious code in express-initial (npm) | 1 |
MAL-2026-6544 | Malicious code in chai-as-persisted (npm) | 1 |
MAL-2026-6545 | Malicious code in crossmint-wallets-sdk (npm) | 1 |
MAL-2026-6546 | Malicious code in ryan-pdf-js (npm) | 1 |
MAL-2026-6548 | Malicious code in ts-ankle (npm) | 1 |
MAL-2026-6556 | Malicious code in polymarket-clob-math (npm) | 1 |
MAL-2026-6573 | Malicious code in rebrandly-domains-search-client (npm) | 1 |
MAL-2026-6574 | Malicious code in yandex-geobase (npm) | 1 |
MAL-2026-6576 | Malicious code in checkmarx-claude-cache (npm) | 1 |
MAL-2026-6578 | Malicious code in layerd-unit-codec-parser (npm) | 1 |
MAL-2026-6580 | Malicious code in loadutils (npm) | 1 |
MAL-2026-6585 | Malicious code in stake-math (npm) | 1 |
MAL-2026-6587 | Malicious code in clob-client-math (npm) | 1 |
MAL-2026-6588 | Malicious code in endpointmap (npm) | 1 |
MAL-2026-6704 | Malicious code in base65-85x (npm) | 1 |
MAL-2026-6713 | Malicious code in polymarket-toolkit (npm) | 1 |
MAL-2026-6721 | Malicious code in ts-eslint-helper (npm) | 1 |
MAL-2026-6757 | Malicious code in vps-maintenance-paperclip-adapter (npm) | 1 |
MAL-2026-6826 | Malicious code in rollup-plugin-polyfill-handler (npm) | 1 |
MAL-2026-6959 | Malicious code in proton_pfff (crates.io) | 1 |
MAL-2026-7021 | Malicious code in @vite-js/ui (npm) | 1 |